Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/YmQRZkfIFznScYlx1mTpu50StYE.roa
File: YmQRZkfIFznScYlx1mTpu50StYE.roa (raw, json)
Hash identifier: pbOTb93lgWjzwdLZ+M5/veYHXPaNFEui7ZTEUzyKW4M=
Subject key identifier: 62:64:11:66:47:C8:17:39:D2:71:89:71:D6:64:E9:BB:9D:12:B5:81
Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Certificate serial: 0D1C
Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/YmQRZkfIFznScYlx1mTpu50StYE.roa
Signing time: Mon 10 Feb 2025 14:04:34 +0000
ROA not before: Mon 10 Feb 2025 14:04:34 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18046
IP address blocks: 61.65.236.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 12 Mar 2025 10:05:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3356 (0xd1c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Validity
Not Before: Feb 10 14:04:34 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6264116647C81739D2718971D664E9BB9D12B581
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:3a:c1:4f:6f:fa:fe:19:7b:28:5c:34:f1:04:
15:d2:f3:78:0f:33:14:48:53:44:8e:c3:56:e4:cc:
3c:7e:19:3f:f7:3d:5e:a4:2c:42:0e:40:14:59:23:
77:f1:b5:fa:3e:02:00:f4:ee:0f:42:23:47:7d:c3:
f2:52:e9:e2:5d:71:11:22:8d:25:b0:8a:a5:4f:f2:
4e:41:d6:15:10:c8:f1:31:3c:24:9a:5c:4b:4d:31:
69:91:85:98:8b:6c:eb:e2:56:2d:4d:73:7d:03:ce:
4f:5c:a1:0a:98:96:86:1f:ac:f4:a6:5a:da:32:0c:
e1:d6:11:bb:a9:8e:72:2e:0d:5f:92:fd:64:60:18:
06:a6:70:7b:3f:93:f3:24:b2:3f:f3:4c:c1:88:ad:
0b:07:fe:70:44:ea:88:59:3f:15:f4:57:07:7d:3e:
ea:c8:8b:c1:3a:30:e3:f7:d6:5e:80:16:59:71:22:
79:53:12:68:f8:00:ff:9e:3d:e0:66:dc:56:65:dc:
2a:9c:b5:ff:11:15:cf:05:7a:2a:e4:95:97:5d:51:
08:6f:89:dd:a7:cd:49:8d:f8:4e:93:99:7f:86:36:
64:06:e7:76:76:fd:47:7a:c8:19:e7:87:7d:10:07:
32:63:0f:ec:dd:82:12:cc:af:eb:ef:b8:5a:3d:92:
b6:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:64:11:66:47:C8:17:39:D2:71:89:71:D6:64:E9:BB:9D:12:B5:81
X509v3 Authority Key Identifier:
keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/YmQRZkfIFznScYlx1mTpu50StYE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.65.236.0/22
Signature Algorithm: sha256WithRSAEncryption
48:d8:b9:3f:cb:3d:9f:b0:1c:d6:05:19:49:b7:60:b8:f7:e4:
ac:41:bc:f8:25:7f:8f:79:a9:42:82:9e:cf:2e:fc:a6:d5:cf:
84:70:4d:8b:03:31:0e:4a:f6:08:56:e9:5d:b9:1d:39:f2:55:
8b:f3:82:73:8d:40:8c:37:fc:4f:40:58:26:29:62:45:51:a2:
f5:2e:d5:a2:46:81:bf:9f:bf:21:d7:98:aa:89:2d:51:76:29:
8d:9c:0a:ed:da:46:c8:d7:67:74:1a:d2:a9:8a:a9:4e:86:49:
43:73:dc:33:2e:d0:8c:76:00:46:ec:e1:91:cf:30:aa:2d:b3:
22:ec:91:29:ab:bd:5b:bf:79:db:82:12:a2:1d:6e:c4:fd:a9:
86:9a:eb:6d:50:f6:01:e6:43:de:63:ce:d0:a0:96:6c:da:85:
ca:5f:e4:f1:07:ad:58:6d:07:e1:9b:7c:e4:00:29:50:1e:f8:
8c:0d:84:55:78:e2:c4:13:59:c3:ef:ee:21:ca:2e:89:f8:b8:
32:9a:86:8c:fe:ff:9b:22:e6:06:d0:31:e3:ca:7d:ba:ac:b2:
fe:44:ca:09:e7:ae:f0:30:d0:12:5a:e0:3c:43:2e:83:55:38:
b9:4b:1a:0b:88:a2:f2:1a:8f:4f:55:72:7f:41:d7:f6:21:48:
71:c3:66:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 05:48:18 2025 by rpki-client