Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/dQaocPlUVECUeEygr8FlI0zuT2o.roa
File: dQaocPlUVECUeEygr8FlI0zuT2o.roa (raw, json)
Hash identifier: FJtpUyF5r+ws5CJkbXM5vC6ZLM5DB1JxUIWARNcSzYw=
Subject key identifier: 75:06:A8:70:F9:54:54:40:94:78:4C:A0:AF:C1:65:23:4C:EE:4F:6A
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 16AD
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/dQaocPlUVECUeEygr8FlI0zuT2o.roa
Signing time: Mon 26 Aug 2024 05:22:28 +0000
ROA not before: Mon 26 Aug 2024 05:22:28 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9919
IP address blocks: 211.74.128.0/17 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:06:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5805 (0x16ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Aug 26 05:22:28 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=7506A870F954544094784CA0AFC165234CEE4F6A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:e8:50:41:3b:56:72:b5:bd:74:f4:92:9e:a1:
5e:8b:5f:c3:06:de:6f:8d:61:c6:55:44:41:3f:89:
d8:79:5a:0b:e7:ab:ac:f7:4a:07:b7:22:ca:fd:7a:
8e:6d:70:bf:43:fc:19:f6:36:48:7b:2b:25:1c:c4:
f3:cc:d9:45:64:ac:23:00:20:72:53:27:86:4c:66:
b7:63:56:ad:61:54:24:88:13:54:d5:b9:8c:fa:79:
64:15:de:f3:b2:30:a5:73:fa:67:7a:9f:a2:b8:30:
8a:65:3c:fe:5c:91:b8:06:36:b0:e8:3f:a0:ba:cb:
b6:7a:20:1e:44:c5:01:47:77:05:83:70:43:d1:36:
03:8e:8b:ce:66:10:b0:e7:d2:16:31:d5:b5:4e:dc:
d0:19:c8:bf:d3:06:cd:27:d2:c3:fc:27:ea:91:32:
e7:01:9f:74:2e:f0:43:9b:c9:26:f1:f5:ac:44:1f:
b1:61:9e:02:1b:5b:d8:30:12:2d:47:5a:47:d1:04:
23:5d:41:31:4c:75:f8:b2:2e:9c:38:e5:43:cd:c8:
0e:b4:d5:88:9e:ca:7b:7f:46:c2:5f:9a:b6:57:70:
41:9a:00:62:b3:28:10:2b:b3:f0:46:f8:3f:06:51:
82:e1:b7:21:17:1a:92:b5:c3:14:32:8f:ea:c6:97:
79:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:06:A8:70:F9:54:54:40:94:78:4C:A0:AF:C1:65:23:4C:EE:4F:6A
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/dQaocPlUVECUeEygr8FlI0zuT2o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.74.128.0/17
Signature Algorithm: sha256WithRSAEncryption
3b:0e:31:20:02:3e:e2:e0:43:79:a3:e1:23:b0:86:32:bf:6a:
3e:f4:22:3f:34:8c:69:20:ca:59:17:a0:27:d7:53:a7:23:c1:
53:22:ee:cf:8a:0a:d8:e7:4a:93:a4:a3:f5:d5:dd:e7:50:cb:
58:cd:7c:f4:b0:1b:75:4d:16:77:5e:70:ad:11:30:12:2d:ac:
4b:75:c7:4d:46:27:24:43:32:80:66:a9:a2:77:75:01:88:54:
15:ac:ba:8e:52:c0:e9:c1:2a:fd:42:9a:03:3f:ef:17:3a:f2:
e3:03:7d:9e:51:fc:79:83:ba:6b:47:bf:75:00:43:07:c9:6d:
88:1f:1f:e2:89:51:04:84:ee:f4:ba:58:d3:63:ef:52:7f:98:
17:47:30:ee:49:6d:e4:e0:da:17:ef:45:32:6e:bc:98:a9:4e:
d5:93:ef:fc:75:9c:e0:9c:87:cf:12:ab:52:ab:8d:fa:b6:bf:
0a:dd:ac:7e:ee:a6:71:be:23:23:03:8c:1a:b0:c0:f6:93:f8:
ec:15:81:4a:e0:b1:49:9e:ac:58:60:8d:ac:aa:9c:38:8b:67:
ac:72:9a:c9:3b:7d:99:62:42:33:fd:a6:9c:78:a5:16:c0:1a:
35:46:46:78:eb:26:03:53:da:0c:1c:27:bb:06:13:14:e6:a4:
04:d1:41:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:48:07 2025 by rpki-client