Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/YgSYKroaPfc5rGjz3i8zL4Yldzg.roa
File: YgSYKroaPfc5rGjz3i8zL4Yldzg.roa (raw, json)
Hash identifier: 99K2BTkqWj14rulSM69wCb6y7PDXC8waTTyMcIgIveQ=
Subject key identifier: 62:04:98:2A:BA:1A:3D:F7:39:AC:68:F3:DE:2F:33:2F:86:25:77:38
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1657
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/YgSYKroaPfc5rGjz3i8zL4Yldzg.roa
Signing time: Mon 26 Aug 2024 05:22:04 +0000
ROA not before: Mon 26 Aug 2024 05:22:04 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131627
IP address blocks: 106.105.252.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:07:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5719 (0x1657)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Aug 26 05:22:04 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6204982ABA1A3DF739AC68F3DE2F332F86257738
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:62:e6:35:23:db:34:4f:ee:30:86:fe:82:93:
38:1f:7a:97:b6:c6:5f:1e:d4:80:f7:7c:45:c6:aa:
27:9c:5a:5a:1b:43:aa:e3:cf:4b:08:87:13:46:f3:
92:d6:30:72:df:fc:2b:a3:bb:07:be:2c:7d:69:a8:
e8:89:7e:73:54:32:b2:67:a6:3e:45:69:ab:bd:97:
e1:25:15:88:23:11:69:97:23:1e:29:9e:18:05:e1:
78:fe:3c:fb:02:5e:ce:1e:84:a7:e5:82:3d:1e:de:
1e:7d:02:e4:81:ba:1e:bd:f4:af:f6:30:38:a0:9e:
54:62:46:76:d6:40:fc:a4:50:41:32:10:19:71:68:
00:ca:45:ac:97:6b:dd:81:5e:69:38:2e:71:40:5c:
67:8d:07:81:84:50:70:7d:a8:46:87:12:9b:d9:51:
fb:1b:29:ec:67:7f:6a:36:0d:34:61:86:c7:aa:fb:
b6:80:49:1d:c3:da:a8:9e:f1:70:1c:a9:2a:22:8d:
ff:af:1e:34:88:a3:eb:f6:90:bd:cd:d7:1e:9a:e5:
0a:35:41:1f:44:c3:0e:4b:f3:d9:ca:33:55:57:63:
9d:4e:30:35:68:1a:e0:b9:20:d5:e5:28:8e:35:2b:
c1:6c:b1:c6:2d:ae:7f:df:06:4d:a6:7d:8a:37:61:
64:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:04:98:2A:BA:1A:3D:F7:39:AC:68:F3:DE:2F:33:2F:86:25:77:38
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/YgSYKroaPfc5rGjz3i8zL4Yldzg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
106.105.252.0/22
Signature Algorithm: sha256WithRSAEncryption
6f:1b:96:b2:e7:f2:51:07:d2:76:93:1e:53:67:4c:ce:ff:86:
08:0d:e2:d4:49:2a:70:e9:a7:92:37:de:a0:69:10:c3:7c:53:
7d:c4:a4:63:dc:05:5e:0c:67:c5:7b:6e:47:5b:d3:dd:36:84:
74:44:47:77:49:57:e0:ef:60:5e:7e:5b:8b:66:22:ae:9d:41:
96:12:07:3b:00:21:ce:c6:95:90:b8:11:e6:de:6f:1e:40:fe:
16:61:a6:23:2e:9c:40:69:f2:e1:6c:e4:3d:80:55:39:8c:d9:
43:57:05:e6:1c:43:8a:5b:8c:ba:69:2e:ed:3a:70:ee:ea:d0:
a7:f9:37:27:f2:14:46:53:c8:16:7f:2c:32:7a:61:31:96:f2:
4b:f5:d5:71:73:c0:5b:6f:ab:34:89:49:59:45:36:cb:20:0c:
01:4f:55:18:49:89:8d:9c:dc:06:fe:31:a5:91:c3:8b:0b:8c:
b8:a4:e2:c0:07:fc:c5:db:f5:75:97:03:c2:8a:f6:5b:95:82:
1f:0f:39:d2:5d:32:f5:f1:fe:5d:41:44:89:f3:d2:f8:96:0e:
be:d0:fc:4d:af:a2:8a:cb:d7:01:53:64:c3:ef:5a:8b:cf:de:
b6:88:84:b0:15:50:3c:8e:f9:54:c8:dd:48:f2:be:9e:31:9d:
f5:01:67:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:04:16 2025 by rpki-client