Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/cIGiogp2iCp4hKzJdnv4DDFEdIU.roa
File: cIGiogp2iCp4hKzJdnv4DDFEdIU.roa (raw, json)
Hash identifier: TmQNqziElc/aVnzCw4r24T/D7EeyUBPIsUEdv0HoRh8=
Subject key identifier: 70:81:A2:A2:0A:76:88:2A:78:84:AC:C9:76:7B:F8:0C:31:44:74:85
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0D66
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/cIGiogp2iCp4hKzJdnv4DDFEdIU.roa
Signing time: Mon 26 Aug 2024 05:19:46 +0000
ROA not before: Mon 26 Aug 2024 05:19:46 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4780
IP address blocks: 61.61.128.0/18 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:59:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3430 (0xd66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Aug 26 05:19:46 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=7081A2A20A76882A7884ACC9767BF80C31447485
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:00:9e:42:6a:5a:6e:d5:24:a3:c5:68:93:4b:
75:dd:f0:b3:d6:8c:90:2f:b2:82:43:2b:08:c0:9c:
74:5a:aa:d2:fc:de:8f:25:25:70:a1:81:15:a8:91:
0d:32:c6:90:e3:8b:c9:85:4e:94:4f:1b:66:cd:30:
47:b7:45:cd:7f:35:cf:50:2e:d6:fd:7c:ca:47:8f:
93:0c:88:0f:48:d6:be:c1:02:99:08:b5:f3:07:4b:
e7:04:e5:d9:be:1c:bc:86:70:a9:bb:cd:1f:00:5f:
93:26:8c:b6:f1:92:f9:4a:cd:c3:84:e6:35:89:ed:
05:96:3f:e2:7d:2d:e2:95:23:e8:fa:3d:4d:8f:82:
98:db:49:37:a4:1f:b1:5f:bf:82:eb:24:8a:83:74:
a7:ff:02:87:cb:99:4e:6f:7d:c0:02:f2:63:f1:f4:
fb:77:5e:01:a4:66:e2:08:d8:74:1c:65:32:96:75:
1d:cf:35:1c:a9:2a:3f:92:31:85:a1:71:93:18:08:
54:84:da:01:8e:6e:05:fc:d9:9a:cd:95:bf:44:3d:
83:6c:eb:da:89:b0:7d:e3:4c:95:6f:4a:b1:9e:e4:
ba:dd:c0:25:22:c0:0d:54:68:f2:a5:9f:4b:e8:fc:
f8:79:3d:b7:20:69:61:54:e9:db:60:86:c6:f7:2c:
9d:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:81:A2:A2:0A:76:88:2A:78:84:AC:C9:76:7B:F8:0C:31:44:74:85
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/cIGiogp2iCp4hKzJdnv4DDFEdIU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.128.0/18
Signature Algorithm: sha256WithRSAEncryption
7f:28:84:9f:32:f8:f1:dd:5b:40:e9:b9:5e:4f:27:ff:73:a4:
07:72:be:91:34:2c:3e:59:ca:37:7c:2c:39:73:f4:da:60:89:
56:33:8f:69:41:e8:e5:61:6a:a2:c2:e2:c7:d8:88:83:f7:dd:
bb:26:b9:0d:df:46:8a:79:22:5d:5e:51:06:b6:42:59:53:8f:
c8:db:f7:c5:d3:70:16:15:fb:27:83:11:2f:d7:14:ac:70:06:
34:54:c1:5b:35:ed:fb:3c:38:b6:42:10:cd:af:6f:07:d9:75:
de:e0:07:cf:2f:ac:46:95:15:0e:4d:02:1f:a8:0a:c5:4c:0e:
5b:ab:a8:3b:6b:4b:3f:30:c0:35:4c:e4:d4:01:fd:81:5a:94:
51:18:5f:32:1f:31:53:6d:ab:f0:0f:05:b3:1b:cd:3f:3b:09:
a5:d1:27:19:4a:38:83:6a:a5:4c:2b:fb:2e:3c:36:63:84:b6:
10:41:76:dc:34:a2:fb:24:a2:b2:85:ea:1b:31:50:45:29:71:
f9:08:4f:7d:b9:27:5a:04:6b:c7:a2:10:2b:a2:e0:d6:78:92:
ab:0f:89:24:31:5b:d8:8d:5e:4d:fc:a9:82:d6:06:bd:db:68:
bc:eb:0a:df:cb:69:ac:57:c1:72:0e:c0:de:9b:95:c4:c4:da:
ef:c9:dc:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:37:34 2025 by rpki-client