Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/9YDLbn6-WymuZri6KjJnP_dTB68.roa
File: 9YDLbn6-WymuZri6KjJnP_dTB68.roa (raw, json)
Hash identifier: n3/vH2bIEEan7QBp/jfRu39wloG1ep746zq1bIgbn9k=
Subject key identifier: F5:80:CB:6E:7E:BE:5B:29:AE:66:B8:BA:2A:32:67:3F:F7:53:07:AF
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 16AF
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/9YDLbn6-WymuZri6KjJnP_dTB68.roa
Signing time: Mon 26 Aug 2024 05:22:29 +0000
ROA not before: Mon 26 Aug 2024 05:22:29 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9919
IP address blocks: 61.59.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:07:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5807 (0x16af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Aug 26 05:22:29 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F580CB6E7EBE5B29AE66B8BA2A32673FF75307AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:de:a9:b7:a6:09:87:5a:aa:1d:a1:fb:2c:7c:
f6:2a:7a:fa:69:22:48:9d:b2:43:e9:12:2e:37:b2:
be:2d:75:4a:8e:80:2a:e6:9a:ef:ea:5e:81:e0:62:
b7:6d:05:2f:f9:81:1a:36:4e:23:56:1b:54:6e:89:
a8:21:99:33:6f:55:34:1a:ec:5e:84:92:55:d6:fb:
34:aa:c0:f0:42:fb:f2:4f:a0:7d:d6:34:cf:a0:24:
ca:9d:e4:e7:4d:9a:7e:78:d4:ad:2f:37:00:48:30:
9b:1d:f1:5d:a1:eb:c8:c9:a4:e6:38:4e:a2:dc:81:
b7:96:06:0d:f8:9e:ae:af:84:83:5a:96:50:17:aa:
e1:93:7f:24:60:61:80:a8:9a:64:cd:45:5b:cc:10:
f3:ef:a3:50:df:4d:f7:9a:2f:16:7d:01:b5:45:1c:
2d:79:4a:f4:e9:61:a0:5a:e6:97:b4:f2:04:2b:ce:
b0:f1:42:8b:95:e3:bd:26:66:69:ad:aa:75:e7:9f:
ed:80:f6:5b:83:c3:f5:92:9e:58:7a:69:be:e1:53:
a6:b3:24:d7:26:b0:43:7a:97:51:c8:5b:39:2b:29:
64:28:a5:15:5d:01:eb:03:47:28:64:16:81:fb:24:
3a:23:d1:e4:ef:18:f1:44:70:95:c0:22:a6:03:3f:
e9:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:80:CB:6E:7E:BE:5B:29:AE:66:B8:BA:2A:32:67:3F:F7:53:07:AF
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/9YDLbn6-WymuZri6KjJnP_dTB68.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.59.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a4:1b:97:c6:30:0f:07:7f:8a:73:fe:92:da:07:e6:ea:2e:6b:
e7:b1:6c:89:d1:f3:42:7c:1c:1f:2c:79:15:2f:ca:2b:db:04:
9a:62:46:8c:e6:ee:e4:2d:9a:08:e4:4b:a4:7e:46:c7:11:5a:
86:56:0f:0a:a0:ce:04:2d:cd:87:96:2a:aa:95:73:91:44:55:
52:8e:b0:5e:d8:f1:cd:af:35:84:00:a9:14:7d:eb:0c:67:fc:
29:08:40:05:29:77:be:69:fd:41:32:54:ba:f1:a6:38:7d:0a:
4e:13:f2:60:e6:ef:1c:1d:c9:97:1c:66:2d:f2:0e:75:f5:ee:
c2:56:54:15:53:27:3d:ba:14:6e:b4:32:fc:64:50:9d:ba:95:
ae:80:ad:26:c8:6e:91:af:ee:fb:b3:04:1d:00:75:22:12:f7:
a9:81:80:78:bb:9e:ab:22:98:28:80:9e:59:22:38:3c:5f:96:
89:58:65:6c:db:24:14:e0:41:ab:79:0e:fc:c8:aa:66:70:05:
4e:a2:e9:c2:78:31:42:2b:c0:a6:d4:b0:21:aa:af:ac:f1:d3:
54:f9:26:05:e3:b0:cd:c1:b9:0b:c3:de:5c:57:45:96:06:d4:
cc:bb:1b:68:72:18:63:61:7d:31:81:28:2d:5c:74:bb:05:67:
92:89:e6:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:48:29 2025 by rpki-client