Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/9XfHTjXSwQkpn1mnHFc5GbB8Foc.roa
File: 9XfHTjXSwQkpn1mnHFc5GbB8Foc.roa (raw, json)
Hash identifier: mu30MPREg4bgF8QZJki7N6f8ZbjMw5GRkXLI0kcnMYo=
Subject key identifier: F5:77:C7:4E:35:D2:C1:09:29:9F:59:A7:1C:57:39:19:B0:7C:16:87
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 0CD9
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/9XfHTjXSwQkpn1mnHFc5GbB8Foc.roa
Signing time: Mon 26 Aug 2024 05:25:21 +0000
ROA not before: Mon 26 Aug 2024 05:25:21 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9676
IP address blocks: 61.63.128.0/19 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:51:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3289 (0xcd9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Aug 26 05:25:21 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F577C74E35D2C109299F59A71C573919B07C1687
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:20:ff:67:33:26:4f:05:c4:09:b9:ec:37:d0:
11:45:55:0e:8e:60:ed:7e:44:74:6d:df:5a:05:b0:
b3:ff:57:b2:86:35:c1:7a:90:39:40:8a:f7:d2:f5:
23:ed:b2:41:14:49:9f:5c:c6:ad:a2:37:21:f1:4a:
49:66:f5:32:a2:90:b8:de:3a:ff:af:2b:41:af:65:
b1:85:a0:2c:7b:49:e1:a0:1d:02:4d:88:fb:db:28:
b3:ad:ab:91:0a:27:12:e5:e9:49:3f:33:a0:4f:0b:
94:32:d3:c5:45:1b:df:af:ce:1c:0a:33:d1:77:f8:
b4:10:a1:6c:7a:64:d1:b4:93:a3:8a:5b:6f:b8:4a:
21:f3:a3:0a:1f:e0:f2:1a:1d:db:8e:cc:6b:06:ee:
b5:5b:ee:08:ff:58:48:1f:e1:6f:17:a2:66:3b:8e:
4a:35:d6:10:23:7e:e9:20:ed:7a:bc:89:60:75:45:
83:e4:b8:ab:3c:4f:62:a5:56:38:40:82:8e:3b:1c:
3f:e7:97:57:88:2d:ec:3e:b5:24:e1:82:97:da:b6:
e5:c4:80:a8:18:b9:a1:a8:c5:ba:45:a7:2d:b9:5e:
24:39:2f:60:64:68:19:ba:6a:fc:42:88:56:3d:39:
e6:d6:3c:0e:1f:c9:fe:06:34:0c:67:cd:3e:82:b6:
48:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:77:C7:4E:35:D2:C1:09:29:9F:59:A7:1C:57:39:19:B0:7C:16:87
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/9XfHTjXSwQkpn1mnHFc5GbB8Foc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.63.128.0/19
Signature Algorithm: sha256WithRSAEncryption
76:c0:64:26:a4:64:1b:08:08:c6:f8:a3:36:e3:d8:5a:ca:63:
64:b9:27:9e:39:a0:cd:24:6f:e7:13:8e:fd:22:d6:1e:cb:8c:
c2:d5:fd:11:7d:81:5c:04:ee:f5:a8:30:16:d8:0c:38:74:8f:
e4:8e:95:44:68:f4:ec:78:25:e5:6f:ce:1d:79:b9:e1:b2:98:
e3:99:a3:75:db:5d:e1:6c:2b:f2:b9:fb:23:67:d7:bb:44:30:
67:23:9e:78:6b:72:25:c2:3e:c9:8c:08:28:53:21:c4:50:08:
f4:5f:7a:9c:1e:76:cf:4c:cf:bf:b9:c4:c3:a4:8b:21:da:bf:
c6:9b:92:6b:df:58:01:08:b3:e0:3b:96:9a:de:a2:66:11:ae:
c7:ff:cc:12:8e:b5:bd:06:6f:65:41:b7:46:9e:ab:a7:95:11:
73:b8:41:0d:0a:70:66:ae:2e:97:07:7c:2b:e0:4c:6b:56:a1:
6d:c3:f0:56:84:86:65:02:1f:50:79:e7:e2:4c:e5:46:22:f6:
cc:24:23:6d:4f:68:3a:5f:e2:09:32:c3:99:0f:c0:a4:20:9b:
36:9d:51:ab:4e:12:53:b3:bf:1e:27:dd:2c:21:cb:0e:fe:88:
d4:69:2e:85:d7:01:be:58:dd:f3:15:f9:f9:c9:11:29:00:93:
c0:cf:59:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 23:42:21 2025 by rpki-client