Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/7AdeiEO1uds2BWMxmwHbiSQz860.roa
File: 7AdeiEO1uds2BWMxmwHbiSQz860.roa (raw, json)
Hash identifier: uHbcfkDUKdiJoQhRQ5jvGbiStEisf5dK6z3oyuMxn70=
Subject key identifier: EC:07:5E:88:43:B5:B9:DB:36:05:63:31:9B:01:DB:89:24:33:F3:AD
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0CC4
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/7AdeiEO1uds2BWMxmwHbiSQz860.roa
Signing time: Mon 26 Aug 2024 05:27:32 +0000
ROA not before: Mon 26 Aug 2024 05:27:32 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17709
IP address blocks: 61.57.64.0/18 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:13:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3268 (0xcc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Aug 26 05:27:32 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=EC075E8843B5B9DB360563319B01DB892433F3AD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:46:c3:2b:fb:e3:16:47:4f:05:43:f2:6e:36:
30:67:ea:10:4e:66:7e:53:ba:c5:c8:dc:85:e9:6f:
74:f6:14:d0:9e:e6:b3:88:f8:5d:3b:c2:91:d6:f2:
0a:fa:cb:8e:24:e3:50:4e:2d:fd:f2:22:fe:47:8a:
b6:81:4e:60:59:ba:b7:c3:98:37:a6:7d:f3:87:29:
89:13:0d:cd:e1:b2:e2:52:85:0c:c5:23:1d:08:38:
2e:13:cd:41:bc:54:4d:89:c7:a6:88:08:a6:e3:f1:
9b:ea:fa:be:ff:0b:63:a0:66:ac:e8:74:08:c9:e5:
15:08:2e:07:8c:b3:4b:e0:87:6a:fd:24:ec:de:92:
17:58:06:2c:43:d6:99:16:03:9f:5f:6d:03:85:af:
64:64:fc:77:c2:b0:de:b6:87:28:94:de:2c:e3:14:
8d:d4:ab:d1:5e:38:4b:ef:6f:e1:0b:65:56:d8:f2:
93:e8:19:c3:12:dc:9d:69:ec:87:fd:63:96:9e:48:
7e:6d:be:e1:e8:e2:1b:9a:0a:50:3b:d3:45:2c:2c:
e3:20:74:30:d2:09:80:59:1c:f8:9e:5b:85:a8:a1:
c6:8f:1a:74:2c:f4:7e:58:68:90:44:7c:f2:05:e7:
30:f1:7a:2f:8f:b2:fd:01:c2:61:05:00:2d:91:02:
ec:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:07:5E:88:43:B5:B9:DB:36:05:63:31:9B:01:DB:89:24:33:F3:AD
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/7AdeiEO1uds2BWMxmwHbiSQz860.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.57.64.0/18
Signature Algorithm: sha256WithRSAEncryption
1a:f3:ba:5a:a0:e4:09:c2:00:82:65:be:d5:df:ac:28:d4:4f:
4d:2e:0c:9b:e2:9e:f2:a9:8d:ca:87:c2:53:0d:0c:97:10:05:
b6:2e:4e:14:9d:a1:78:79:7d:88:d3:a6:7a:5d:c2:df:ea:33:
11:e7:fc:68:0c:95:87:04:7d:20:64:83:1c:fe:10:d8:cd:ab:
f4:a9:20:1b:36:26:4e:4b:67:0a:4c:55:65:cf:57:d5:59:20:
bc:55:77:53:0b:f4:76:8d:e8:02:f5:ef:29:e2:cd:c2:99:03:
c8:e3:39:2a:cb:f1:e5:a9:7f:0d:9d:71:d8:3c:b1:91:a1:49:
ae:dc:33:91:d7:83:70:e1:6d:eb:cd:68:db:db:96:e2:9c:5c:
7e:84:ea:1a:18:d8:d1:aa:85:11:03:b6:4b:fc:e6:2b:2f:26:
f8:de:8a:bc:d2:0a:9a:2b:d2:0f:9a:b7:14:2f:bc:e2:fb:f8:
1c:50:ec:b3:52:a3:0b:74:92:7b:9a:4c:24:96:5a:b0:60:d8:
e4:c1:21:dc:1a:ae:70:1f:b0:4e:59:ba:bb:2e:f3:99:6d:59:
b0:f5:11:72:84:67:03:c5:50:e6:41:92:40:0c:60:21:a1:b2:
aa:eb:cb:38:79:35:88:fc:23:7b:95:74:0f:92:46:e3:07:cb:
77:31:47:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:34:11 2025 by rpki-client