Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/6NkK2uxw-XiwFbgy7HpnIxndtO4.roa
File: 6NkK2uxw-XiwFbgy7HpnIxndtO4.roa (raw, json)
Hash identifier: 9aa8DXmFpznxS41jsQGbm+nc80QK+/b2vGzaPvk2jBo=
Subject key identifier: E8:D9:0A:DA:EC:70:F9:78:B0:15:B8:32:EC:7A:67:23:19:DD:B4:EE
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0CC7
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/6NkK2uxw-XiwFbgy7HpnIxndtO4.roa
Signing time: Mon 26 Aug 2024 05:27:33 +0000
ROA not before: Mon 26 Aug 2024 05:27:33 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17709
IP address blocks: 61.63.96.0/19 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:13:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3271 (0xcc7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Aug 26 05:27:33 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=E8D90ADAEC70F978B015B832EC7A672319DDB4EE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:e1:89:98:45:d8:31:b5:0b:60:54:76:ea:b4:
67:44:73:32:0e:61:5d:1b:1f:53:c5:71:19:c4:45:
9e:b9:65:48:fa:29:c0:fa:24:8c:ac:54:0c:05:c6:
e0:80:42:18:77:27:f7:3c:c3:64:21:8a:72:5b:80:
b1:39:fc:f5:94:a0:44:64:4a:2f:59:52:cc:ca:67:
fd:4a:cb:7a:20:07:71:db:9a:b0:8c:68:9b:02:b2:
d5:ad:c0:fa:72:04:d7:fd:6a:12:ca:44:32:e3:53:
fc:54:7f:71:9f:1b:1c:f6:c0:6e:d6:2c:b8:c1:70:
ff:be:a3:8d:be:79:42:d3:40:60:16:fe:cd:8e:b7:
82:45:9d:e4:c3:5d:ea:e9:c9:d2:a3:9f:7e:59:99:
84:a4:e2:29:ba:04:54:b8:39:49:fb:24:36:43:b4:
15:80:4d:39:98:c8:6a:3f:68:fb:22:1d:f5:b1:fc:
6c:50:ac:be:6f:c6:49:48:15:17:c1:29:8d:37:8a:
75:75:b1:41:06:97:be:31:fb:3d:86:da:05:58:ea:
63:67:8f:b4:6a:b0:3f:50:00:4a:89:94:47:20:6a:
12:38:53:69:7a:25:a6:26:84:53:15:6a:96:0c:8f:
fe:14:93:1d:47:b1:4d:21:b6:03:cf:48:4e:fe:95:
cd:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:D9:0A:DA:EC:70:F9:78:B0:15:B8:32:EC:7A:67:23:19:DD:B4:EE
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/6NkK2uxw-XiwFbgy7HpnIxndtO4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.63.96.0/19
Signature Algorithm: sha256WithRSAEncryption
82:b0:dd:f6:a6:5d:df:ed:b0:97:6c:33:32:e0:e8:2d:c3:3a:
28:92:2b:ef:a9:c7:45:ce:fe:a0:e7:13:18:e1:32:87:23:73:
1e:9b:8e:55:b8:9d:f1:c3:58:a5:da:19:3b:70:74:cf:e4:a5:
0e:80:d3:11:b4:c4:f7:86:4d:a1:3c:33:f3:fe:f3:02:c9:8e:
6b:5e:d2:d2:fc:ac:df:6f:ad:9f:07:ea:f6:8d:e3:57:29:51:
28:49:71:0e:be:0a:c5:94:1f:34:3c:b2:9d:c9:e2:fd:f0:fc:
89:c2:fe:2d:73:85:bc:ba:65:04:aa:af:c2:14:c9:c3:c3:b9:
75:7c:67:90:fa:23:ea:3d:de:b2:77:c2:c7:ce:92:0c:eb:0c:
56:ca:f8:87:f5:03:e4:8e:9d:6f:0d:67:de:83:fb:73:49:83:
32:96:3f:5a:e9:9a:7c:dc:11:36:5a:b5:d0:03:d6:f6:6e:f6:
8b:26:07:ae:32:3b:82:ad:3c:0f:49:45:26:9b:2d:75:cc:63:
e1:89:60:fd:4c:b3:c9:41:9c:9f:c3:12:36:69:8b:48:d2:89:
99:f2:58:ff:42:44:6c:70:68:ea:43:24:74:12:e1:8b:ad:8c:
5d:26:53:21:95:bc:c3:48:b1:04:47:19:a3:7b:d2:a1:db:e9:
99:4a:7a:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:31:28 2025 by rpki-client