Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/rgPE8WjPZZxUf_5tBMkVDCW_tvw.roa
File: rgPE8WjPZZxUf_5tBMkVDCW_tvw.roa (raw, json)
Hash identifier: vqqzHVvn6VvJX6goFCNqLPui3lPyrQllYoBBh2dizaM=
Subject key identifier: AE:03:C4:F1:68:CF:65:9C:54:7F:FE:6D:04:C9:15:0C:25:BF:B6:FC
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 161F
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/rgPE8WjPZZxUf_5tBMkVDCW_tvw.roa
Signing time: Mon 26 Aug 2024 05:21:48 +0000
ROA not before: Mon 26 Aug 2024 05:21:48 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38851
IP address blocks: 122.147.164.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:07:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5663 (0x161f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Aug 26 05:21:48 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=AE03C4F168CF659C547FFE6D04C9150C25BFB6FC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:7f:8d:45:f6:02:ff:27:b1:83:b4:97:a8:3f:
d2:e3:dd:07:bf:bf:f9:ce:a9:4c:67:14:4d:08:72:
6d:59:d5:fe:3e:66:cf:e5:c9:4f:6f:06:50:aa:ad:
b2:fc:70:fc:ec:d0:1a:be:4d:b1:f4:2e:64:07:e2:
52:bc:35:4e:9a:9d:cd:70:a6:4e:89:7a:77:c1:a7:
08:e2:a6:fe:a0:cc:06:8f:1a:e9:1b:e3:c4:4d:fc:
dd:26:4e:83:b1:4f:29:e9:5a:8f:8d:41:8e:15:e1:
a8:d4:ed:ee:a6:35:90:a6:d4:6d:f8:3e:c6:7d:79:
48:81:c3:1a:37:7c:79:bc:4b:32:4c:68:74:cc:ea:
0a:55:41:be:d4:e5:68:4b:34:85:c4:82:3b:79:62:
79:2f:fa:20:1f:6b:20:3b:88:bb:25:69:1f:e8:a8:
44:f9:5c:80:e6:6e:ce:7e:df:2a:b2:03:c7:76:ee:
27:50:52:5f:0d:4c:0a:e3:5b:8b:69:40:46:54:65:
8b:d7:cd:f9:21:01:e1:da:58:34:02:a5:9e:de:ec:
de:de:d5:e1:e2:07:88:60:b8:5d:11:00:0b:e6:ae:
bc:b4:e5:eb:27:bf:0f:ad:a4:57:c3:67:7c:a5:32:
7f:dd:6c:f9:c8:d8:39:1f:bc:19:64:40:36:a7:04:
c8:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:03:C4:F1:68:CF:65:9C:54:7F:FE:6D:04:C9:15:0C:25:BF:B6:FC
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/rgPE8WjPZZxUf_5tBMkVDCW_tvw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.147.164.0/23
Signature Algorithm: sha256WithRSAEncryption
50:08:93:36:ee:af:15:c3:60:b6:ce:51:06:97:5b:2e:e0:2a:
b0:98:69:e3:a9:67:35:68:6c:85:c3:b5:db:bb:5a:57:81:cf:
22:f3:03:f5:18:71:9a:ce:ae:f7:87:36:26:b9:7f:92:d2:9c:
e8:c5:ee:ec:45:f4:fa:ea:6b:7f:30:aa:5b:f1:69:0a:0f:ec:
e6:05:78:19:53:b8:9b:03:50:d9:67:34:13:be:14:9a:95:c3:
5e:3a:d6:1f:e9:2d:4f:66:99:63:c8:af:76:3e:59:4e:6a:a4:
73:65:59:98:cc:ef:0d:48:eb:65:49:37:98:ad:15:b8:1e:81:
70:14:17:da:ba:20:a1:a6:31:dd:38:64:7a:a5:f9:d3:13:1d:
23:5f:b4:2f:a4:42:c6:23:e6:a2:4b:87:1a:51:6a:fc:63:94:
02:c1:9b:a8:5c:e4:e1:e2:61:7e:a1:fb:07:79:a2:bc:57:0b:
fa:78:b2:06:04:e7:33:a4:80:ce:eb:32:c2:04:15:2e:54:d8:
d2:f6:40:80:df:d2:72:45:51:65:ca:4c:67:fe:7a:98:ae:ad:
c0:74:ba:a4:17:c9:e4:16:1d:0c:11:fa:b2:4a:ac:b7:ae:de:
5e:cf:12:1c:21:05:4d:bc:cc:bf:43:a5:e3:3c:af:ee:ee:bc:
b9:19:91:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:46:20 2025 by rpki-client