Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PIINET/WrClYlH5Aj2T36IEOp3rX7j2gYo.roa
File: WrClYlH5Aj2T36IEOp3rX7j2gYo.roa (raw, json)
Hash identifier: z7Zu5hIxwFPXp+WYe3OVj3M8gI5QQ6Tv+foDfc9P60Q=
Subject key identifier: 5A:B0:A5:62:51:F9:02:3D:93:DF:A2:04:3A:9D:EB:5F:B8:F6:81:8A
Certificate issuer: /CN=69797BDE8D0581FA299D8E1420ED2957C4208A07
Certificate serial: 0C0D
Authority key identifier: 69:79:7B:DE:8D:05:81:FA:29:9D:8E:14:20:ED:29:57:C4:20:8A:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/aXl73o0FgfopnY4UIO0pV8Qgigc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PIINET/WrClYlH5Aj2T36IEOp3rX7j2gYo.roa
Signing time: Mon 26 Aug 2024 05:24:04 +0000
ROA not before: Mon 26 Aug 2024 05:24:04 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17710
IP address blocks: 61.57.224.0/20 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:49:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3085 (0xc0d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69797BDE8D0581FA299D8E1420ED2957C4208A07
Validity
Not Before: Aug 26 05:24:04 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5AB0A56251F9023D93DFA2043A9DEB5FB8F6818A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:4f:35:72:2b:4f:c3:a2:98:b3:27:8f:56:7b:
23:75:8c:e2:e5:d7:30:16:0d:11:ff:31:26:eb:3c:
b2:b5:35:68:76:86:82:6c:68:ac:b4:c3:c3:4b:1b:
ff:b5:e4:ac:8a:60:9a:01:eb:d1:4e:66:2c:e2:aa:
8e:e3:ef:57:fc:51:d4:0f:ab:12:14:60:ad:d3:19:
51:be:29:1d:a0:61:cc:49:f3:6c:7b:8d:74:07:0f:
fb:b4:d0:2d:87:8a:ca:00:61:5e:ce:8a:65:d1:1d:
11:cd:ff:5f:ad:3b:31:90:53:62:7e:97:12:be:ca:
09:e7:34:b0:5a:9e:ae:0f:c2:b3:f6:29:3a:67:87:
bd:05:66:6b:8d:cd:0b:8c:01:26:e8:75:70:47:09:
8a:89:5b:8e:24:4f:e1:d3:97:b5:f4:d4:9c:81:01:
59:69:1f:56:c2:dd:a1:d6:b8:60:46:53:3b:b9:41:
9e:6f:97:d3:b0:a2:87:12:4d:65:a2:a8:0c:ce:80:
93:f3:a7:48:9b:66:7e:8d:0c:ab:05:6c:c3:a8:f1:
e8:cc:fa:5c:2d:d5:b8:22:cf:39:a2:c4:81:98:d9:
22:15:bb:38:aa:dd:de:d3:83:e9:37:01:d1:03:d2:
da:3b:d6:29:88:af:3c:26:41:d6:4e:30:9b:af:d9:
83:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:B0:A5:62:51:F9:02:3D:93:DF:A2:04:3A:9D:EB:5F:B8:F6:81:8A
X509v3 Authority Key Identifier:
keyid:69:79:7B:DE:8D:05:81:FA:29:9D:8E:14:20:ED:29:57:C4:20:8A:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PIINET/aXl73o0FgfopnY4UIO0pV8Qgigc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/aXl73o0FgfopnY4UIO0pV8Qgigc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PIINET/WrClYlH5Aj2T36IEOp3rX7j2gYo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.57.224.0/20
Signature Algorithm: sha256WithRSAEncryption
3f:93:f3:7d:90:fd:37:ea:36:72:57:1c:85:f6:23:6b:e5:21:
57:c2:e3:4f:ad:f5:c9:7a:7f:e0:cb:76:1f:79:15:67:ec:e1:
59:4c:b1:1a:e6:e4:62:0c:87:98:f7:f0:f5:d3:52:d0:71:2c:
4b:35:2c:5f:44:3d:25:8b:70:38:0b:80:9c:cc:7d:82:cd:ae:
ee:81:e5:cc:18:5f:a3:c5:93:84:d9:0c:d1:31:e0:64:4a:d3:
f8:77:15:fa:dd:8e:26:c5:a1:8d:06:a2:60:2c:78:63:af:4b:
78:08:5b:22:54:4e:4a:3b:00:57:69:41:00:81:86:7e:b8:cb:
77:00:02:90:72:6a:a9:7d:c7:6b:5e:89:61:ec:a0:4f:26:01:
4b:bd:33:5b:5e:62:73:77:8b:5c:8f:0f:76:df:0c:18:b3:20:
11:b6:23:88:87:b0:46:6b:c2:3c:8a:36:0b:26:b7:e1:dc:0b:
c4:26:99:dc:62:92:b4:fb:78:bb:73:20:4e:70:46:f3:c9:39:
ae:81:62:ff:a4:77:a8:bb:cf:6e:cc:28:75:09:af:5a:64:54:
18:51:fd:ac:f4:ca:62:22:94:a3:aa:1e:f5:f5:dc:e1:5f:72:
a2:16:83:d5:f7:a8:d5:67:bd:2a:29:e3:44:55:5a:b7:ac:cf:
a9:4e:5e:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:13:35 2025 by rpki-client