Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GTBC/8U6WTC8SpfJQYAiAvnal3Mjprcw.roa
File: 8U6WTC8SpfJQYAiAvnal3Mjprcw.roa (raw, json)
Hash identifier: cLxaOHYf7xcll54Gnv8ZTg7rs5ADeltSxIscaxbo+KA=
Subject key identifier: F1:4E:96:4C:2F:12:A5:F2:50:60:08:80:BE:76:A5:DC:C8:E9:AD:CC
Certificate issuer: /CN=DBA793D0FFE611AC397F197570E19785046EE739
Certificate serial: 0C1A
Authority key identifier: DB:A7:93:D0:FF:E6:11:AC:39:7F:19:75:70:E1:97:85:04:6E:E7:39
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/26eT0P_mEaw5fxl1cOGXhQRu5zk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/8U6WTC8SpfJQYAiAvnal3Mjprcw.roa
Signing time: Mon 26 Aug 2024 05:17:19 +0000
ROA not before: Mon 26 Aug 2024 05:17:19 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18413
IP address blocks: 61.65.192.0/19 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:34:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3098 (0xc1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DBA793D0FFE611AC397F197570E19785046EE739
Validity
Not Before: Aug 26 05:17:19 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F14E964C2F12A5F250600880BE76A5DCC8E9ADCC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:a3:6b:40:22:c0:b2:da:d9:16:2f:0a:4f:51:
b3:50:99:12:b0:e8:e0:7c:53:95:fd:07:c9:93:e2:
a0:c3:2e:76:fc:34:2e:40:6a:db:de:75:50:67:62:
3b:a6:e3:0d:dc:f8:e2:b6:6d:44:ec:30:83:0b:8b:
16:d7:2a:18:ca:3a:3c:9c:38:a2:c1:f3:11:c5:96:
3a:2c:e7:ae:50:7f:98:ec:02:c9:11:ce:d4:25:a2:
4e:96:70:a8:9a:78:ba:71:61:c2:6b:95:02:49:b9:
ba:04:0a:f4:43:f0:24:7f:22:ef:76:6f:a1:fd:59:
12:fd:ad:a4:78:7b:43:7f:65:18:dd:be:47:c6:db:
12:68:f4:51:0b:2a:5c:2b:d0:12:47:d7:1e:74:80:
9c:cc:49:c2:0c:b7:2e:35:91:f7:51:42:06:41:61:
00:da:cc:ea:a7:e5:66:a9:bf:95:85:5c:6d:46:99:
0c:e4:cd:cd:82:a4:d7:55:72:42:3c:15:c3:c2:d1:
0f:2d:e9:32:b4:34:5a:81:ae:0b:71:69:a3:2b:f1:
bb:09:29:bd:97:3c:cc:b8:3d:54:b5:69:e9:06:f0:
b9:cd:4c:f4:0b:61:fe:a5:d3:6b:36:52:99:eb:b7:
2d:b0:53:f2:32:ca:ed:9d:c3:c5:0d:f3:bd:0a:c9:
83:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:4E:96:4C:2F:12:A5:F2:50:60:08:80:BE:76:A5:DC:C8:E9:AD:CC
X509v3 Authority Key Identifier:
keyid:DB:A7:93:D0:FF:E6:11:AC:39:7F:19:75:70:E1:97:85:04:6E:E7:39
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/26eT0P_mEaw5fxl1cOGXhQRu5zk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/26eT0P_mEaw5fxl1cOGXhQRu5zk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/8U6WTC8SpfJQYAiAvnal3Mjprcw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.65.192.0/19
Signature Algorithm: sha256WithRSAEncryption
97:cb:8b:7f:4d:3f:95:87:eb:b4:41:d0:c3:37:b8:e8:eb:4b:
b0:77:f9:bb:29:a2:53:39:fc:39:b8:67:72:0b:7d:6a:fa:c8:
7f:0f:41:30:20:76:b2:5e:29:88:6d:d4:cf:22:1d:73:9a:bb:
6d:98:0a:bf:79:3b:7f:7c:8f:d8:38:cb:14:76:a7:0a:fe:01:
5f:fc:2e:0f:70:dd:94:15:df:97:72:f3:42:9a:55:d2:97:94:
8c:07:06:a9:44:da:9e:9d:e5:8c:ca:1f:ff:7b:8b:b4:92:21:
5a:7d:4c:86:48:4d:b0:1a:75:2e:ad:07:7d:9d:dd:f5:39:3a:
36:f7:c4:d1:af:2c:b7:5a:72:bc:2c:90:97:53:b0:2b:cc:b0:
a5:55:14:8a:6e:74:8e:47:c3:b9:8f:79:eb:70:82:f1:5a:cc:
55:25:cc:b0:b1:f0:a6:d4:72:03:94:b2:88:b9:2f:52:71:fa:
23:4f:25:95:45:b6:f2:98:37:d7:96:9a:92:50:af:0b:b3:dd:
58:db:09:3c:40:a1:93:be:64:eb:81:6e:c1:5d:5b:ca:32:1c:
0c:69:22:e0:e7:be:16:b2:14:bf:56:ea:9e:a5:f5:03:2c:bc:
27:48:52:c2:ef:9a:fd:77:1b:59:d0:5e:6f:e2:eb:74:44:4d:
d5:2c:6d:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:35:31 2025 by rpki-client