Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/f6G-dL62L3Dc_xMpIVmdQEqxDLM.roa
File: f6G-dL62L3Dc_xMpIVmdQEqxDLM.roa (raw, json)
Hash identifier: aKdNBqhCBtiSBUlC6ed3ZNBrIaYEZx5BWJB6mFHmheA=
Subject key identifier: 7F:A1:BE:74:BE:B6:2F:70:DC:FF:13:29:21:59:9D:40:4A:B1:0C:B3
Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Certificate serial: 0C9D
Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/f6G-dL62L3Dc_xMpIVmdQEqxDLM.roa
Signing time: Mon 26 Aug 2024 05:17:14 +0000
ROA not before: Mon 26 Aug 2024 05:17:14 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4782
IP address blocks: 211.79.160.0/19 maxlen: 19
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:08:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3229 (0xc9d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Validity
Not Before: Aug 26 05:17:14 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=7FA1BE74BEB62F70DCFF132921599D404AB10CB3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:c4:2a:ab:64:71:14:eb:08:28:f6:62:53:ca:
be:d3:56:88:af:f9:f2:cc:67:98:b2:e0:71:00:8c:
24:ab:e0:a4:23:24:49:f5:df:a6:ec:4f:75:a0:08:
8e:9d:bb:45:8b:69:af:ba:9c:31:45:be:2b:66:e5:
48:ff:18:80:4c:9c:01:36:fd:3e:f4:8b:b1:dd:a9:
75:44:9a:56:ca:5e:a9:be:50:26:51:0b:11:9a:19:
b0:59:a5:0a:8f:45:3d:d0:8a:38:88:88:df:74:1f:
01:98:65:71:a5:3a:d2:d4:97:e3:d5:74:ae:8d:82:
c6:03:93:16:8b:09:c2:d1:98:57:e8:84:2f:4e:dd:
82:f3:ab:4e:65:1c:1b:5e:54:ce:01:a9:e0:48:d8:
5a:fb:ae:5b:b8:d0:3c:f9:c8:4a:85:2b:82:72:65:
96:f3:49:87:a7:30:b4:93:d4:16:d5:57:4f:38:05:
3c:55:a6:fa:04:ca:1f:3b:a7:c8:d2:06:5a:6a:21:
70:8e:3c:07:c2:40:f6:65:6a:9d:62:e5:68:b1:a0:
75:ae:11:7b:54:ca:d0:a9:6f:c1:90:02:e1:1f:67:
83:b1:07:c6:64:38:f0:86:9d:c9:2c:14:6f:09:4d:
5b:f3:45:0d:68:90:f5:d1:23:aa:30:82:ff:90:6f:
10:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:A1:BE:74:BE:B6:2F:70:DC:FF:13:29:21:59:9D:40:4A:B1:0C:B3
X509v3 Authority Key Identifier:
keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/f6G-dL62L3Dc_xMpIVmdQEqxDLM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.79.160.0/19
Signature Algorithm: sha256WithRSAEncryption
9a:9e:f9:c4:fa:16:4d:5e:20:26:fd:50:8a:c9:8a:96:95:99:
36:a4:07:9f:af:f3:35:35:66:ed:8a:0c:34:01:5a:a9:bf:7e:
fe:d9:9d:bb:da:cc:26:24:35:3e:f7:17:98:f4:1e:3b:51:0d:
48:1c:56:43:7f:29:6c:78:fc:c7:0c:3f:75:28:df:77:d1:2c:
b8:41:51:28:6b:10:8e:5a:b2:72:e1:6b:0f:75:f3:20:71:77:
54:2b:71:ee:67:19:76:63:b2:bf:a7:85:8d:92:76:dd:96:43:
52:e0:50:7d:c3:5b:e0:43:94:8b:53:9b:fe:6e:dc:2d:28:fa:
03:20:61:f8:f9:6e:30:14:bd:c8:1f:ea:a6:1a:85:78:53:35:
95:2e:43:cc:c6:52:a1:fb:4f:7d:4f:72:70:61:3a:9c:89:77:
c4:5a:6b:ac:8a:da:3f:b9:7b:5a:c5:fe:63:24:b6:5e:92:2d:
ff:b3:ac:52:7a:56:dd:78:14:f5:fd:cc:55:30:d5:69:5c:43:
b2:8c:8f:cc:54:e7:f6:fd:76:7f:8e:d7:47:9e:7b:15:de:2c:
46:20:0d:cc:4c:28:e8:b9:42:37:63:2b:53:14:11:4c:f2:32:
50:02:71:6b:cf:33:98:11:3f:fa:cb:ad:cb:bf:1e:2e:ff:20:
1a:33:b0:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:26:34 2025 by rpki-client