Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GTBC/pPVoAUsYk_l48wr2l4kWJ_0gxMs.roa
File: pPVoAUsYk_l48wr2l4kWJ_0gxMs.roa (raw, json)
Hash identifier: nvDDG4Hto0zHSS7LgtCguD+u2DowEEiMvaToYi+9Pt4=
Subject key identifier: A4:F5:68:01:4B:18:93:F9:78:F3:0A:F6:97:89:16:27:FD:20:C4:CB
Certificate issuer: /CN=DBA793D0FFE611AC397F197570E19785046EE739
Certificate serial: 0C1B
Authority key identifier: DB:A7:93:D0:FF:E6:11:AC:39:7F:19:75:70:E1:97:85:04:6E:E7:39
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/26eT0P_mEaw5fxl1cOGXhQRu5zk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/pPVoAUsYk_l48wr2l4kWJ_0gxMs.roa
Signing time: Mon 26 Aug 2024 05:17:19 +0000
ROA not before: Mon 26 Aug 2024 05:17:19 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18413
IP address blocks: 61.67.0.0/20 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:34:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3099 (0xc1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DBA793D0FFE611AC397F197570E19785046EE739
Validity
Not Before: Aug 26 05:17:19 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=A4F568014B1893F978F30AF697891627FD20C4CB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:e3:26:97:01:e4:dd:58:6f:26:57:c8:14:38:
12:4c:6c:d1:6c:f0:b2:a5:ab:61:a1:9f:ec:1b:8a:
eb:0b:7b:0b:76:59:99:03:18:e7:0c:6e:b6:9a:35:
6b:53:1c:e8:eb:e5:5c:89:0b:2c:52:e6:cd:0d:36:
f6:cd:a7:01:3b:41:b4:9e:42:a3:a6:b3:f4:bc:f5:
d6:a6:3f:09:27:1d:13:94:16:d0:7c:25:92:5b:c3:
08:99:ab:5b:c1:62:50:06:68:0e:2c:ea:cd:da:4f:
1c:80:d9:a6:91:b1:66:a1:ca:83:fe:7b:28:e5:4f:
f5:4d:16:b6:b8:9a:44:b5:0e:c8:68:75:c7:56:6b:
94:f7:c1:e7:12:7e:83:e2:d3:44:76:0b:cb:be:2b:
c6:d2:62:c5:74:5c:ad:b4:d7:2b:db:64:19:e8:72:
c1:fb:59:b7:24:ff:c7:bb:93:f2:87:78:0c:c5:fa:
b2:44:e4:4c:89:66:cc:d4:86:49:aa:1c:31:a3:32:
75:b6:04:cc:ed:89:c7:51:ea:66:19:03:51:9c:d9:
87:27:b9:2c:05:f9:db:a7:87:c9:4d:55:44:88:6f:
59:27:fe:c9:cd:40:37:48:ab:da:f2:3d:40:85:8f:
af:97:7a:4d:b1:8b:e1:cd:78:85:5d:09:fb:e6:1e:
dc:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:F5:68:01:4B:18:93:F9:78:F3:0A:F6:97:89:16:27:FD:20:C4:CB
X509v3 Authority Key Identifier:
keyid:DB:A7:93:D0:FF:E6:11:AC:39:7F:19:75:70:E1:97:85:04:6E:E7:39
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/26eT0P_mEaw5fxl1cOGXhQRu5zk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/26eT0P_mEaw5fxl1cOGXhQRu5zk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/pPVoAUsYk_l48wr2l4kWJ_0gxMs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.67.0.0/20
Signature Algorithm: sha256WithRSAEncryption
29:ff:29:67:68:cb:27:d3:83:a8:b8:b1:37:2f:3c:50:6f:4c:
44:31:32:a0:40:cc:74:cd:d9:42:10:e3:55:8d:38:b1:99:20:
5b:fd:e0:89:48:c7:8a:10:13:6a:86:52:b6:54:d1:88:90:0e:
56:32:95:84:d4:62:15:41:f8:b7:27:de:da:bf:5d:af:78:68:
92:7a:30:20:46:61:0f:98:be:bf:5b:b7:17:21:b4:df:84:fa:
2f:48:fe:e1:45:19:d9:1d:96:3b:ac:ce:fe:e6:27:12:ce:0d:
82:ef:60:49:d0:55:06:fb:74:38:97:49:f6:5b:22:22:71:d8:
cd:0a:67:2d:c5:73:98:1a:1a:4f:70:ff:df:14:f7:e1:ff:ca:
f5:4f:b0:2c:c5:a3:b6:f0:80:0a:00:fe:0d:1a:aa:b5:b8:03:
33:46:a9:6a:e9:d8:f7:68:ee:18:be:9a:05:02:42:c8:70:5e:
a2:5c:8f:fd:b4:90:bb:a4:49:e9:25:2c:f2:9e:2a:71:91:71:
a9:98:67:c8:a6:0e:df:04:66:c2:a3:39:f4:e7:ae:ec:a7:19:
83:d7:0e:8c:ee:fe:90:1d:7d:0f:c4:20:73:04:ff:ed:64:7d:
fa:8d:ff:04:4a:96:1c:ba:28:cc:2d:f5:c1:cd:3e:d8:30:94:
b9:e1:81:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:36:37 2025 by rpki-client