Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/kXwagqFONemEtjfpZWGBqFt12EM.roa
File: kXwagqFONemEtjfpZWGBqFt12EM.roa (raw, json)
Hash identifier: iPErbW0Q1nH1c7fPjnQFdwe/zHqQ+wZfQPvNh8cE7RY=
Subject key identifier: 91:7C:1A:82:A1:4E:35:E9:84:B6:37:E9:65:61:81:A8:5B:75:D8:43
Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Certificate serial: 0D24
Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/kXwagqFONemEtjfpZWGBqFt12EM.roa
Signing time: Mon 10 Feb 2025 14:04:36 +0000
ROA not before: Mon 10 Feb 2025 14:04:36 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131597
IP address blocks: 61.65.224.0/21 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Mar 2025 10:04:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3364 (0xd24)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Validity
Not Before: Feb 10 14:04:36 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=917C1A82A14E35E984B637E9656181A85B75D843
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:69:36:4d:0b:a0:15:5e:30:45:f2:f2:07:b5:
bc:82:09:99:d0:b0:c6:90:71:f7:f7:1a:1b:28:6f:
38:db:6d:74:23:fc:e2:19:6d:da:ba:1f:51:5d:82:
4d:38:78:8f:d5:67:f7:a6:e0:13:cb:ec:07:b4:28:
5d:11:7d:29:f1:3c:3a:13:62:b5:54:87:b8:97:ae:
d4:c9:4e:e6:bd:55:e3:5a:f6:01:22:2b:a1:4b:e6:
dc:19:b3:eb:31:a0:5f:f9:7a:3b:44:65:30:d1:8b:
23:8e:07:c4:42:b6:6c:01:f5:d9:67:36:26:83:93:
5d:50:ab:4b:bd:93:3a:2b:0c:5c:33:d4:e9:10:1d:
1d:f1:41:fd:07:76:b8:ef:9b:b7:ef:7a:31:c5:74:
c6:f4:9a:e3:a6:08:6a:d4:15:67:7b:65:43:f8:b3:
45:49:0e:31:85:e8:b0:6f:d6:fc:a8:98:b4:f2:48:
f9:1d:ea:36:8c:43:4a:49:56:64:bd:e1:f1:3a:c4:
8d:dc:e6:b1:a4:b0:0f:35:53:73:44:55:0a:a8:40:
5b:22:e9:37:aa:f3:c8:54:b6:13:84:01:3c:e5:65:
fb:cd:dd:a7:e6:da:10:1a:76:34:ff:c1:dd:55:45:
2e:56:16:16:45:f1:ad:c5:82:f2:1f:f6:32:1f:c4:
0c:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:7C:1A:82:A1:4E:35:E9:84:B6:37:E9:65:61:81:A8:5B:75:D8:43
X509v3 Authority Key Identifier:
keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/kXwagqFONemEtjfpZWGBqFt12EM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.65.224.0/21
Signature Algorithm: sha256WithRSAEncryption
87:d1:fc:50:39:a9:e7:94:e8:a2:1d:55:9b:4c:2f:a8:ae:08:
2a:92:d1:87:7d:87:93:79:d3:f0:d8:8e:a7:24:cb:b2:cc:e5:
6b:35:f9:b8:bb:bd:b8:19:fd:64:44:87:b4:aa:e2:66:06:c4:
d6:0e:e3:61:be:23:f9:1a:02:22:53:6c:ff:d8:7e:97:ed:e8:
da:ec:75:55:9e:06:85:ec:b5:e0:42:1a:4c:7a:f3:b6:7d:68:
1b:06:39:6e:f4:14:4d:14:98:96:29:4e:cd:6c:5c:d2:4b:92:
f7:96:cc:5d:b7:83:12:6f:ca:d3:43:7c:bf:f6:f0:43:37:ef:
ed:99:0a:7e:0c:e3:3b:ad:6d:14:c6:15:65:b3:6b:f8:d3:52:
a5:00:60:2b:37:f9:97:e4:19:f8:95:3f:2c:81:e7:0b:9d:57:
5e:fa:ac:01:77:f0:4f:90:12:ac:b5:2b:f1:db:ab:25:31:61:
52:62:21:d4:f7:9c:fd:23:d1:59:fd:2b:f0:e8:b5:b7:48:1c:
3f:4e:06:7a:63:8f:6e:be:46:fa:b1:e5:af:94:c2:9f:25:a3:
24:ca:e0:b2:f0:06:c9:c2:9b:1c:75:81:7d:b6:fc:67:bc:18:
0e:6a:0e:39:05:05:0f:c7:33:c6:3f:b3:b3:73:67:ab:1d:27:
20:5e:15:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 06:29:16 2025 by rpki-client