Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/YU76Sn-dq97adp5Er0ZHCP0ZHTE.roa
File: YU76Sn-dq97adp5Er0ZHCP0ZHTE.roa (raw, json)
Hash identifier: Y/zr1segpV7k9OdWdUYbQ7VIBP0eYFGFH1UU9QinPdw=
Subject key identifier: 61:4E:FA:4A:7F:9D:AB:DE:DA:76:9E:44:AF:46:47:08:FD:19:1D:31
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1615
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/YU76Sn-dq97adp5Er0ZHCP0ZHTE.roa
Signing time: Mon 26 Aug 2024 05:21:45 +0000
ROA not before: Mon 26 Aug 2024 05:21:45 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131602
IP address blocks: 106.105.168.0/21 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:07:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5653 (0x1615)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Aug 26 05:21:45 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=614EFA4A7F9DABDEDA769E44AF464708FD191D31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:94:10:1a:ba:ea:df:1d:50:15:4d:66:d4:46:
ee:55:bc:38:a4:94:f7:db:3b:27:ec:7f:7f:0a:a2:
66:14:50:1a:45:3a:ab:86:59:87:f9:aa:00:ec:2f:
95:46:ee:4f:69:35:99:18:26:5b:4c:34:be:07:ea:
32:5b:fa:de:7d:21:45:fe:c0:f4:37:45:67:19:91:
db:5a:0a:30:44:f2:5a:8e:7b:f0:c2:5e:36:72:0e:
d2:e0:cf:1e:e9:78:1e:39:3c:70:dc:b1:43:8f:65:
e3:5a:84:99:c1:2c:72:ea:86:07:93:e2:8b:49:cb:
7a:3f:7c:4b:71:03:25:a8:1a:4a:04:c9:06:2f:2d:
11:07:28:8d:b2:d5:c5:0c:7d:6a:05:9c:95:62:a0:
27:d8:38:7e:cf:ed:69:e8:aa:02:06:f1:f5:45:a8:
87:75:31:c1:00:53:4e:a0:63:67:54:ca:3c:3a:23:
5c:82:77:3d:a1:00:1f:ce:05:d0:95:c8:c3:a4:8f:
cf:6a:5d:c7:1f:3f:b0:04:95:e8:ab:42:e8:16:27:
dc:78:cb:bc:28:f6:70:0c:57:76:48:b9:ee:a8:82:
31:56:af:03:78:a9:85:c4:91:20:1d:50:9a:ac:a4:
40:bd:6a:54:21:f7:b0:0e:0c:20:88:48:93:10:2e:
29:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:4E:FA:4A:7F:9D:AB:DE:DA:76:9E:44:AF:46:47:08:FD:19:1D:31
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/YU76Sn-dq97adp5Er0ZHCP0ZHTE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.168.0/21
Signature Algorithm: sha256WithRSAEncryption
39:33:b5:19:ea:e7:49:49:c8:f7:c1:06:18:98:00:bb:82:b6:
30:10:3d:74:90:5f:f9:c9:bf:a8:43:c3:7f:cf:3d:0e:0e:c9:
27:f9:12:13:09:c5:2d:b0:da:e3:e2:a7:54:3a:35:b8:68:3e:
9a:41:f3:7e:6a:ef:b4:ef:25:8f:fb:6f:8a:d6:71:d8:33:88:
f4:4c:08:6f:24:95:25:da:9f:59:73:a8:b4:e4:48:83:d4:b3:
7e:34:2f:a1:8e:c4:e9:b1:72:2a:0a:ae:ed:a9:a4:0a:15:01:
4c:9f:6f:a3:21:28:f2:c6:13:c0:bf:10:5a:c0:9f:f5:fe:d3:
23:8c:5f:cf:fe:d1:c6:14:a9:da:8d:aa:ef:08:93:22:7a:a5:
55:29:23:9a:d7:a7:1b:88:b1:f2:ed:57:28:ae:48:1a:e2:a2:
5e:ae:ac:0b:f4:5b:73:36:de:06:5e:eb:9f:83:70:49:c1:68:
92:4b:76:6b:2c:ef:8c:43:73:54:2d:9b:25:bf:a8:2f:03:d4:
34:10:59:6c:27:ef:8e:dc:35:d6:5e:99:3d:b6:aa:45:81:a8:
8a:3d:0d:8b:a1:80:d9:47:04:96:2c:38:be:65:6a:ba:3c:1f:
76:ae:bb:d6:1e:bb:95:7c:29:9e:84:1b:9f:03:68:5b:cf:d2:
06:6d:92:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:09:42 2025 by rpki-client