Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/Kj2H2Qulwywar4nrDT2rorMSMuU.roa
File: Kj2H2Qulwywar4nrDT2rorMSMuU.roa (raw, json)
Hash identifier: pEVEaUU8SnfxusyfZkPQ5iTOPPRAGSxGxvDXFHBNrSY=
Subject key identifier: 2A:3D:87:D9:0B:A5:C3:2C:1A:AF:89:EB:0D:3D:AB:A2:B3:12:32:E5
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0D56
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/Kj2H2Qulwywar4nrDT2rorMSMuU.roa
Signing time: Mon 26 Aug 2024 05:19:43 +0000
ROA not before: Mon 26 Aug 2024 05:19:43 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 36408
IP address blocks: 61.61.69.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:59:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3414 (0xd56)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Aug 26 05:19:43 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=2A3D87D90BA5C32C1AAF89EB0D3DABA2B31232E5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:20:42:92:85:03:b4:8e:c8:b1:4c:a0:5c:5a:
98:a3:f4:f5:42:7b:6b:ce:ba:66:96:77:9e:c5:a6:
5a:e5:dd:33:de:40:69:1e:2c:76:cc:8d:d3:b2:8a:
e3:3d:e7:7a:ba:b9:71:00:bf:f9:c0:17:41:24:8b:
1d:b6:47:50:4c:af:ef:3d:1b:9c:a8:6e:57:b5:d7:
4e:b1:0e:76:9b:0a:69:45:2c:68:3d:7d:ad:c0:a3:
4b:9d:f5:cf:09:b9:de:b2:bd:18:7f:3c:75:7f:55:
2c:2e:46:0d:3a:bc:9e:66:2c:b5:19:7b:b4:a6:72:
85:eb:40:a1:a0:3c:94:60:c0:a9:22:9a:b3:84:40:
c1:e5:fa:04:f7:0d:36:54:d6:0a:cc:8c:1f:1b:9c:
f9:d9:31:f8:9d:d4:a5:99:6b:e5:c8:0f:13:59:2f:
36:93:41:a9:4b:f5:ba:f5:bd:07:e1:8c:90:b4:c4:
a4:b1:7c:90:b1:4e:8b:dc:d4:0b:3a:4f:e2:51:0b:
a1:1a:53:80:59:4a:94:06:45:4a:68:6c:bb:99:6f:
bf:4f:75:e9:ed:3e:ba:fb:03:98:d9:98:70:57:22:
57:86:73:2b:6e:c9:2a:22:0c:e7:06:6d:3b:6f:11:
c7:67:5d:e1:d4:3e:a2:db:c6:8f:5e:fb:63:44:0a:
ff:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:3D:87:D9:0B:A5:C3:2C:1A:AF:89:EB:0D:3D:AB:A2:B3:12:32:E5
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/Kj2H2Qulwywar4nrDT2rorMSMuU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.69.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:7a:7c:2b:f7:e4:a7:26:3a:98:de:13:34:5e:41:7b:1c:76:
de:33:30:03:1e:5d:dc:b5:d1:6e:89:b3:8c:aa:9f:c4:10:c1:
70:b0:97:5f:f6:b6:54:a9:9a:4e:a1:f5:1a:e5:88:86:07:06:
9e:06:7d:fb:39:34:d1:af:3a:6a:cb:1f:6f:9b:19:c9:50:8f:
18:3a:2f:6d:eb:c0:5d:f0:28:97:8e:41:81:14:b3:ac:fb:08:
4f:49:ac:b2:cf:da:d9:b1:2e:5c:ff:34:46:fa:84:22:67:ce:
78:2a:c1:24:40:8c:ac:3f:2a:a8:16:bf:64:dc:0d:68:23:0d:
95:35:b8:03:22:e6:ea:f3:58:b6:07:47:b5:6f:00:1d:4a:84:
a2:a3:0d:45:dc:78:f3:8e:14:5d:06:ff:49:ca:89:7f:f9:bc:
49:a0:8b:6d:1f:89:64:86:0b:ca:7e:24:2d:42:93:9f:cb:97:
50:66:01:b5:4e:81:56:95:9c:2f:09:f0:15:78:13:16:f6:00:
10:65:32:88:05:32:d1:7e:08:9c:f5:a7:6d:a7:dc:e5:c0:02:
c1:b4:7a:5b:98:9d:96:ec:eb:ed:4d:9c:db:df:29:2d:15:5b:
d4:60:bd:d0:58:2a:e8:9d:4a:6d:75:35:f0:d5:4d:78:89:f1:
09:53:26:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:28:27 2025 by rpki-client