Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EDTNS/rgp1YESsmJ1JRU8R7TsdguvgXOU.roa
File: rgp1YESsmJ1JRU8R7TsdguvgXOU.roa (raw, json)
Hash identifier: 3vzqcm+uHSMkhGUrQ+dGuzZnPYJiiS3LtHedLNtJw8U=
Subject key identifier: AE:0A:75:60:44:AC:98:9D:49:45:4F:11:ED:3B:1D:82:EB:E0:5C:E5
Certificate issuer: /CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E
Certificate serial: 0C4E
Authority key identifier: 94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/rgp1YESsmJ1JRU8R7TsdguvgXOU.roa
Signing time: Mon 26 Aug 2024 05:13:04 +0000
ROA not before: Mon 26 Aug 2024 05:13:04 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18411
IP address blocks: 61.56.16.0/20 maxlen: 20
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:10:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3150 (0xc4e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E
Validity
Not Before: Aug 26 05:13:04 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=AE0A756044AC989D49454F11ED3B1D82EBE05CE5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ba:9d:f1:ea:3b:88:c9:51:27:b0:62:6e:60:
72:c7:b2:90:69:36:bd:b6:49:da:8e:72:cc:cb:1c:
0e:fc:f3:ef:62:e9:c8:e7:1c:88:16:1f:33:3f:4e:
4c:9f:89:d8:c4:0b:7a:c0:ae:63:55:8a:f3:5c:39:
a5:a5:f0:e3:74:02:0f:93:4d:ec:55:89:b9:bd:cc:
7a:6e:b7:b0:0d:f8:b6:f9:77:0c:e4:d2:8d:fd:e5:
00:30:ef:8d:80:cc:af:df:fd:ab:f9:62:e7:51:7d:
f1:03:76:68:18:15:c5:0a:8c:a8:eb:23:d5:63:50:
a1:68:dd:a9:d3:65:02:35:99:46:94:12:a3:c3:af:
8a:ff:ce:88:f9:56:d2:b1:2d:00:e1:a4:20:5a:7b:
7a:00:27:b2:a8:b8:13:ae:33:47:8e:f7:cf:ff:92:
9c:c7:75:ef:8a:fd:b2:5a:4d:74:5e:ad:6b:d0:b1:
05:b5:b2:53:f3:55:47:e1:04:2a:3d:68:b6:0e:d5:
2f:a4:89:58:2b:f3:e2:4c:7f:3b:ba:41:86:96:29:
47:b4:0f:2c:a5:f5:07:40:12:73:f9:73:cd:8c:0c:
dc:c1:86:ac:ad:66:37:a2:de:31:69:c6:42:15:49:
73:4a:1b:a1:08:4c:91:ee:2b:c7:56:62:d9:e7:e6:
d4:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:0A:75:60:44:AC:98:9D:49:45:4F:11:ED:3B:1D:82:EB:E0:5C:E5
X509v3 Authority Key Identifier:
keyid:94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/lMbd_dS6pQQA86EZpYM84AIb2y4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/rgp1YESsmJ1JRU8R7TsdguvgXOU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.16.0/20
Signature Algorithm: sha256WithRSAEncryption
32:35:24:7a:eb:4f:70:3f:77:e4:93:99:f8:25:74:78:52:75:
9b:dc:79:a8:79:3e:43:4c:8f:85:5e:e3:e7:5f:e6:64:68:9f:
70:36:42:38:d8:71:2b:9b:3a:f4:77:9c:3d:5c:90:34:bd:e9:
61:96:27:c2:99:b4:42:47:3a:06:8b:49:a4:12:fb:11:09:df:
ca:c4:05:c9:47:87:14:e9:2e:74:d6:df:d3:35:98:1f:9e:72:
88:85:38:fd:87:79:41:0a:30:1e:d8:45:4d:10:50:91:89:d0:
ad:27:d6:d1:9e:03:6d:62:af:88:be:39:5b:63:f6:f2:53:b5:
76:9f:cd:26:9e:e6:6c:b6:15:99:d5:3d:20:18:a7:fe:42:29:
2e:02:54:3e:bb:04:5b:1e:c7:92:88:4b:ce:1e:ee:b5:68:fa:
f2:7f:4f:62:76:70:5b:4a:ac:6e:41:c7:06:7e:2c:3a:fb:74:
97:a9:4e:02:01:69:49:4a:23:b0:0b:df:62:9c:7a:7c:1c:fb:
a4:3b:bd:4a:06:6a:83:f6:98:2e:64:68:e1:55:8a:0e:46:fc:
05:76:40:6e:94:36:0d:8a:d9:3d:30:b5:90:25:55:6e:f6:33:
7c:9f:43:3a:bb:fc:0a:44:c8:9d:56:03:f9:d0:82:38:73:19:
86:52:c8:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 23:47:58 2025 by rpki-client