Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/vK5vbVxW-dnGErOhzAXon29P8q4.roa
File: vK5vbVxW-dnGErOhzAXon29P8q4.roa (raw, json)
Hash identifier: OwYN46rWXYSZrSIPBMS5I2ZHkvUIBmSo4Joaw9iYEEA=
Subject key identifier: BC:AE:6F:6D:5C:56:F9:D9:C6:12:B3:A1:CC:05:E8:9F:6F:4F:F2:AE
Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial: 0D6B
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/vK5vbVxW-dnGErOhzAXon29P8q4.roa
Signing time: Mon 26 Aug 2024 05:19:47 +0000
ROA not before: Mon 26 Aug 2024 05:19:47 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131627
IP address blocks: 61.61.69.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:59:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3435 (0xd6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Validity
Not Before: Aug 26 05:19:47 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=BCAE6F6D5C56F9D9C612B3A1CC05E89F6F4FF2AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:c3:ad:17:86:d6:83:eb:e7:5c:9b:2d:7d:65:
04:2f:9a:84:a7:89:11:9a:09:33:de:59:0f:de:51:
15:1e:fb:dc:27:ff:72:d4:7d:72:79:56:93:25:71:
b7:e8:ed:a9:20:aa:6d:4e:e5:fd:7e:51:ce:25:a7:
fb:5e:bd:cb:49:11:56:69:5c:1e:6f:58:b0:4f:32:
e8:75:f6:63:d1:a0:46:cb:df:b1:c8:94:09:fd:05:
21:57:0a:19:60:36:b0:84:59:89:73:21:23:a3:5a:
67:74:46:aa:83:3f:59:86:79:a5:bc:c9:e2:68:b3:
0c:79:8c:60:37:f1:11:fe:3a:c4:9b:04:c2:4a:1a:
0a:88:fb:37:dd:a7:14:75:a2:4e:3a:8b:4b:d7:5d:
bc:f9:6c:41:9f:e6:7b:9b:72:70:93:20:30:57:9a:
2b:16:4c:c0:1e:c1:18:df:d8:ae:b2:6f:5f:f2:bd:
ff:c5:0a:06:e5:1c:4c:c4:57:bc:f9:45:f0:19:29:
4e:26:9e:ae:af:06:44:44:eb:81:c6:ee:df:93:44:
11:e3:3b:6d:0e:8c:70:01:3a:dd:57:5c:42:a2:78:
be:15:38:74:05:44:ba:3d:91:e1:97:2a:c3:3f:5f:
af:88:8d:be:a4:7f:a1:9b:ea:b3:fd:64:6b:f0:e9:
be:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:AE:6F:6D:5C:56:F9:D9:C6:12:B3:A1:CC:05:E8:9F:6F:4F:F2:AE
X509v3 Authority Key Identifier:
keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/vK5vbVxW-dnGErOhzAXon29P8q4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.69.0/24
Signature Algorithm: sha256WithRSAEncryption
64:cc:f9:57:a6:e5:31:3b:9f:70:74:cc:eb:12:c4:08:99:97:
82:ee:b5:ab:c0:c6:cb:03:74:c6:56:2e:dc:31:b5:2e:7c:23:
84:5f:c3:5c:6e:13:b6:32:60:d2:73:25:82:da:a9:04:f9:4d:
22:71:d9:97:3a:5b:21:0b:4d:ef:6e:28:af:9a:66:1e:0a:cf:
86:18:a6:7a:6e:4f:3e:4a:79:d8:d8:aa:bc:0a:4b:1f:f4:0b:
c3:91:d4:f4:41:04:59:98:2c:af:19:48:f3:65:3c:17:ee:3a:
66:52:35:4a:2e:3d:04:e3:29:d3:ca:f7:18:5b:0d:3d:b1:e9:
cb:2e:4e:34:1a:e8:3f:16:a1:7d:2c:51:19:1a:90:1b:47:6e:
bb:39:f8:fd:18:88:be:e6:ee:51:ba:cb:1d:dc:e2:e5:cf:02:
c1:99:2a:db:e8:d4:60:7b:8f:79:4d:45:bd:2e:9a:cb:cb:41:
02:6d:5a:9d:3d:71:56:10:39:dc:e0:14:dd:4b:ab:b6:29:0c:
13:06:1b:68:80:87:2c:ad:5c:02:e4:ea:1b:91:c3:96:e3:de:
20:9f:64:b2:47:27:89:71:b6:07:ee:c1:e9:13:27:5e:9d:39:
d2:13:f2:4a:dd:8d:f3:1b:3a:1e:b4:c7:e2:7b:49:10:8c:89:
51:45:ba:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:24:19 2025 by rpki-client