Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/oBlQ2-4B0rn0ukFmOxLBniWHWAU.roa
File: oBlQ2-4B0rn0ukFmOxLBniWHWAU.roa (raw, json)
Hash identifier: UsYdSh1l2SHxRx1HCLzKZdJk3G1bh8IyO5IarZ+zFYI=
Subject key identifier: A0:19:50:DB:EE:01:D2:B9:F4:BA:41:66:3B:12:C1:9E:25:87:58:05
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0D75
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/oBlQ2-4B0rn0ukFmOxLBniWHWAU.roa
Signing time: Mon 26 Aug 2024 05:19:50 +0000
ROA not before: Mon 26 Aug 2024 05:19:50 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18049
IP address blocks: 61.61.44.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:59:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3445 (0xd75)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Aug 26 05:19:50 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=A01950DBEE01D2B9F4BA41663B12C19E25875805
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:5e:1a:ae:6f:5c:6b:0a:d0:5e:67:5c:44:65:
b2:ba:2a:c8:38:18:5f:92:ad:f3:3d:3b:fc:37:d2:
07:28:1e:3a:96:e0:ca:ff:84:a7:88:32:6e:af:cd:
0b:50:d7:88:04:42:0d:a1:65:24:56:a1:87:f5:90:
26:56:ee:b9:3b:af:41:46:fd:8b:b6:33:73:dd:c0:
bd:3f:71:9c:bf:c6:7c:ea:ed:17:b1:e1:29:ad:73:
19:26:b6:91:e8:f5:f1:be:0f:5c:19:31:d4:a7:a1:
a1:7b:ed:bc:a1:6e:c6:00:61:79:42:2b:e6:e4:9c:
a3:a3:8d:e5:a3:68:0c:1b:df:0d:25:9c:12:b8:3f:
2f:d1:2d:a1:34:f8:d1:f1:d8:50:c9:68:69:3e:28:
b9:db:73:4d:86:89:af:4f:9b:04:6d:a4:e7:9b:00:
41:d2:bd:b7:cf:a7:07:8b:c8:1f:64:da:76:23:33:
90:6d:5c:cd:87:c0:55:81:a8:18:0b:67:68:05:63:
6f:50:7a:f1:a5:26:41:7b:73:a8:c1:91:ae:e1:c3:
d8:3a:ca:c6:c2:e4:4f:70:0e:a1:da:c7:c2:7e:57:
cb:18:69:93:60:fa:e9:54:a7:23:c9:1c:a3:f2:9f:
51:6c:2f:63:0b:f9:0b:8f:93:ff:06:8b:11:0f:98:
7b:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:19:50:DB:EE:01:D2:B9:F4:BA:41:66:3B:12:C1:9E:25:87:58:05
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/oBlQ2-4B0rn0ukFmOxLBniWHWAU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.44.0/22
Signature Algorithm: sha256WithRSAEncryption
4a:d1:90:05:80:ce:d2:a2:62:d7:fd:af:2c:bd:a8:43:70:a9:
36:15:86:21:a7:86:25:f8:19:05:ba:55:02:eb:7e:3f:09:5b:
d3:d8:c5:f0:63:b5:49:0e:7b:a1:a2:b5:00:d8:e2:57:de:d9:
03:9b:94:ee:eb:9a:c1:29:c4:f1:ab:8a:30:95:7f:ba:8b:30:
32:a7:54:72:d8:d1:3f:e5:5b:7a:01:19:e7:67:f5:b7:c5:ab:
b8:54:65:b6:57:7c:3c:c5:ce:a7:2b:3a:eb:35:e5:93:52:a9:
90:b4:17:fd:08:ba:3b:cc:b1:24:06:38:97:f6:7e:b3:cd:b8:
95:92:31:f7:9f:a9:3a:6a:6b:c6:fd:0a:ec:04:ae:b5:e0:95:
95:4e:3d:e9:0f:1b:74:94:ea:f0:d7:28:11:6d:0f:b3:cb:03:
91:3c:45:97:1a:2a:5e:80:48:e6:34:04:a4:eb:a4:72:a8:11:
89:11:eb:91:58:17:88:0c:7e:79:3e:d5:18:80:12:9c:41:e6:
29:9e:4e:de:2e:60:ab:4a:a6:d9:16:c9:73:23:10:4a:cd:0d:
cc:58:fe:9f:cb:f2:6d:d3:64:77:ab:0d:4f:8c:3f:fb:ca:b5:
77:51:77:05:bb:6c:e8:57:74:2f:d5:e3:1c:2b:93:2c:68:02:
58:8a:0d:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:15:09 2025 by rpki-client