Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/rP2YqdSch8Jw8Mqe-txGHspUjNw.roa
File: rP2YqdSch8Jw8Mqe-txGHspUjNw.roa (raw, json)
Hash identifier: ntp0TltPiVF3Nn7BpxSGLjDyPdCsafN2X0i8tRUi/ZA=
Subject key identifier: AC:FD:98:A9:D4:9C:87:C2:70:F0:CA:9E:FA:DC:46:1E:CA:54:8C:DC
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0DA0
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/rP2YqdSch8Jw8Mqe-txGHspUjNw.roa
Signing time: Wed 23 Oct 2024 01:24:51 +0000
ROA not before: Wed 23 Oct 2024 01:24:51 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4780
IP address blocks: 61.61.6.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:59:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3488 (0xda0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Oct 23 01:24:51 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=ACFD98A9D49C87C270F0CA9EFADC461ECA548CDC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:46:48:53:fa:d5:29:ff:f7:35:3d:98:35:09:
e5:eb:ad:ff:79:05:a1:c9:83:af:06:84:9f:6f:b7:
c1:6a:7b:4e:bd:e3:b6:90:9f:f0:42:46:2e:7b:49:
02:2b:3f:83:ef:da:e8:dc:3f:ae:ab:74:d3:6f:50:
d3:75:77:bf:60:22:a4:19:f6:f7:f0:69:03:92:f6:
88:6a:e1:33:7b:96:d3:b0:6b:88:b0:72:be:2d:3a:
61:24:5b:3e:ca:01:98:f5:85:b4:26:95:66:d7:bc:
81:57:f5:c2:7d:a9:07:88:39:c9:d0:88:5c:ab:ce:
1b:16:e4:c4:dd:89:8a:80:3c:ca:45:dc:fc:7f:b9:
cb:71:a8:82:fd:6f:77:9d:63:64:72:13:7d:9a:f7:
c2:4e:aa:9f:6e:ed:27:e0:15:97:79:ea:ef:1c:22:
8d:41:24:8a:6b:8c:21:be:7a:de:79:39:d2:73:8f:
84:71:72:cd:7c:cf:b9:41:74:cc:59:30:ea:db:26:
8e:59:68:a4:8f:d4:72:4b:63:19:79:c4:f0:81:cf:
dd:e6:d4:c0:96:6e:85:01:0d:02:a1:a6:30:42:9b:
f5:f6:76:e2:fd:20:8b:e2:8f:f8:f7:bd:5b:f3:9d:
01:dc:03:1b:41:3c:42:d9:c6:c5:d0:31:f3:f7:1b:
a5:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:FD:98:A9:D4:9C:87:C2:70:F0:CA:9E:FA:DC:46:1E:CA:54:8C:DC
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/rP2YqdSch8Jw8Mqe-txGHspUjNw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.6.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:1f:d4:4e:17:4d:c9:db:42:1e:c3:f7:c5:77:db:b4:6c:3e:
30:0c:f2:4c:a4:f8:35:dd:fd:db:b7:a4:42:59:59:8c:84:98:
ae:a8:a3:fc:59:93:f9:8b:c3:b6:bc:59:52:06:d3:81:11:23:
99:8c:25:cc:7d:df:fc:e2:96:cd:07:90:e4:c1:68:73:ce:42:
1d:fd:e1:ec:3a:30:ff:28:55:59:5c:a2:c6:89:03:35:42:ab:
e3:27:3f:01:43:48:ce:a9:ae:f9:c5:3a:03:b6:57:a4:42:24:
c2:3a:79:f9:86:c7:29:8b:58:5f:d6:13:05:4c:6c:21:6e:b5:
e7:89:26:19:06:83:d5:ac:9f:60:bc:18:1b:c4:d3:67:dc:ac:
ac:c5:dd:fc:9f:b2:32:65:ea:ff:b7:4f:6f:21:14:7e:89:23:
ce:28:56:24:bd:c1:77:df:b3:80:63:03:f3:b6:07:c8:3f:a6:
f9:23:19:9e:26:c0:29:4d:b5:56:06:de:fa:15:63:86:d5:ad:
06:83:77:f6:0f:f7:5f:8f:fb:e6:ec:c5:4a:58:0e:71:07:e0:
be:57:e9:a4:29:9f:49:a7:c0:f3:ca:0c:a6:48:e3:00:37:e1:
6c:12:98:4f:13:a2:94:78:91:bf:3b:54:34:51:0c:ee:f1:0a:
f9:0e:ae:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:33:43 2025 by rpki-client