Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/l2yhN23NjtU8SeE2lOnom_qYhCo.roa
File: l2yhN23NjtU8SeE2lOnom_qYhCo.roa (raw, json)
Hash identifier: lpRbTq0eiZKLsRcxWfZx+kSFpvVHuQ/QzML1yKNuHWY=
Subject key identifier: 97:6C:A1:37:6D:CD:8E:D5:3C:49:E1:36:94:E9:E8:9B:FA:98:84:2A
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 160C
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/l2yhN23NjtU8SeE2lOnom_qYhCo.roa
Signing time: Mon 26 Aug 2024 05:21:43 +0000
ROA not before: Mon 26 Aug 2024 05:21:43 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9919
IP address blocks: 61.56.224.0/19 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:07:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5644 (0x160c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Aug 26 05:21:43 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=976CA1376DCD8ED53C49E13694E9E89BFA98842A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:03:df:95:5c:c4:53:ad:38:39:18:45:a8:1f:
c7:23:f0:1e:b9:94:01:1f:5f:2d:ec:28:51:13:94:
00:36:af:34:d0:96:9b:52:ba:2f:4c:33:0a:0a:02:
7b:d8:d4:4e:a2:d9:a3:12:4d:20:e9:2e:67:17:14:
fb:b9:f3:31:29:d6:68:37:9d:c7:59:c0:9b:ff:15:
bb:78:39:36:9b:86:0e:8b:e6:b9:ed:a4:39:a2:2c:
86:2b:e5:7c:d7:2c:95:ac:b0:08:7a:45:84:d9:fc:
ec:f4:c1:5e:39:c2:6a:f6:e0:f9:e5:f0:e1:a7:5d:
e9:3d:dc:cb:d7:86:40:ad:79:3a:49:de:ea:aa:e1:
2a:97:49:ce:58:89:3d:11:b9:c2:17:b3:5d:4c:76:
6f:1a:a4:df:5a:49:db:d8:5f:2c:b3:ef:8a:46:fc:
50:b3:aa:78:70:e9:e4:e1:a0:fd:70:42:87:9c:37:
27:ed:fc:e9:3d:c4:31:97:cb:5d:dd:b2:ec:12:f1:
c0:c7:8d:49:d5:82:5a:25:7b:2b:88:77:64:3b:bd:
e7:39:6b:44:ac:9d:88:c1:2e:74:c5:9f:3f:3e:67:
55:af:13:07:c6:8c:79:19:22:fc:cb:06:34:f8:f4:
22:b2:96:8a:09:41:ff:ec:b0:55:f4:7f:43:78:64:
0d:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:6C:A1:37:6D:CD:8E:D5:3C:49:E1:36:94:E9:E8:9B:FA:98:84:2A
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/l2yhN23NjtU8SeE2lOnom_qYhCo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.224.0/19
Signature Algorithm: sha256WithRSAEncryption
b0:36:10:fa:8f:32:04:3e:f4:14:0b:09:33:db:11:b2:a1:a4:
70:3f:f3:e1:cf:e1:19:ad:41:86:73:59:4b:53:98:e3:ec:a4:
4f:7b:ff:13:67:51:22:32:61:66:d7:07:43:3e:06:20:79:a2:
70:68:6b:32:79:a3:a7:70:c2:c6:ea:37:de:a1:18:d1:f1:15:
1d:96:e7:7d:87:0d:bd:36:ba:26:00:84:7b:2b:1b:eb:f2:47:
b2:97:b3:1b:14:49:9f:b7:b5:61:34:06:3e:c0:41:83:11:51:
01:62:64:6a:3a:90:a8:4a:a8:8a:f1:87:e8:cd:a6:b1:75:89:
44:a3:91:97:0d:cb:93:0a:ff:19:5b:79:ec:34:9d:b8:5c:e8:
cd:dc:2f:5c:de:51:58:7d:a7:90:3b:5d:52:65:e4:11:ab:41:
e3:b9:f0:d1:81:e9:45:cf:c2:1c:55:d8:92:5c:25:77:85:65:
6d:eb:cd:b8:c6:3f:5b:fe:98:6c:96:95:db:ca:3e:26:b4:d2:
af:2e:9e:9e:14:75:a6:40:3f:86:29:29:64:37:eb:31:64:ff:
3b:b3:a8:b8:3a:17:e7:72:b1:ac:bb:4b:6a:83:1e:14:28:38:
95:8b:a4:a4:54:c2:58:32:2d:5f:9c:89:67:e6:98:d0:94:7c:
b2:d7:a9:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:01:26 2025 by rpki-client