Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/ZJ6LjDgixQ3XeNelS_fuCmTTHSo.roa
File: ZJ6LjDgixQ3XeNelS_fuCmTTHSo.roa (raw, json)
Hash identifier: l7gfBuF6qhDGBYgrj0ZoJndfTkpJxqkRONNTzdoJIWU=
Subject key identifier: 64:9E:8B:8C:38:22:C5:0D:D7:78:D7:A5:4B:F7:EE:0A:64:D3:1D:2A
Certificate issuer: /CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6
Certificate serial: 0BE8
Authority key identifier: C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/ZJ6LjDgixQ3XeNelS_fuCmTTHSo.roa
Signing time: Mon 26 Aug 2024 05:32:22 +0000
ROA not before: Mon 26 Aug 2024 05:32:22 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 133955
IP address blocks: 223.165.13.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:55:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3048 (0xbe8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6
Validity
Not Before: Aug 26 05:32:22 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=649E8B8C3822C50DD778D7A54BF7EE0A64D31D2A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:d2:15:ea:af:a3:cb:59:84:e4:21:35:68:99:
e2:bd:19:ec:25:b1:3d:f7:38:d0:7a:eb:f1:54:ba:
32:d9:e2:f2:06:03:29:24:1a:3f:93:9a:9c:91:03:
bc:78:a2:8a:69:2c:bc:50:9a:33:d0:ba:0d:ed:94:
c6:d5:85:2b:36:af:a5:1f:15:93:1f:ec:e5:bf:44:
24:56:11:42:77:9e:5c:d5:fa:7f:ee:5e:8e:9f:66:
98:18:60:d1:4d:f8:3c:e3:db:e7:5d:af:8d:df:40:
8a:4c:b8:ac:bb:fc:43:50:25:cb:bb:98:91:d7:58:
f1:78:fc:be:a5:9f:56:0c:d5:d1:7e:0a:14:69:10:
6b:20:f6:2f:3d:f1:41:e2:7a:ac:94:ec:d0:d6:94:
6c:f1:c8:de:d9:ac:1e:e7:b0:49:e7:c0:78:9f:63:
10:c4:08:a8:0a:dd:7e:63:03:b6:40:f4:d9:fd:40:
ba:c8:0c:ac:90:c9:73:61:a3:2c:b9:9c:e3:d2:75:
6b:e4:e7:ee:93:56:e8:b9:d4:41:34:f7:fd:63:0c:
d4:a9:37:70:2e:ed:2d:36:b9:12:01:86:93:6c:95:
9e:bd:a7:f5:16:3b:ae:08:4a:58:88:c8:9e:2e:35:
7b:00:d0:d7:88:81:b8:33:67:c1:57:8a:3c:8a:a5:
fa:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:9E:8B:8C:38:22:C5:0D:D7:78:D7:A5:4B:F7:EE:0A:64:D3:1D:2A
X509v3 Authority Key Identifier:
keyid:C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/ZJ6LjDgixQ3XeNelS_fuCmTTHSo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.165.13.0/24
Signature Algorithm: sha256WithRSAEncryption
35:2b:60:f8:22:20:7d:dc:e8:d1:14:c6:13:4f:bf:b5:0b:b5:
be:6d:7e:a0:aa:2c:ed:c8:70:f7:d4:df:2b:62:84:47:df:cd:
0c:39:b5:14:d8:5d:99:21:fe:5e:1f:c2:d1:db:cd:b0:40:d3:
55:5f:9f:96:d0:6e:37:01:18:77:ed:ba:83:2a:91:0a:4c:e7:
0b:97:6e:c3:e3:a3:14:ce:ef:55:10:6b:94:57:ab:62:75:8d:
dc:65:67:0d:9c:6e:d5:61:c3:cb:5f:15:c0:f1:80:11:f6:52:
05:f6:af:f5:a0:8c:50:d7:3a:af:6b:47:57:7d:25:71:c5:af:
1f:d7:ea:bc:25:9e:35:12:17:ce:32:cb:97:03:58:65:78:2d:
81:22:62:3b:e4:16:0e:85:e7:3e:ab:d5:0e:1a:84:66:15:c0:
9c:d6:30:76:65:bd:6e:4f:bc:b4:06:35:ea:eb:65:2d:67:8b:
77:c6:b4:18:60:36:9b:6f:0e:d3:9a:85:ad:53:ea:bc:4a:83:
86:d5:aa:48:df:4b:90:90:6a:e8:46:0c:cc:26:db:59:5e:33:
17:f3:22:f9:35:64:f9:27:a2:16:44:cb:29:f7:b8:1f:12:84:
13:a2:7e:c8:74:f2:e4:41:77:06:89:10:df:d9:b9:ab:8c:92:
86:ca:30:f1
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:20:50 2025 by rpki-client