Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/w_BDTeT-UNaAY5JyPQRhLC99tgc.roa
File: w_BDTeT-UNaAY5JyPQRhLC99tgc.roa (raw, json)
Hash identifier: 9YKSGx6KsvL9iRpFVkSMNhg7FpKdTsONqJl/D+/3Szc=
Subject key identifier: C3:F0:43:4D:E4:FE:50:D6:80:63:92:72:3D:04:61:2C:2F:7D:B6:07
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 0CE1
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/w_BDTeT-UNaAY5JyPQRhLC99tgc.roa
Signing time: Mon 26 Aug 2024 05:25:23 +0000
ROA not before: Mon 26 Aug 2024 05:25:23 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9676
IP address blocks: 61.58.192.0/18 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:51:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3297 (0xce1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Aug 26 05:25:23 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C3F0434DE4FE50D6806392723D04612C2F7DB607
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:75:d4:91:f9:f4:c3:dc:d5:71:b6:d9:cd:74:
ae:ea:a4:0a:d3:1f:15:07:29:4f:b2:44:8d:7e:99:
fd:0f:fe:02:6b:c0:53:99:75:3b:06:3a:0b:87:51:
7a:97:62:73:ca:ad:22:4c:a3:e8:cc:3b:c0:5d:51:
9a:e4:4a:d2:f3:c8:f1:15:b5:85:23:f4:66:ec:64:
4c:53:54:72:32:c7:0e:24:c9:42:17:96:c5:21:07:
9c:54:9f:f4:12:f2:44:c2:78:1f:70:59:7e:eb:99:
60:db:13:cf:18:07:83:94:8f:7d:9c:26:2d:3e:b1:
e6:71:6f:1a:13:f4:2a:8b:f7:e1:d3:51:a7:d5:ab:
5e:a1:f9:43:94:3d:c7:37:44:1b:ae:3c:97:d4:16:
39:cc:06:c0:55:ac:31:b9:e5:c4:00:72:82:93:f0:
40:38:c4:20:ac:c0:8e:de:4d:90:af:c2:f9:0e:8d:
b4:57:39:ad:8d:e7:2e:f4:12:af:75:94:0a:97:cd:
74:9c:33:d5:8e:f5:b1:9e:6a:3a:a0:4a:a6:5d:bb:
66:ad:dc:6f:68:57:b0:8c:b3:ee:2b:80:e3:24:78:
59:41:d5:db:3f:d2:ec:d1:cc:5d:ee:8a:15:69:92:
01:af:a6:0d:96:f4:6f:e3:5a:b0:87:84:8e:49:24:
a4:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:F0:43:4D:E4:FE:50:D6:80:63:92:72:3D:04:61:2C:2F:7D:B6:07
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/w_BDTeT-UNaAY5JyPQRhLC99tgc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.192.0/18
Signature Algorithm: sha256WithRSAEncryption
1f:9f:ae:2d:ed:e4:2c:b5:80:af:a5:d8:5e:08:cf:86:34:a4:
12:13:21:47:42:a7:04:0e:6f:44:cf:2b:a2:1c:7a:b7:13:d2:
90:94:d8:ed:bf:e6:45:8d:d1:d3:39:e1:7d:c2:4e:69:3e:f8:
55:be:d0:ad:d5:7a:a5:1a:71:4d:18:2b:02:5f:89:52:db:eb:
4b:92:ce:5c:91:87:19:23:bc:97:b9:7f:e5:d1:dd:23:d7:eb:
47:47:36:e8:bb:5c:03:44:74:08:d9:11:80:51:d4:6a:2b:5a:
66:2b:d5:12:30:34:19:a7:2d:a6:4d:61:43:62:b5:b6:b6:c6:
e2:23:a7:1d:84:68:41:f6:d1:6e:c5:70:6c:49:41:05:4a:5f:
8f:10:f8:8c:cb:c8:e0:2c:0f:8f:7a:49:67:3d:b2:8f:1d:da:
30:30:dd:18:0a:9e:5b:c2:10:db:13:d2:6a:22:bf:0b:8a:e7:
36:77:14:97:89:59:be:7c:00:08:92:f0:d3:b0:a1:fd:65:dd:
ce:13:69:3e:59:de:ae:5a:57:99:ff:ed:79:6e:51:39:36:96:
24:9c:97:c5:df:5e:3b:f7:7b:56:48:e4:31:34:29:e0:bd:4f:
61:7b:47:7c:05:35:b9:86:e7:4c:64:58:fb:11:2d:de:4b:ce:
76:b3:c9:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:12:02 2025 by rpki-client