Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/awmGnuQv_mW_yGmp7B66KyNkeHk.roa
File: awmGnuQv_mW_yGmp7B66KyNkeHk.roa (raw, json)
Hash identifier: m2m+QYnCe8zafa5wt5ZpiO+EPDT2DvmnLYUlsEEwp5k=
Subject key identifier: 6B:09:86:9E:E4:2F:FE:65:BF:C8:69:A9:EC:1E:BA:2B:23:64:78:79
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 165B
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/awmGnuQv_mW_yGmp7B66KyNkeHk.roa
Signing time: Mon 26 Aug 2024 05:22:05 +0000
ROA not before: Mon 26 Aug 2024 05:22:05 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131602
IP address blocks: 123.205.144.0/20 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:07:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5723 (0x165b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Aug 26 05:22:05 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6B09869EE42FFE65BFC869A9EC1EBA2B23647879
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:88:12:52:60:75:bb:e0:04:0f:8b:1a:b5:f2:
aa:fc:29:8d:c3:3a:95:63:39:ce:fe:ad:d1:81:98:
e1:ed:2b:77:c6:e8:ff:f7:ed:57:0e:74:77:c4:5a:
7d:ab:9b:aa:1d:06:cd:27:62:40:72:06:4c:81:f0:
62:92:70:7b:ea:b4:bc:06:10:6a:59:9e:89:8e:00:
3e:1d:e4:30:b8:21:2c:41:24:20:2d:b3:0f:58:3d:
64:ae:f7:ba:eb:35:d0:25:45:c3:59:ef:52:d7:d3:
ad:ad:7e:20:ee:50:0f:4a:29:4c:a0:a8:b1:ca:82:
82:01:5e:09:2c:e6:42:1b:16:44:59:fd:00:8c:8c:
bb:ef:97:37:ac:7f:db:66:3b:d7:8d:e2:ca:2a:02:
97:c1:47:13:70:39:17:2e:d1:b2:48:5f:04:5e:11:
bc:4b:55:75:14:ec:dd:a3:3e:8f:f4:d3:4c:26:02:
44:17:94:13:2f:9a:b1:26:0e:7b:4b:f1:4a:98:91:
88:db:e7:7e:b2:f6:bc:8b:96:97:bc:14:cf:d2:c2:
d0:b6:87:a6:50:41:fe:f4:70:c8:f7:0f:35:bf:bc:
96:fb:0d:ca:c2:c5:18:a5:61:bd:49:c6:ac:16:3a:
04:86:41:7f:2b:1f:5b:52:f5:27:17:cb:b8:68:97:
e3:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:09:86:9E:E4:2F:FE:65:BF:C8:69:A9:EC:1E:BA:2B:23:64:78:79
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/awmGnuQv_mW_yGmp7B66KyNkeHk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.205.144.0/20
Signature Algorithm: sha256WithRSAEncryption
92:8e:42:07:2e:92:9d:8f:bb:01:22:0d:6b:f3:60:c9:c5:9c:
a4:9e:03:87:17:e3:aa:ee:fb:61:16:f5:67:42:4b:a3:41:95:
34:4d:55:f9:c8:a5:35:0b:44:9d:b5:8b:ee:ae:ab:23:b9:7a:
1c:28:3a:33:71:fd:43:16:79:d0:39:28:65:0d:18:96:ae:f3:
66:ad:db:30:a5:a0:d6:4d:b4:43:83:d0:bc:8f:b0:5e:94:0b:
a6:b0:26:7a:95:5f:8e:4a:54:d1:79:93:e0:85:c8:14:be:f6:
64:e9:d1:36:81:e5:ec:17:5f:e2:ea:4d:78:09:a4:fc:7d:72:
3e:a5:46:79:ad:12:92:ee:97:ff:03:d4:4b:0e:90:cc:56:65:
c8:c8:30:97:96:f1:e9:a7:92:e7:02:ee:c8:89:1a:da:94:de:
d6:57:79:68:90:ce:49:cb:77:23:5c:6e:6b:a8:50:0b:b5:9f:
87:ab:a1:93:13:23:92:19:10:16:0f:ce:80:f6:9d:80:67:cc:
b1:7d:57:ef:fd:76:2f:36:e6:05:b6:96:62:a9:e9:6f:fc:05:
10:08:fc:7d:1b:35:65:e5:40:9f:62:88:b2:a5:1a:6e:ee:28:
e4:c9:b3:72:d2:44:e7:b5:ed:bf:0f:d7:e4:a8:13:7f:68:76:
7c:ca:ac:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:47:15 2025 by rpki-client