Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/mfoVnRSWpS9MCB8Be7XrEKjh6A0.roa
File: mfoVnRSWpS9MCB8Be7XrEKjh6A0.roa (raw, json)
Hash identifier: XKD41w46v4JV6TG8AGuDmdpApYWcXLvs5JMWlPdfhGA=
Subject key identifier: 99:FA:15:9D:14:96:A5:2F:4C:08:1F:01:7B:B5:EB:10:A8:E1:E8:0D
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 16A9
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/mfoVnRSWpS9MCB8Be7XrEKjh6A0.roa
Signing time: Mon 26 Aug 2024 05:22:28 +0000
ROA not before: Mon 26 Aug 2024 05:22:28 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4780
IP address blocks: 122.146.0.0/15 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5801 (0x16a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Aug 26 05:22:28 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=99FA159D1496A52F4C081F017BB5EB10A8E1E80D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:42:37:63:83:f0:bc:cd:88:82:2d:13:bf:fd:
d9:91:78:bf:2c:5a:a9:4d:2f:da:55:0b:91:5c:9b:
0e:b4:28:4a:13:62:30:d7:7f:93:18:06:b2:65:0f:
ce:82:d5:f4:1a:34:88:da:4c:12:75:f4:47:01:f4:
82:8c:aa:15:2e:ec:ed:5d:d8:54:5b:dd:8d:1e:2e:
e9:44:44:6c:b9:56:4b:d8:6c:d1:37:b2:fd:f1:de:
63:2b:60:96:2c:54:13:04:26:d2:25:15:eb:f9:d8:
f0:63:bc:60:d3:7d:f1:45:2b:14:3c:aa:f8:70:ba:
3f:b6:af:47:4f:d6:a0:1f:92:3c:63:31:0d:4d:93:
92:ed:8b:1c:51:a1:59:4f:53:c8:52:93:58:cf:dc:
9e:16:f9:f4:29:0a:2c:d1:c5:bd:37:91:6c:c4:c9:
06:68:40:2d:07:fc:7a:bd:de:b6:62:aa:d1:d8:90:
79:78:a4:b8:b9:e1:4c:49:7f:18:b0:7a:99:9b:07:
18:bb:0c:50:9c:20:ce:ee:20:3b:78:4e:51:03:ad:
24:a3:1d:c9:f0:f3:2d:ad:f4:e7:8a:a6:90:7d:06:
ff:08:b9:9e:23:ef:5e:99:2e:08:76:76:ac:ad:4b:
66:fc:37:f2:fe:3e:cf:2d:68:7c:79:03:d7:cf:c3:
1f:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:FA:15:9D:14:96:A5:2F:4C:08:1F:01:7B:B5:EB:10:A8:E1:E8:0D
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/mfoVnRSWpS9MCB8Be7XrEKjh6A0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.146.0.0/15
Signature Algorithm: sha256WithRSAEncryption
9c:be:e8:7c:5a:5b:21:11:27:4b:bd:d6:01:b3:f3:6b:90:e2:
fa:f9:1c:52:d5:82:21:0b:46:7e:e1:72:9f:59:de:b7:b0:a0:
a9:5e:ee:04:3e:39:2a:68:01:a6:ee:8d:68:99:ff:83:a2:fb:
3a:ad:0d:00:06:25:ea:6e:e4:32:8b:3b:fd:40:09:53:97:25:
5f:94:dd:25:d3:da:f8:f2:84:3c:d3:c4:86:a1:36:32:b7:04:
8a:5c:84:02:49:df:d3:7e:7d:48:05:2b:c9:5c:d6:e3:15:20:
99:6d:6b:2b:a8:54:78:92:15:bd:02:8a:19:47:a1:f0:b1:83:
8c:5e:7e:1c:ea:5b:f6:35:63:f0:88:95:5d:f4:34:03:58:53:
07:df:0d:4c:5e:d2:3d:d0:93:29:1c:9e:b7:8b:8a:c5:80:c8:
5e:de:ff:f3:3f:21:fc:36:14:8d:f9:ec:5f:44:a3:4b:fe:e0:
2c:d0:46:11:ed:3e:9e:96:79:c5:53:6b:fd:3d:80:24:61:5b:
04:47:5d:de:48:b5:cb:05:d1:91:0e:3f:b0:89:ec:c7:da:19:
05:25:2a:da:32:88:c4:ee:a1:fb:d1:33:d3:eb:bc:62:e8:63:
1a:b0:66:ed:ed:2c:2b:0c:a4:13:01:a3:aa:c2:e2:85:d4:55:
b5:79:f1:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:43:43 2025 by rpki-client