Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/UFL9WP3oKt739D7SoKTKzYBRi-A.roa
File: UFL9WP3oKt739D7SoKTKzYBRi-A.roa (raw, json)
Hash identifier: Yr0RKoj31QSRljBc1XHGuERjAjiuGBpYhbHj5XEu8X8=
Subject key identifier: 50:52:FD:58:FD:E8:2A:DE:F7:F4:3E:D2:A0:A4:CA:CD:80:51:8B:E0
Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Certificate serial: 0D1B
Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/UFL9WP3oKt739D7SoKTKzYBRi-A.roa
Signing time: Mon 10 Feb 2025 14:04:34 +0000
ROA not before: Mon 10 Feb 2025 14:04:34 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 198949
IP address blocks: 61.65.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Mar 2025 09:54:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3355 (0xd1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Validity
Not Before: Feb 10 14:04:34 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5052FD58FDE82ADEF7F43ED2A0A4CACD80518BE0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:7a:ff:11:57:aa:2a:eb:ed:7e:12:22:79:98:
c2:a8:06:20:c4:25:85:0a:fb:29:ba:f4:c7:b0:c6:
f9:f2:35:76:07:00:78:92:7c:a0:c8:24:a0:d0:7d:
a0:d3:46:bb:1a:2f:31:ac:8d:98:fa:d9:16:20:d7:
50:e6:2d:8a:88:90:8e:a5:7f:46:8c:03:80:67:47:
bf:f3:9d:41:46:82:73:db:ad:49:d5:cd:d2:7d:e1:
78:bd:86:cd:88:26:69:76:e9:07:a7:b1:89:34:76:
62:b8:c2:d2:de:d1:3e:2d:00:fe:02:62:9b:4c:ac:
99:4b:c7:46:12:30:60:ea:69:44:da:fa:69:76:7c:
7a:df:f1:bd:06:d3:26:d5:26:c6:dc:de:d0:16:e8:
af:ad:72:76:d6:2b:9a:a4:e0:93:8d:a1:8d:cb:9f:
79:d8:3e:68:2c:ab:eb:8f:6d:87:75:50:a7:bb:79:
e6:68:27:0c:dd:4a:cb:da:03:1e:d8:c4:0c:d0:66:
ed:35:5f:90:a8:21:0a:ee:d9:4f:93:92:35:fa:74:
12:e9:ae:10:f7:21:2d:aa:a4:25:04:08:98:c7:d0:
58:d8:a8:6f:8d:14:44:17:38:2d:dd:03:84:f8:11:
e1:6f:9a:9f:95:a4:44:c6:17:50:ba:26:32:6e:41:
b6:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:52:FD:58:FD:E8:2A:DE:F7:F4:3E:D2:A0:A4:CA:CD:80:51:8B:E0
X509v3 Authority Key Identifier:
keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/UFL9WP3oKt739D7SoKTKzYBRi-A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.65.239.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:c6:d4:1e:98:4b:bb:4d:b5:c6:ac:97:38:d0:90:e8:b7:6a:
4a:7e:0c:6d:24:6b:df:6a:2e:46:5f:c7:94:3a:64:12:89:8e:
92:ac:96:27:74:d6:01:5d:3a:87:3e:87:6e:93:e0:2d:18:5b:
7d:45:a9:bc:7f:67:c2:2a:db:f3:f4:2a:10:ae:cb:6c:5c:8b:
e0:9c:01:12:20:36:a5:30:a9:99:85:5e:bf:5d:34:ba:6f:7f:
51:42:4f:58:4a:aa:4e:36:95:b4:d7:b2:9a:60:43:d4:aa:b9:
61:d6:46:5f:b6:cf:8b:d7:33:9f:7a:8a:93:ff:a3:34:d2:0b:
76:72:b2:39:9a:d4:5e:f2:fa:5a:0f:df:5b:2d:e7:b5:20:da:
35:3b:9f:68:4d:7f:61:d6:1e:9e:a3:64:e8:4a:bf:61:37:d1:
5f:46:80:e3:3f:9a:26:d9:0f:b4:99:67:f9:77:26:03:76:6d:
cd:8c:e5:23:d8:12:cb:04:93:ba:eb:34:b2:eb:b5:07:0e:84:
36:ea:64:a5:d2:64:04:b6:0e:b1:5b:2c:58:ea:46:7c:e4:68:
af:05:5a:ec:e2:0e:cc:cc:64:8d:1c:79:fd:f5:6a:62:cd:eb:
80:51:56:dd:61:67:ad:08:5b:b3:27:b5:f0:b4:58:20:73:85:
0e:be:08:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 06:26:57 2025 by rpki-client