Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/tnuhj1cHBpdNxlLBlpyCRi35A08.roa
File: tnuhj1cHBpdNxlLBlpyCRi35A08.roa (raw, json)
Hash identifier: TMDkxuyaU9pwCQa3uSYUBzJ++6yq+ogU17EgPp3b6RA=
Subject key identifier: B6:7B:A1:8F:57:07:06:97:4D:C6:52:C1:96:9C:82:46:2D:F9:03:4F
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 1666
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tnuhj1cHBpdNxlLBlpyCRi35A08.roa
Signing time: Mon 26 Aug 2024 05:22:09 +0000
ROA not before: Mon 26 Aug 2024 05:22:09 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4780
IP address blocks: 60.245.64.0/19 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:07:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5734 (0x1666)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Aug 26 05:22:09 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=B67BA18F570706974DC652C1969C82462DF9034F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:79:77:e6:10:18:c1:55:ad:1f:85:2d:b6:fd:
15:13:d3:9e:f3:38:8e:07:71:ac:f3:90:43:22:22:
4c:d2:d7:c9:17:02:2a:3b:5e:b1:b6:b3:89:65:1d:
06:bf:73:cf:0d:83:fb:f3:1a:06:ef:33:cb:51:ba:
03:3f:72:ef:4c:91:aa:98:52:fe:21:0a:2d:57:0b:
e2:32:4d:86:e6:8d:0d:fb:9d:ff:28:a9:d6:d1:bb:
f8:c4:95:9a:ff:03:6f:f1:85:dd:8f:a1:6f:d3:58:
f3:03:90:42:50:0b:87:38:a4:10:08:fe:9b:a1:b9:
2d:92:c6:3a:27:4e:c2:2e:7a:90:29:a3:f1:f0:9e:
5e:aa:03:28:5a:07:49:68:5d:95:41:ba:23:c7:78:
b3:68:cc:b1:54:ae:29:1f:64:a5:43:30:c9:c1:b2:
9f:24:cd:cf:87:6d:36:36:07:cd:6f:38:2b:bf:f7:
e4:0e:1e:1d:62:4b:2b:73:1e:1f:c0:fd:78:f4:a6:
7b:55:d2:36:d5:0b:18:7a:4f:a2:d5:91:14:9d:71:
3a:a5:4f:b3:a1:99:00:a2:9e:e3:87:88:93:9c:42:
ad:30:8c:45:fa:d4:0d:a2:cb:6e:8b:94:ae:26:f3:
68:bf:61:6d:52:7a:14:5b:9f:7d:92:8e:f4:3b:43:
4e:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:7B:A1:8F:57:07:06:97:4D:C6:52:C1:96:9C:82:46:2D:F9:03:4F
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tnuhj1cHBpdNxlLBlpyCRi35A08.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.245.64.0/19
Signature Algorithm: sha256WithRSAEncryption
7e:98:24:77:44:7e:66:07:4f:dd:69:4d:b8:21:92:19:d1:93:
31:8c:04:cb:11:0c:42:a5:2e:39:8a:1e:bd:d3:e5:e9:de:3e:
4e:b5:de:dd:e1:69:4a:9b:20:ac:93:b2:52:31:d3:d3:12:b1:
5f:11:ca:df:c3:31:f4:e2:09:78:eb:f5:b4:57:b9:b8:60:b2:
07:ce:72:a1:a4:98:b8:31:2e:d8:fd:11:a7:fa:0a:57:8f:86:
c3:52:b1:9b:f8:2b:53:cc:81:ec:fc:2e:64:0d:e6:fa:7b:77:
8e:3d:1d:2c:ec:bb:0a:71:dc:10:90:0f:63:3b:48:e2:91:6e:
3a:64:38:40:bb:c9:58:63:e5:04:1c:74:c2:5e:fa:32:73:03:
5c:7a:b0:1b:5b:eb:91:ff:81:cb:6a:dc:da:56:3a:2b:8d:51:
e3:cb:4b:3e:a0:40:51:66:f0:2c:9c:9b:6d:02:fe:e5:21:9b:
f2:5b:62:24:88:78:a6:3b:21:7e:46:92:a9:b9:91:e5:fe:5c:
90:75:24:09:3f:e9:2d:02:60:79:26:0f:c7:64:79:a3:f7:4e:
6e:bc:0b:d4:89:1f:1f:34:5f:5f:1c:08:ea:bc:04:f2:88:74:
1c:81:87:65:f9:ae:06:a5:f1:26:ca:fa:43:8e:4d:d3:0d:29:
5f:8e:f1:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:40:44 2025 by rpki-client