Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/REKEBmGCIkc6TAWmwspnJlCikk4.roa
File: REKEBmGCIkc6TAWmwspnJlCikk4.roa (raw, json)
Hash identifier: qUVLW1j9Olm7UsWW5TbVN4ASjYuGkT5hef0/GWCYjFk=
Subject key identifier: 44:42:84:06:61:82:22:47:3A:4C:05:A6:C2:CA:67:26:50:A2:92:4E
Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial: 0DE7
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/REKEBmGCIkc6TAWmwspnJlCikk4.roa
Signing time: Mon 26 Aug 2024 05:27:18 +0000
ROA not before: Mon 26 Aug 2024 05:27:17 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 1659
IP address blocks: 192.83.192.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:16:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3559 (0xde7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Validity
Not Before: Aug 26 05:27:17 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=44428406618222473A4C05A6C2CA672650A2924E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:82:f9:c5:9b:b8:f9:02:fc:06:00:f3:69:7f:
e8:83:49:8e:79:33:7e:ff:75:46:e5:38:17:4d:00:
97:1e:e3:50:27:b9:1a:c7:f3:ca:ee:9b:c9:3a:ef:
11:a4:cf:01:3c:74:20:cc:7a:66:68:84:f2:9d:48:
50:57:eb:fa:c4:84:90:2c:b4:1a:41:a5:fb:84:7f:
cf:18:e5:5b:18:b8:56:c2:5b:c2:e9:eb:0b:aa:e0:
5e:c0:c7:7e:e8:4e:be:b6:a9:be:c1:a4:02:64:b0:
c4:00:17:5f:37:c6:a5:df:9d:56:0f:bd:81:30:da:
76:f4:c3:76:df:ba:87:f5:01:76:0a:e1:d7:8e:78:
8b:c0:8d:fc:6e:eb:23:a5:cb:00:59:d3:90:ca:d9:
07:9b:2b:81:88:6d:f5:da:dd:e7:4b:92:9e:e9:4d:
4a:1f:3c:26:f1:8d:95:d7:25:63:d3:ea:50:20:6c:
53:53:e5:60:c3:0a:fd:84:4e:01:89:a7:ef:5a:10:
a0:fa:dc:c3:5a:df:10:7b:61:75:78:8e:71:19:a3:
13:85:b4:2c:9f:3d:ce:f0:7c:27:5e:20:25:a5:f4:
21:7c:bb:5f:b6:f4:12:44:43:6f:f1:7b:29:ca:90:
cb:3b:5e:e7:6e:2d:04:a0:a8:69:de:9a:e3:87:b9:
5c:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:42:84:06:61:82:22:47:3A:4C:05:A6:C2:CA:67:26:50:A2:92:4E
X509v3 Authority Key Identifier:
keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/REKEBmGCIkc6TAWmwspnJlCikk4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
192.83.192.0/22
Signature Algorithm: sha256WithRSAEncryption
0b:72:0a:f6:39:69:28:ee:98:3e:e1:c4:43:28:70:1e:1f:53:
9b:88:7a:33:d7:ae:07:dd:6f:2a:72:b3:03:20:18:9f:c5:44:
56:e9:f3:0c:42:85:45:36:18:11:77:34:df:68:21:83:ff:28:
b1:76:9d:4f:0b:f4:04:70:b2:37:4a:ab:5d:c3:e3:1d:ec:f0:
f3:a5:80:4d:b3:73:90:bb:cd:cd:77:9a:9d:de:df:1a:ee:43:
a9:2f:6e:30:3f:96:7d:f0:0a:1d:04:b0:b7:64:53:3a:f5:f4:
91:0a:99:d9:65:e4:9b:58:c3:9a:a1:02:da:ee:08:d7:62:ea:
88:fb:95:9a:e2:42:47:ae:a9:88:f5:a4:2c:45:5c:86:96:ca:
c9:60:43:71:69:69:bb:0e:a5:16:5c:bb:89:99:0d:66:e3:bd:
e1:d6:94:ba:fb:d1:b3:59:6f:65:c5:11:d2:ab:99:65:c3:4a:
28:44:c2:1f:84:ef:de:8e:44:09:76:51:f3:fa:b1:e7:cc:0c:
a5:9a:c7:73:c9:2e:80:04:96:68:be:9e:5e:6a:be:57:ba:f7:
d4:2c:21:37:dd:38:13:a8:34:c5:92:2b:6a:78:b7:5d:18:08:
4d:f6:59:98:8d:3f:38:eb:e0:cf:34:e8:6f:6e:0c:8e:cc:a5:
28:a4:3e:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:12:37 2025 by rpki-client