Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/rJYQ57AxsXjsz4lvaRCDlihsnKM.roa
File: rJYQ57AxsXjsz4lvaRCDlihsnKM.roa (raw, json)
Hash identifier: k7Y9e0atMiLU43iCYujm4G+QZ60nHBUHsRxsrpNkuAs=
Subject key identifier: AC:96:10:E7:B0:31:B1:78:EC:CF:89:6F:69:10:83:96:28:6C:9C:A3
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0E5B
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/rJYQ57AxsXjsz4lvaRCDlihsnKM.roa
Signing time: Mon 26 Aug 2024 05:27:18 +0000
ROA not before: Mon 26 Aug 2024 05:27:18 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 1659
IP address blocks: 210.60.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:16:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3675 (0xe5b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Aug 26 05:27:18 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=AC9610E7B031B178ECCF896F69108396286C9CA3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:4c:03:75:4f:45:be:5c:2c:cc:65:22:56:43:
15:f9:4f:ac:fa:9a:a9:01:22:c8:0a:01:09:9d:5f:
74:48:04:a4:f4:b9:b5:98:57:34:c8:51:bb:c9:69:
8f:66:c4:6f:05:e1:66:d3:30:78:aa:82:c2:c9:57:
fc:b9:5d:b6:ac:cb:11:6e:d4:c8:dd:86:5f:3e:52:
72:2b:e2:8a:fe:9d:2c:e5:59:27:b6:d1:37:af:a4:
81:ea:5c:7c:61:6e:ea:a5:ab:8b:e0:97:0c:30:53:
bc:24:97:46:06:cc:87:b3:e9:72:11:c5:b2:57:00:
a1:cd:96:1e:c5:0f:6e:4e:a2:68:05:eb:df:96:d3:
29:81:47:1f:6b:df:e0:d9:a9:69:f0:81:dc:14:b7:
f3:5d:cf:e1:3e:4d:88:3d:dc:3b:03:67:81:62:76:
52:89:2d:4b:15:e9:3f:5f:26:05:c9:e3:bf:75:0c:
48:fa:0c:70:99:6f:55:74:45:5f:fa:a4:e3:40:53:
a9:0e:0e:b4:fa:29:7f:76:e4:5a:82:74:16:44:e0:
95:d3:d9:af:34:a7:de:61:4a:d9:7b:63:3d:48:58:
18:74:35:91:0b:9c:05:3f:ab:2b:ca:28:b8:a5:57:
33:b7:82:41:0a:39:72:70:7b:33:93:4e:f1:41:2e:
15:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:96:10:E7:B0:31:B1:78:EC:CF:89:6F:69:10:83:96:28:6C:9C:A3
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/rJYQ57AxsXjsz4lvaRCDlihsnKM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.60.0.0/16
Signature Algorithm: sha256WithRSAEncryption
7a:05:d7:f0:7f:12:94:df:d5:92:57:4b:d3:07:11:98:06:4b:
9d:14:cf:e6:8d:fb:65:3c:18:fd:6a:2f:01:ff:d3:bc:05:e7:
9c:93:65:f9:51:31:1e:50:f8:08:f7:24:e7:fc:94:df:f2:28:
5c:09:fc:ef:ef:41:6a:5d:35:4b:db:19:50:ef:88:18:f8:f8:
c1:bb:44:53:1c:5d:0a:39:1d:79:e3:ac:56:ef:d4:a9:62:cf:
68:5f:cd:76:51:23:c8:31:58:6e:e7:f5:1b:1b:d3:b1:92:40:
25:f6:16:65:ce:e6:19:9b:b4:9b:52:7c:7d:9a:a2:12:ef:ac:
73:34:1c:90:27:fb:46:01:bd:c8:21:a1:a3:e5:c8:d8:a2:11:
a9:52:36:86:8c:b9:37:a2:19:3c:4a:5c:6d:a2:2d:6e:96:30:
a2:93:4a:c3:91:52:1d:f0:ae:33:52:ec:df:41:76:e4:7e:7d:
92:6a:3c:b6:99:21:25:a6:73:51:5b:b8:ae:a0:11:ef:38:95:
9b:c4:3d:21:08:22:cd:23:69:c4:28:56:83:72:48:19:20:f1:
2f:0c:57:71:58:51:f0:8e:04:54:d5:2a:cc:68:6c:4e:19:d0:
84:44:00:89:9c:25:aa:c8:7f:7f:fc:a7:59:78:8f:ed:40:3d:
d0:a7:19:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:45:38 2025 by rpki-client