Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/bEEZxYKEUWJHW4IKek7uMf1QJ20.roa
File: bEEZxYKEUWJHW4IKek7uMf1QJ20.roa (raw, json)
Hash identifier: qMDsojdQgXRxE410ng9n2mkl+eTFSYgjiK0SV9jGIKI=
Subject key identifier: 6C:41:19:C5:82:84:51:62:47:5B:82:0A:7A:4E:EE:31:FD:50:27:6D
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1640
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/bEEZxYKEUWJHW4IKek7uMf1QJ20.roa
Signing time: Mon 26 Aug 2024 05:21:57 +0000
ROA not before: Mon 26 Aug 2024 05:21:57 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131627
IP address blocks: 218.210.116.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:07:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5696 (0x1640)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Aug 26 05:21:57 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6C4119C582845162475B820A7A4EEE31FD50276D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:dc:f6:78:cc:a3:fb:1b:1b:0f:b3:f1:fe:28:
ab:38:c2:d8:60:31:11:59:90:70:45:18:f3:83:96:
2b:93:d0:91:65:f6:20:05:39:b8:a1:84:e0:48:a4:
1b:d1:1b:39:af:08:e1:6d:ce:18:20:94:d5:6c:53:
35:08:bf:3c:08:a5:05:84:e7:c6:5e:89:30:b6:4d:
a1:f5:c0:64:31:71:64:09:bb:b3:d5:ba:a1:d6:c4:
79:10:cb:7a:48:fc:7e:b0:c8:09:d4:f5:e0:bf:25:
d5:96:6a:80:40:85:ca:72:a5:2d:eb:f0:9b:7e:42:
3f:cf:e4:ae:1c:8b:7c:9a:5a:74:a4:34:20:10:af:
3b:cc:30:a3:60:33:52:49:0d:54:22:c8:d1:78:50:
22:be:24:8d:46:09:bc:08:c1:f5:8d:d3:c0:df:d1:
ec:53:15:b2:59:3b:cc:f4:fa:58:4d:04:ee:d5:2f:
dc:7f:63:ea:15:67:07:b8:21:87:13:ea:02:19:ce:
05:f3:30:23:e7:63:37:af:c1:8a:0a:62:2d:51:16:
6e:85:08:2b:e4:e5:ea:53:a2:39:c4:30:19:65:20:
17:4e:76:7c:cf:ef:8b:e5:9a:19:e5:6f:0d:fb:74:
56:42:e7:b7:47:85:b8:80:2d:fb:74:d1:a3:10:e2:
0c:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:41:19:C5:82:84:51:62:47:5B:82:0A:7A:4E:EE:31:FD:50:27:6D
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/bEEZxYKEUWJHW4IKek7uMf1QJ20.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.210.116.0/23
Signature Algorithm: sha256WithRSAEncryption
58:02:46:41:e0:d2:e7:4c:69:a7:7c:de:a6:b9:a5:96:f1:32:
fa:8f:ec:fe:05:6f:e5:4e:24:50:5c:ba:58:0f:f8:e0:d1:59:
a8:9f:19:a5:bf:35:32:d5:10:a2:e2:27:81:ab:21:dc:6b:43:
a6:af:c2:61:1e:b5:01:6e:9c:98:bf:00:14:73:8e:25:2f:f8:
b6:af:b0:ad:fd:f9:fd:42:14:ad:d8:9e:1c:73:c5:27:bf:6c:
30:4a:1b:55:05:d7:b3:4c:1b:39:ed:31:8b:38:6d:2c:28:58:
fc:18:0a:76:02:e5:af:53:ca:cb:3d:b6:f5:c2:80:d6:a9:b1:
1d:5d:ee:92:64:de:c6:e1:e7:e2:c2:22:25:4a:79:44:25:63:
6f:3e:5a:5b:e4:f2:aa:fd:f6:89:93:dd:ec:e4:34:f7:1d:a2:
f3:6b:85:c7:85:32:4c:ed:9f:b4:c0:c9:8e:9a:5e:11:26:96:
64:ac:8e:fa:0d:e8:6d:1e:44:1a:11:6e:90:97:7b:4f:1e:40:
d6:88:ee:4d:14:77:de:e1:00:b1:7a:2d:2a:82:3e:8d:28:45:
6b:fc:90:92:e4:7f:0b:c4:ad:2f:32:2c:8c:ba:7c:01:d1:da:
95:9f:7e:5b:fb:30:53:8b:06:38:dc:78:b7:be:d5:c0:ab:53:
a8:b1:2b:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:40:44 2025 by rpki-client