Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Y89VijzyH8hNNsz4M6AkkYnUe-A.roa
File: Y89VijzyH8hNNsz4M6AkkYnUe-A.roa (raw, json)
Hash identifier: eNH7ACw8iNZB4YFIpmG+kXj6lmWyihD5QtIoFyeXQEM=
Subject key identifier: 63:CF:55:8A:3C:F2:1F:C8:4D:36:CC:F8:33:A0:24:91:89:D4:7B:E0
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 169B
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Y89VijzyH8hNNsz4M6AkkYnUe-A.roa
Signing time: Mon 26 Aug 2024 05:22:23 +0000
ROA not before: Mon 26 Aug 2024 05:22:23 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131627
IP address blocks: 220.229.65.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5787 (0x169b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Aug 26 05:22:23 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=63CF558A3CF21FC84D36CCF833A0249189D47BE0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:22:93:c3:7c:8c:3e:4e:79:68:06:85:dc:a8:
bf:aa:e9:5f:4d:6d:91:6b:33:90:a0:79:1c:c9:b4:
38:f8:4d:e9:e9:74:7d:2b:a8:4c:56:94:80:c7:2a:
db:75:04:8e:36:89:4e:9c:ab:2f:3f:94:02:ae:2b:
c3:15:af:80:09:ff:d0:82:ac:23:8f:5f:59:49:e3:
bd:b3:b2:22:c3:7f:de:9b:44:90:72:b2:d3:06:29:
e8:35:d0:8a:22:eb:0a:4f:d5:f0:8c:28:11:c7:15:
45:9e:03:c4:6f:cb:e8:93:90:44:a7:d1:9d:78:9e:
64:6b:13:12:77:d9:5d:5a:06:d1:cb:b5:e5:4f:c6:
ec:1c:05:cc:b0:b7:8e:bf:d4:13:8b:0a:6c:77:af:
cc:9a:69:ed:19:3c:bd:b0:ea:12:30:73:90:b9:3e:
74:22:8c:c9:03:9b:c2:13:e6:fb:03:ef:7b:8c:3c:
54:1c:09:73:f6:df:05:78:1f:d0:77:bc:74:33:e1:
72:f5:a2:f4:7d:62:7a:ff:33:71:1c:bc:f0:a2:e9:
d7:80:3f:0d:29:a3:91:92:b2:48:67:1b:86:8e:e0:
3b:34:cc:1f:6d:82:8f:c0:85:af:77:a5:f8:a8:3d:
af:d8:cb:ca:18:fc:3c:87:fd:1d:2b:0a:a2:bf:68:
9c:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:CF:55:8A:3C:F2:1F:C8:4D:36:CC:F8:33:A0:24:91:89:D4:7B:E0
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Y89VijzyH8hNNsz4M6AkkYnUe-A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.229.65.0/24
Signature Algorithm: sha256WithRSAEncryption
01:dc:dc:f0:f7:b8:a3:94:67:b7:b7:13:ab:b9:5e:8a:81:1f:
29:39:ed:ef:42:05:60:39:55:de:34:5a:cc:ea:6d:62:25:f1:
fd:e3:5d:7b:6c:7f:fd:8e:cf:53:57:fa:13:b5:f7:b2:b2:04:
70:8e:24:e9:0e:23:4b:00:27:ad:e4:52:14:07:58:f9:31:81:
46:62:15:79:eb:b4:49:79:0f:7c:05:00:7c:67:a5:88:1a:f7:
07:5d:2a:78:79:47:03:c3:d4:c8:44:cc:b8:f2:17:bd:16:2f:
52:da:23:41:48:de:14:7c:05:cf:0e:0e:7c:9c:d2:90:61:8d:
ce:4c:68:e1:e2:fa:5f:b8:cd:62:ab:7f:29:60:c0:97:d4:c0:
a9:86:1e:4b:a3:d2:eb:26:d5:4f:f4:75:05:55:a2:4c:19:2f:
98:9e:5a:3d:82:41:b8:b2:56:4d:9c:d8:41:c3:a6:5d:23:c1:
e7:57:26:a0:39:da:d0:1a:38:c7:bd:f4:46:69:11:76:72:06:
b5:d3:60:50:a8:44:fe:dd:d9:1f:b4:82:c0:86:ae:cf:ee:ca:
0f:8f:14:90:8e:09:3b:bc:77:0f:d5:b1:bd:2b:67:e1:48:84:
1b:9b:e9:a8:a5:b9:8e:97:fc:d9:a4:37:8d:cc:76:63:78:bb:
16:1d:e9:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:51:55 2025 by rpki-client