Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/wxFk3a3La5AET1UN7wiBYiPpb_o.roa
File: wxFk3a3La5AET1UN7wiBYiPpb_o.roa (raw, json)
Hash identifier: Gos1SaoBdsOGdCOLNW9bsGHfhrLszBD4f81q/Tdrxow=
Subject key identifier: C3:11:64:DD:AD:CB:6B:90:04:4F:55:0D:EF:08:81:62:23:E9:6F:FA
Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Certificate serial: 0CD7
Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/wxFk3a3La5AET1UN7wiBYiPpb_o.roa
Signing time: Mon 26 Aug 2024 05:25:21 +0000
ROA not before: Mon 26 Aug 2024 05:25:21 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9676
IP address blocks: 61.60.128.0/19 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:51:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3287 (0xcd7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A
Validity
Not Before: Aug 26 05:25:21 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C31164DDADCB6B90044F550DEF08816223E96FFA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:bd:0a:df:39:a9:62:35:ab:f1:83:97:63:6b:
e9:7f:bb:2f:58:86:b2:81:85:b0:08:fb:58:1e:9e:
96:4d:69:37:75:fe:1f:f7:1c:bd:78:c6:a5:0f:28:
bb:0d:b9:42:93:3b:96:5b:0b:b4:ae:9c:ca:21:a1:
bb:87:d1:46:19:be:66:42:40:16:4c:ce:9e:77:ca:
02:21:30:0f:5a:f4:69:46:91:07:76:e9:66:aa:65:
dc:66:cb:10:6c:c3:ef:18:42:83:7c:ec:82:dd:52:
6d:17:85:47:c9:03:8a:e3:fe:53:d4:18:ab:71:ee:
0f:47:fe:c2:fb:5b:b2:dc:10:4e:81:85:f7:23:f6:
f6:c3:4a:1b:be:d4:82:14:b1:12:a8:fd:a9:ee:a0:
7e:1c:2b:34:96:e8:9a:c3:d2:f2:1d:91:f4:b4:dc:
f5:58:35:38:5f:b8:4e:ed:54:ca:a8:f9:8e:20:13:
bd:89:ce:9c:aa:6f:f9:4f:bb:01:65:c5:ff:7a:79:
68:67:c5:09:89:3c:7c:a9:1d:6b:3b:74:0f:6c:16:
11:a8:4f:19:2e:63:b0:2e:54:0d:5c:d1:57:d0:03:
81:be:24:79:87:d8:b2:b2:34:9c:84:e9:8b:10:57:
52:fb:f9:c0:73:d1:43:70:4b:2f:85:7d:2a:d7:81:
8d:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:11:64:DD:AD:CB:6B:90:04:4F:55:0D:EF:08:81:62:23:E9:6F:FA
X509v3 Authority Key Identifier:
keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/wxFk3a3La5AET1UN7wiBYiPpb_o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.60.128.0/19
Signature Algorithm: sha256WithRSAEncryption
d0:e5:3a:23:bf:82:ee:f5:7a:23:36:d8:00:a3:61:71:eb:11:
d5:7c:47:06:be:92:77:14:9a:de:a2:fb:ca:e2:c0:88:1a:f8:
52:f0:58:67:c7:46:48:c3:bf:ba:b7:69:1e:0d:7b:73:65:45:
2d:92:a5:75:51:74:ad:9e:0a:65:c4:59:9e:0c:de:ff:f6:1b:
b7:60:a7:3d:41:2d:15:f1:cd:21:c7:8d:61:6b:59:c9:fa:6f:
d8:5e:d4:6e:0d:d8:49:b4:a9:44:17:f8:9c:52:88:58:c8:7a:
b4:29:21:1f:c9:2e:37:a3:89:64:44:9f:ee:e8:72:79:59:16:
c5:8b:14:d5:ec:1d:3d:f9:e4:b0:23:1b:cf:b6:d4:d3:94:02:
ce:07:36:18:f4:68:98:96:5c:df:e7:fa:99:49:33:7c:d6:b7:
2e:26:40:7c:d9:1e:c3:f7:ca:c6:f2:37:6f:84:5c:9f:fb:7b:
68:fa:9b:eb:b5:bb:c7:01:2d:fc:78:80:b2:43:8a:e5:ed:69:
44:6b:17:0e:fa:7e:54:3f:95:fc:37:ff:fc:9a:75:1e:fb:9d:
bc:41:95:70:26:24:d1:99:d5:ac:65:ca:92:3d:43:17:31:9c:
c3:49:bd:a2:df:94:40:a3:c2:0f:ff:59:fe:87:63:f3:31:18:
31:3a:3c:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:12:15 2025 by rpki-client