Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/cktGWx2wnvm7hwjcSpxkCc-asvU.roa
File: cktGWx2wnvm7hwjcSpxkCc-asvU.roa (raw, json)
Hash identifier: RQfYd/NEu40h78qcXqEgwieKZcro5AJBJNZH/41GXwM=
Subject key identifier: 72:4B:46:5B:1D:B0:9E:F9:BB:87:08:DC:4A:9C:64:09:CF:9A:B2:F5
Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Certificate serial: 0C9A
Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/cktGWx2wnvm7hwjcSpxkCc-asvU.roa
Signing time: Mon 26 Aug 2024 05:17:13 +0000
ROA not before: Mon 26 Aug 2024 05:17:13 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4782
IP address blocks: 61.57.32.0/19 maxlen: 19
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:08:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3226 (0xc9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Validity
Not Before: Aug 26 05:17:13 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=724B465B1DB09EF9BB8708DC4A9C6409CF9AB2F5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:a4:9b:c4:90:de:ce:44:64:0f:9b:94:11:c6:
a6:eb:2e:27:92:dc:53:04:4a:ea:16:8d:6d:ef:61:
cd:ae:e5:4b:71:39:56:f5:4a:61:55:56:63:e8:ec:
33:bd:85:1d:19:36:3a:78:30:6f:4a:d6:0b:35:2d:
0c:ae:4e:eb:5c:06:31:b0:67:ad:07:59:3b:d5:bf:
5f:00:96:e6:25:72:27:27:b6:3e:32:f4:fb:00:63:
ed:aa:89:4b:e4:ee:90:44:79:64:97:21:39:30:57:
a0:b3:7f:a4:7d:b5:89:ae:b0:2b:a0:fc:9e:60:97:
47:58:f5:06:f0:cf:db:b9:57:5d:b0:25:d8:67:13:
9f:c9:2f:99:26:19:b8:c2:de:94:6b:fc:a6:65:b4:
c7:d3:7e:a9:6a:ed:cc:47:d7:d5:23:c7:5c:6b:16:
74:b4:0d:ce:7b:7d:c0:9f:43:17:23:69:96:04:b9:
ed:1e:de:bf:b6:4b:93:a8:f5:cc:9e:3c:2d:b4:30:
44:05:79:cc:54:6f:62:22:f6:33:f0:11:d8:f4:f2:
ca:39:6c:32:9a:15:1f:e9:99:a6:c2:86:34:f6:66:
58:3f:ee:af:2f:a6:f0:19:5c:f7:4e:85:e8:bb:11:
ba:fe:34:6f:32:9b:57:15:e1:bd:0b:25:33:37:51:
97:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:4B:46:5B:1D:B0:9E:F9:BB:87:08:DC:4A:9C:64:09:CF:9A:B2:F5
X509v3 Authority Key Identifier:
keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/cktGWx2wnvm7hwjcSpxkCc-asvU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.57.32.0/19
Signature Algorithm: sha256WithRSAEncryption
9a:fb:0d:38:a1:56:4e:8c:17:9a:9c:12:72:97:14:62:61:f7:
e9:f6:de:b2:d8:d8:66:0f:25:5b:1a:ff:1e:cc:b2:0e:b7:dd:
72:78:fd:8a:74:74:03:30:2c:9c:9c:e4:1b:31:a2:d4:b3:06:
17:9a:0a:86:a8:ab:29:e2:39:5d:dd:c2:ba:37:85:4e:3d:d1:
bc:07:f5:fb:81:60:30:8c:39:4c:3c:04:4c:bb:62:f2:a2:b9:
d7:1c:a2:17:17:50:82:71:47:c3:68:16:e6:82:6e:98:a7:89:
bb:7f:0b:80:83:fe:f5:fe:f7:aa:f7:b2:ac:57:23:84:9b:4c:
32:7b:66:a1:bc:55:30:c2:60:f1:59:5f:e9:9e:ae:7f:b1:3a:
27:f9:e1:cd:a8:31:76:7f:a2:77:ad:e7:e8:ca:69:0a:cf:d0:
c7:66:f7:e1:13:d5:df:17:40:90:a6:67:78:a5:1b:49:58:8d:
74:2c:71:5c:98:16:10:48:e0:63:4f:78:94:47:18:3c:4f:3c:
97:a6:87:be:cd:3d:80:c9:3c:2c:68:34:56:bc:cf:09:80:ac:
55:e3:38:a1:32:c5:22:e5:8c:03:17:be:c8:22:f5:8a:12:7a:
9e:e1:aa:d5:a9:3f:fe:b4:bd:2c:85:74:85:d8:c9:00:b6:c1:
9b:76:51:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:16:35 2025 by rpki-client