Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/X_VmvJf346mdJalDnZmGSomkogk.roa
File: X_VmvJf346mdJalDnZmGSomkogk.roa (raw, json)
Hash identifier: ZZ+8pkvCJSwVmcz/M3RZ0ctg5BJAi0lWs117Fm0hgAU=
Subject key identifier: 5F:F5:66:BC:97:F7:E3:A9:9D:25:A9:43:9D:99:86:4A:89:A4:A2:09
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1675
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/X_VmvJf346mdJalDnZmGSomkogk.roa
Signing time: Mon 26 Aug 2024 05:22:13 +0000
ROA not before: Mon 26 Aug 2024 05:22:13 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131584
IP address blocks: 106.105.180.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:07:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5749 (0x1675)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Aug 26 05:22:13 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5FF566BC97F7E3A99D25A9439D99864A89A4A209
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:d5:f3:49:13:bc:2a:44:4d:0a:b2:63:00:63:
73:b2:57:45:eb:5a:18:d9:9a:47:db:62:46:33:cc:
cc:60:99:3d:57:13:b6:75:6e:3a:0c:6f:24:4e:00:
32:43:80:e8:8f:d9:23:f8:22:13:31:03:45:d7:68:
6e:02:f9:98:5b:03:9c:7c:19:bf:b5:54:29:44:74:
c3:65:c1:b1:3f:7e:7b:2b:c4:43:9b:da:30:1d:d2:
9e:90:2c:aa:66:05:27:38:b9:2f:82:11:a1:fe:f5:
81:b8:cf:f0:54:ff:6c:02:f6:fc:82:a6:aa:ef:68:
ec:5d:d7:16:11:85:75:49:1d:89:17:76:99:ac:c1:
3f:b8:1c:77:2b:b7:58:6a:f3:52:9f:48:a5:97:e6:
a6:60:23:a9:48:a0:dc:06:ba:a4:ae:c9:06:d1:f4:
81:f0:bb:0c:70:37:ad:ef:36:0b:02:45:d0:5d:3c:
1f:cb:7f:47:2a:43:4c:ba:29:95:86:4a:7d:2d:dd:
fc:f5:b5:0f:b8:74:5b:e9:df:32:ad:04:e2:ba:31:
71:66:e2:2b:dd:e6:69:38:7f:6d:e1:0f:96:c4:58:
a3:b6:22:fd:c0:cc:e3:ab:ee:ec:41:d2:a2:36:13:
89:c1:51:3b:eb:8a:0d:31:f5:2c:64:7d:cd:43:a6:
7d:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:F5:66:BC:97:F7:E3:A9:9D:25:A9:43:9D:99:86:4A:89:A4:A2:09
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/X_VmvJf346mdJalDnZmGSomkogk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.180.0/24
Signature Algorithm: sha256WithRSAEncryption
84:66:ae:68:b7:98:b4:7b:0a:da:17:fa:15:ca:30:3d:7c:a3:
0e:5f:cb:2e:a8:3f:bb:69:de:5e:28:b3:37:3a:ea:92:55:45:
86:b1:f1:8d:39:2e:e1:d6:b4:b1:b0:b5:a6:85:ed:74:6e:02:
93:59:99:6e:3f:9c:47:f6:9d:c2:6b:c9:6b:a1:cc:88:dd:5f:
cd:4d:e0:da:c8:45:c0:51:f7:79:e2:57:28:fa:f0:1b:d9:90:
93:eb:e3:a4:db:9d:53:81:bd:65:4b:3c:06:82:cd:1e:57:70:
f1:80:8e:88:34:a1:8e:e1:91:0e:fe:63:f8:44:49:8b:50:c5:
35:1a:89:32:4f:8a:8e:bd:4b:9a:0d:88:9d:3a:ab:ac:41:ef:
dc:2b:10:ab:8a:e8:85:bf:61:cb:75:de:d1:8b:98:53:1c:52:
b4:04:70:2a:3c:3b:2b:38:fd:cd:93:84:c7:f3:7e:97:5a:79:
c1:a5:e3:4b:0e:cf:96:07:ab:b3:0f:87:32:6e:15:5a:8d:6c:
09:8e:1b:8d:6e:c5:dc:a6:3e:5b:6d:4f:a5:da:6a:56:7c:72:
f0:1e:d7:23:4a:d3:94:d4:f8:33:96:7b:b6:d1:98:d5:69:39:
71:7b:d1:38:6d:28:38:59:82:03:56:c9:81:77:9d:60:2e:de:
4d:60:11:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:54:04 2025 by rpki-client