Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/JVerigVF4n_XwzXVKHNPQ8rw7w0.roa
File: JVerigVF4n_XwzXVKHNPQ8rw7w0.roa (raw, json)
Hash identifier: BYbkN7jhQmiiK3uq6LDzPTuVQnZpX9lZlZP+utw9I9w=
Subject key identifier: 25:57:AB:8A:05:45:E2:7F:D7:C3:35:D5:28:73:4F:43:CA:F0:EF:0D
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 0CDB
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/JVerigVF4n_XwzXVKHNPQ8rw7w0.roa
Signing time: Mon 26 Aug 2024 05:26:18 +0000
ROA not before: Mon 26 Aug 2024 05:26:18 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18419
IP address blocks: 61.60.192.0/20 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:12:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3291 (0xcdb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Aug 26 05:26:18 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=2557AB8A0545E27FD7C335D528734F43CAF0EF0D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:41:96:e2:15:56:c6:04:bd:95:12:30:1c:de:
c3:85:14:39:0a:24:df:85:4d:9b:e3:d0:89:c7:ec:
a4:37:a4:d6:98:6f:73:f3:17:8e:49:83:5e:52:14:
02:62:e6:66:e3:87:46:ef:be:76:a1:eb:49:b0:d0:
78:d0:ec:71:81:5b:b0:89:1f:9d:da:93:58:47:24:
59:56:11:02:15:72:6e:83:32:57:47:87:c7:68:94:
82:91:e2:51:37:79:88:1e:47:71:45:6d:7e:b2:80:
46:de:1c:71:43:95:e6:25:53:45:03:06:08:4a:af:
3b:b4:f3:cc:a4:a5:c7:75:67:1f:8f:b9:e2:e3:d2:
8a:7d:48:d5:32:7f:83:4c:44:4c:c8:8b:79:f8:d5:
30:03:ce:c7:35:d4:97:31:da:70:15:5a:3a:cf:75:
0a:6a:e5:4e:d8:a2:b4:78:48:80:db:80:81:23:06:
55:8f:04:d9:71:cc:ad:85:fc:ee:a8:2a:3a:8a:be:
ea:46:14:69:b5:50:cc:ba:0d:f6:a4:ad:17:68:e2:
90:06:c0:ed:95:34:99:f5:e2:39:f2:f2:3a:cc:8a:
0f:97:6d:89:c3:db:4f:35:32:e5:09:f1:19:71:2f:
33:a0:bc:1a:c7:b4:b2:a5:44:7c:4c:97:84:bf:fa:
28:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:57:AB:8A:05:45:E2:7F:D7:C3:35:D5:28:73:4F:43:CA:F0:EF:0D
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/JVerigVF4n_XwzXVKHNPQ8rw7w0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.60.192.0/20
Signature Algorithm: sha256WithRSAEncryption
7c:dd:46:64:1a:6a:a7:46:0b:ab:49:2b:44:30:33:f6:5c:a1:
78:2b:a3:54:1b:5e:4e:bc:c8:d2:02:14:50:d1:2b:5a:50:f0:
76:f5:91:fd:c6:97:8d:c6:be:ec:5a:f8:9d:7b:c2:bb:e4:7c:
77:e3:ee:bc:92:39:c4:fa:50:04:cf:77:09:57:49:1d:53:35:
6e:f1:d1:9c:c2:a3:c0:e5:99:46:50:3c:b7:e5:d6:6b:5a:89:
2b:0e:36:24:c6:56:df:53:50:8e:6c:93:75:af:8c:59:3d:d0:
99:62:8a:31:d7:ed:b5:bd:6d:30:c1:91:39:98:cf:c8:00:66:
af:3e:c0:2d:b5:39:3d:8d:a6:ec:46:bc:e4:59:e9:f7:3e:8c:
0f:b4:71:90:07:20:92:ef:5a:09:36:a8:77:3b:3c:8a:ea:85:
f0:11:01:4b:6c:e1:60:54:70:b3:11:fc:fe:fe:0c:d1:9e:82:
15:2b:2d:a5:26:25:53:1b:5c:2a:ff:03:68:3a:9e:7e:98:90:
38:70:fe:bc:9a:b0:bd:5d:cc:5d:70:cb:89:85:11:92:15:29:
94:6f:f1:2e:9c:b2:7b:d0:8d:16:ee:83:31:ef:03:25:78:0c:
f3:cf:43:5b:63:d4:8c:00:73:53:ad:cf:3a:fa:42:46:ba:1d:
76:16:e2:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 02:48:13 2025 by rpki-client