Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/6wr-Y5CUqLiJNL-Djemy4V8w1pc.roa
File: 6wr-Y5CUqLiJNL-Djemy4V8w1pc.roa (raw, json)
Hash identifier: 9y4syfuWgSlgHZUa8uG5XUiugjb6ttA5WtPxYUxgUhA=
Subject key identifier: EB:0A:FE:63:90:94:A8:B8:89:34:BF:83:8D:E9:B2:E1:5F:30:D6:97
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0DEA
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/6wr-Y5CUqLiJNL-Djemy4V8w1pc.roa
Signing time: Mon 26 Aug 2024 05:27:18 +0000
ROA not before: Mon 26 Aug 2024 05:27:18 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 1659
IP address blocks: 140.138.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:16:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3562 (0xdea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Aug 26 05:27:18 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=EB0AFE639094A8B88934BF838DE9B2E15F30D697
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:92:2e:33:e2:8b:a8:41:79:1e:06:01:73:02:
f3:96:97:73:36:c8:a5:da:a8:9a:bb:dd:a7:8b:b4:
e9:8c:59:29:9b:29:b5:57:e3:57:7b:65:4d:cc:7a:
6f:d9:43:8e:31:57:d6:f3:7f:ac:92:93:65:60:12:
dc:f6:ac:10:c8:b8:b3:c6:f0:15:55:8e:19:46:2c:
53:32:3b:9b:be:e9:e9:6c:fc:d6:ff:27:dd:0b:20:
c4:0f:f0:1b:e6:9a:a3:26:20:99:f5:e8:6e:08:df:
fe:1d:6a:f3:49:95:67:a9:d5:8f:a1:33:c6:de:e7:
fd:64:83:d6:62:58:57:1b:21:44:3c:b9:c2:55:80:
00:8b:61:7f:e1:44:9e:79:2a:fc:77:90:f1:43:7d:
cd:74:42:7c:16:9c:f7:d5:56:04:af:d8:4b:1e:3f:
8c:ce:83:c1:2a:fe:ec:b6:1f:97:2a:c3:58:d3:e4:
94:31:6d:27:ae:c0:11:da:59:20:c0:58:43:9b:f9:
5b:98:fc:c4:d4:f0:4d:32:97:da:ca:48:9d:ec:70:
9d:c8:f1:d1:fb:79:72:e5:b5:99:a4:3d:70:17:c9:
9d:d0:7e:ce:f1:1a:31:7c:88:11:c5:1c:07:b4:1e:
da:11:67:01:25:d8:67:7b:46:bb:fb:94:1a:89:58:
ab:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:0A:FE:63:90:94:A8:B8:89:34:BF:83:8D:E9:B2:E1:5F:30:D6:97
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/6wr-Y5CUqLiJNL-Djemy4V8w1pc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
140.138.0.0/16
Signature Algorithm: sha256WithRSAEncryption
76:a9:2c:d6:94:9c:8a:a3:fc:6d:92:c0:b3:38:74:81:86:d8:
f6:94:9e:c3:62:1e:1e:cb:6f:00:75:4f:66:93:6c:83:3a:49:
df:bd:25:98:e2:9a:d3:0c:c1:ae:3b:fa:95:f2:dd:3a:aa:17:
a9:15:f1:cd:74:e8:ac:bf:c5:52:fd:7f:98:e2:57:8b:a9:5e:
b0:6c:ae:41:f7:10:a7:c9:3f:85:23:c3:60:6f:fc:59:7b:cf:
61:e2:f7:44:c4:5e:96:d3:0c:d6:5e:4b:da:43:a8:84:8a:f6:
b8:14:34:53:92:f6:a5:c3:59:75:aa:94:6d:f8:93:5e:af:10:
56:e1:79:51:9f:c9:1d:2a:0a:8f:00:59:01:6d:34:0d:57:4b:
d9:8f:82:27:f5:8e:e3:9c:b4:72:e4:a2:90:1e:9b:3e:f8:39:
e7:2d:3a:a4:7d:1d:f3:5e:49:b9:62:fc:61:02:1c:5f:61:f4:
4b:02:ee:bb:20:03:0e:f2:a3:11:ef:48:fa:b6:ae:b7:1b:22:
aa:ed:5c:d5:98:21:2c:f3:68:43:96:98:10:e4:33:11:bb:1a:
e3:53:ce:54:4a:62:74:0e:c0:55:8a:19:3d:c3:a1:de:87:96:
9e:5c:e4:39:48:9c:32:93:bb:7a:57:e4:fc:0a:5b:86:a0:88:
ba:7c:fd:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:20:33 2025 by rpki-client