Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/IEiMQeM3eKvtYKP3iMqVrLhu3a4.roa
File: IEiMQeM3eKvtYKP3iMqVrLhu3a4.roa (raw, json)
Hash identifier: Ndo3IH3JddbJUP5n3ZOJ2pjO3XRrZFa5FB7OeOX6744=
Subject key identifier: 20:48:8C:41:E3:37:78:AB:ED:60:A3:F7:88:CA:95:AC:B8:6E:DD:AE
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0CD0
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/IEiMQeM3eKvtYKP3iMqVrLhu3a4.roa
Signing time: Mon 26 Aug 2024 05:27:34 +0000
ROA not before: Mon 26 Aug 2024 05:27:34 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131596
IP address blocks: 61.63.96.0/19 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:13:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3280 (0xcd0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Aug 26 05:27:34 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=20488C41E33778ABED60A3F788CA95ACB86EDDAE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:d8:cd:af:dc:b3:4e:5e:c0:7d:aa:c9:3b:25:
b1:32:af:5b:85:ec:90:cd:f0:34:5a:ad:e5:1e:29:
c4:61:61:e4:24:d0:ce:b6:99:c3:bb:9b:34:3b:40:
05:1b:d2:7b:47:2b:23:9f:0a:d3:a9:4c:16:50:b3:
e7:6e:72:04:65:9d:8e:ee:aa:ce:9d:2a:f4:50:bf:
5d:b8:e3:4a:af:e4:73:23:a2:92:91:79:c4:48:a6:
2a:65:d2:59:af:14:18:e0:52:bb:cd:e6:6f:7e:7b:
5f:6c:24:df:54:92:48:01:f8:d5:8e:82:9e:2d:75:
da:a7:6b:f6:20:72:7b:15:ae:cf:f3:81:d5:31:fd:
92:9e:a6:99:b9:77:91:d6:3a:a7:67:4c:b0:2d:20:
b6:0b:85:6f:6c:70:81:44:b5:ad:36:60:fe:c3:0b:
b6:cc:2e:ff:ea:f4:f7:ba:cf:bc:28:46:84:2f:13:
b1:b8:57:9b:82:4b:70:12:73:88:b0:1a:bd:73:ae:
db:ed:cb:7d:06:8b:ec:b7:ff:ff:45:f8:43:6f:24:
6d:c1:16:d8:f4:3c:5c:49:8a:fa:51:f9:22:7b:db:
e0:10:a3:e6:93:89:b9:f1:19:e6:5e:54:cd:b9:c4:
39:54:ba:67:83:4c:46:77:6e:86:c3:d8:0b:51:d1:
39:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:48:8C:41:E3:37:78:AB:ED:60:A3:F7:88:CA:95:AC:B8:6E:DD:AE
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/IEiMQeM3eKvtYKP3iMqVrLhu3a4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.63.96.0/19
Signature Algorithm: sha256WithRSAEncryption
b4:3e:dc:ff:81:01:48:18:b7:11:ee:3f:80:8c:7b:e4:33:b9:
99:7b:5a:f0:b0:58:15:5a:79:55:18:cb:2a:40:9b:c6:fc:21:
0a:b3:e6:e1:da:6f:ba:fa:b2:ff:e7:d2:4c:f0:a4:15:c4:b3:
22:c6:d0:ca:9b:7d:98:16:26:4c:3b:27:f7:3f:32:21:98:30:
dd:dc:35:83:d3:64:97:e9:b6:d3:85:9c:3f:06:c5:43:8b:f6:
a0:36:ed:64:51:49:1d:ca:9f:6c:d7:90:27:0f:8a:6a:93:34:
29:88:a2:e7:c9:4c:ad:81:a3:c7:f4:b6:b4:22:a7:d0:7e:38:
81:fc:e1:44:76:ac:49:3f:33:f7:a5:b0:cd:b0:5b:dd:a0:9a:
a9:f4:16:4a:ce:77:95:d0:f5:6e:8b:d5:23:e3:0e:33:eb:59:
28:91:5f:aa:cd:30:7c:91:10:c3:39:e9:69:e3:87:0f:06:94:
7b:dc:b8:8e:4c:40:30:dc:eb:46:e0:82:f2:15:22:76:44:dc:
16:87:a3:d3:69:66:91:67:2d:92:ae:98:46:cc:5c:04:ee:64:
88:2b:72:5a:52:1a:c9:73:ae:c9:5c:25:73:f5:a4:5a:79:f7:
78:2c:8d:d0:55:a8:ac:54:27:6e:d4:cf:ab:46:f6:3d:b5:62:
e4:e6:a4:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 22:43:39 2025 by rpki-client