Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/7loQ2UGWNIGNCoSIZ8icwld4p_I.roa
File: 7loQ2UGWNIGNCoSIZ8icwld4p_I.roa (raw, json)
Hash identifier: ivNj5nuZQhUupij2B4/jULf3TN7LfuasavbR1J2rtb8=
Subject key identifier: EE:5A:10:D9:41:96:34:81:8D:0A:84:88:67:C8:9C:C2:57:78:A7:F2
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 0CD5
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/7loQ2UGWNIGNCoSIZ8icwld4p_I.roa
Signing time: Mon 26 Aug 2024 05:25:21 +0000
ROA not before: Mon 26 Aug 2024 05:25:21 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9676
IP address blocks: 211.73.0.0/19 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:51:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3285 (0xcd5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Aug 26 05:25:21 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=EE5A10D9419634818D0A848867C89CC25778A7F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:5b:84:95:db:8d:f7:84:14:b9:de:3c:8b:ef:
97:90:2a:90:db:ce:3b:de:c2:bd:67:2e:25:92:ed:
a6:8e:bc:69:f4:c3:08:59:9b:35:03:f5:48:d7:ac:
70:7a:b9:84:6a:5e:49:58:7f:56:7d:65:84:ce:1e:
e7:13:bf:df:ef:67:eb:b6:c8:3e:c4:99:ee:c9:c9:
e8:23:32:a1:0a:c8:93:9b:73:97:8a:3b:85:83:ed:
00:60:a0:a1:3b:61:ae:96:68:75:a8:12:34:c9:0c:
d4:ad:e8:73:c5:91:e4:66:67:2f:03:e0:9a:78:96:
2b:14:83:82:ea:e8:44:68:2f:6d:01:a2:98:c5:6a:
dd:ff:80:b3:14:b3:f4:81:66:b0:46:8d:79:29:48:
90:c6:1c:51:f5:85:c8:1f:94:4b:9d:de:61:69:55:
3f:6d:76:04:11:cf:b1:de:02:2f:3b:dd:b6:88:b8:
3f:0b:51:6e:6e:de:82:53:ef:ba:d5:08:b1:a4:fc:
82:f5:9b:8b:97:f1:1d:99:05:8e:a8:2f:45:97:f9:
86:bf:6b:b6:a5:6c:2e:83:af:80:5d:76:0c:7c:ab:
52:d9:41:be:34:22:89:e0:1f:a7:89:2a:4d:86:6a:
cc:26:73:cf:2f:28:dc:d4:c1:24:d2:d7:75:a2:22:
45:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:5A:10:D9:41:96:34:81:8D:0A:84:88:67:C8:9C:C2:57:78:A7:F2
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/7loQ2UGWNIGNCoSIZ8icwld4p_I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.73.0.0/19
Signature Algorithm: sha256WithRSAEncryption
02:d2:41:33:2a:1f:9e:12:b7:ed:42:71:c3:32:b2:53:af:c3:
4c:51:96:dc:20:a8:30:80:9e:a8:42:5a:8b:58:12:2f:78:0d:
ab:53:da:6a:e9:28:57:30:7e:e7:20:37:95:e9:d3:f7:3e:9d:
1e:26:2c:dd:97:bc:c2:e4:06:0a:52:91:10:50:5d:75:09:a9:
0c:81:92:b9:ba:c5:17:4c:79:cb:88:94:1a:96:3a:55:f3:41:
b6:d6:6d:69:75:81:f4:25:9b:54:86:b1:9e:ea:73:37:b9:f9:
36:bb:32:33:a3:1c:72:3a:fe:b3:16:d3:e5:c2:5d:f9:d8:6c:
d6:7c:6e:07:3e:72:d5:b2:30:57:8a:a0:43:ce:91:d2:d3:5e:
82:7b:81:05:ee:fc:66:67:68:01:26:46:66:f1:b0:b2:66:f2:
a0:4a:84:99:f8:f4:43:9a:59:bc:3e:f2:41:d4:31:40:1f:eb:
fb:0f:29:80:bd:eb:04:bd:84:c7:2b:92:bf:be:e2:2f:84:4d:
88:eb:c9:4e:4b:8e:f5:21:f1:f1:dd:3e:89:e8:26:6e:50:7f:
19:bd:4e:1d:a1:1c:c1:97:9f:56:f3:81:6a:47:ba:c5:08:f3:
5a:b3:22:82:d7:fc:29:ae:16:fc:5c:de:c6:35:d5:3d:23:7a:
05:a5:6d:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:29:06 2025 by rpki-client