Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/gO-44bLGahKRhqLDRsMnKHB-Q94.roa
File: gO-44bLGahKRhqLDRsMnKHB-Q94.roa (raw, json)
Hash identifier: AmhaB/6N0gnou5kzK8bfwi+Gn1w4ZoWo5NLg8qEU1Es=
Subject key identifier: 80:EF:B8:E1:B2:C6:6A:12:91:86:A2:C3:46:C3:27:28:70:7E:43:DE
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0D51
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/gO-44bLGahKRhqLDRsMnKHB-Q94.roa
Signing time: Mon 26 Aug 2024 05:19:40 +0000
ROA not before: Mon 26 Aug 2024 05:19:40 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131597
IP address blocks: 61.61.71.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:59:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3409 (0xd51)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Aug 26 05:19:40 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=80EFB8E1B2C66A129186A2C346C32728707E43DE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:3e:60:12:d9:33:cb:f9:18:05:58:0f:2c:78:
09:30:75:76:a1:76:a4:0a:11:dc:c7:e9:f9:49:92:
b4:0e:3c:c1:34:74:ed:3a:48:38:15:02:d1:c6:a7:
58:4c:5d:76:3c:75:1c:8d:c7:65:06:c5:a2:78:b1:
ed:20:58:64:9f:c2:46:70:63:46:8f:5b:06:f3:67:
91:8d:6a:6b:c9:54:33:34:1b:2f:3f:ce:5a:8e:0a:
41:6c:72:91:01:c0:81:d5:cc:46:4f:1f:37:58:dc:
01:ca:24:8a:f5:72:09:75:d3:1d:c0:ee:82:bf:72:
23:94:9b:b3:5e:f4:15:c4:cb:98:8a:3c:59:67:b1:
f1:d6:ae:8d:54:01:12:a7:8f:ce:e4:46:ad:ed:b1:
71:76:ba:d0:9b:cd:48:08:af:0a:cc:32:7d:20:d9:
6c:d8:bc:95:2d:eb:79:5e:a0:69:26:fe:01:d3:aa:
24:d8:2e:f9:54:cc:3f:c9:38:da:2a:c2:6b:72:51:
46:ae:9a:7e:19:1d:81:11:1e:4b:bf:a3:7d:b3:50:
02:b9:64:b6:49:6c:f9:16:dd:31:ad:2b:db:b7:8c:
d4:2f:16:3e:9d:90:87:1a:13:c2:66:02:0d:6a:2a:
7b:da:fc:72:3d:16:8d:c4:ea:54:e7:d7:38:ea:63:
24:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:EF:B8:E1:B2:C6:6A:12:91:86:A2:C3:46:C3:27:28:70:7E:43:DE
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/gO-44bLGahKRhqLDRsMnKHB-Q94.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.71.0/24
Signature Algorithm: sha256WithRSAEncryption
92:3d:7c:ca:13:6d:a6:ed:be:4e:42:1a:97:0c:7e:69:31:ee:
82:42:4a:87:83:e8:d6:90:fa:05:2e:fb:f6:cb:a9:b8:71:86:
e9:35:55:4d:9f:07:9d:bb:2d:e0:f3:d7:1e:2e:94:9f:98:ac:
0c:75:78:cc:54:33:a6:4c:ad:82:ba:fc:7f:31:51:25:92:be:
be:b0:e6:4e:20:64:09:06:51:6f:e9:19:a1:51:b4:5c:6c:2b:
ae:22:0a:dd:c8:e4:1a:e4:43:05:6c:45:72:3b:f5:ef:70:79:
4f:d4:d1:c2:1f:85:14:6d:25:f8:f1:04:ca:b7:38:0a:af:ca:
90:ca:80:60:ca:51:bc:f7:06:5a:a6:75:5f:f4:71:ff:d8:26:
5c:1d:30:b7:e1:11:fb:02:20:28:89:b5:86:54:25:cd:d2:ac:
8e:19:ea:32:44:6b:27:56:39:02:47:81:33:96:b2:0e:04:4e:
15:a7:fe:7a:36:af:e0:8e:b0:71:1c:bc:7d:2c:2c:df:d7:22:
52:fd:e7:e5:33:2a:8a:10:11:7b:48:cd:1b:1d:b3:b7:5c:25:
72:15:d3:87:19:22:57:98:21:ed:15:07:56:ed:12:d3:33:6b:
ee:67:55:7b:89:f4:e3:06:87:42:9e:b6:65:bb:ae:58:50:39:
98:c8:56:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:15:44 2025 by rpki-client