Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/887uLjYROkWU3MJ8BV5JDvvjPvY.roa
File: 887uLjYROkWU3MJ8BV5JDvvjPvY.roa (raw, json)
Hash identifier: 72BeQJkJ/GC/DVVBQjLh7h1xi88E51pGUIqC0VCRnhc=
Subject key identifier: F3:CE:EE:2E:36:11:3A:45:94:DC:C2:7C:05:5E:49:0E:FB:E3:3E:F6
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0CC9
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/887uLjYROkWU3MJ8BV5JDvvjPvY.roa
Signing time: Mon 26 Aug 2024 05:27:33 +0000
ROA not before: Mon 26 Aug 2024 05:27:33 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17709
IP address blocks: 61.58.72.0/21 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:13:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3273 (0xcc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Aug 26 05:27:33 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F3CEEE2E36113A4594DCC27C055E490EFBE33EF6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:ef:4b:88:f5:19:d4:24:b4:3b:13:89:e1:eb:
7b:ae:ce:15:82:76:49:35:81:62:20:0b:96:ba:45:
fb:96:b2:7d:56:4f:51:95:ec:e2:b1:81:d9:eb:84:
ef:4c:03:5a:31:b2:33:3d:83:bb:a9:90:b4:fc:4a:
a1:b8:3c:ed:09:d8:af:15:18:8d:99:04:3f:0d:10:
a3:37:cb:fa:40:95:f0:dc:d4:0d:21:42:d2:ca:c6:
70:8e:ea:56:21:11:fe:22:db:71:70:81:44:b2:c9:
be:f4:ef:08:d1:e9:06:36:24:49:df:d6:67:09:c5:
7e:0e:7b:7f:9d:20:9c:94:ac:d0:83:31:d7:d5:8f:
a4:be:8a:15:48:34:f7:4d:b1:b6:31:19:cc:47:b6:
62:f9:53:0c:fc:61:54:b9:ac:88:85:1d:c8:1f:57:
3e:a8:ea:70:3b:00:b0:d2:28:f0:fe:ab:c2:72:49:
2e:12:22:b1:14:ca:85:cc:06:9b:55:da:42:11:bc:
97:07:c6:2a:8c:58:59:45:a0:6d:64:b2:ad:f3:ca:
b6:35:25:32:7a:61:11:ec:cc:2a:b8:7b:a2:3d:01:
83:5c:04:91:39:00:a5:ce:85:c7:9c:29:b2:5b:22:
0f:d7:b8:2d:f2:7f:33:90:a3:46:be:0b:1a:d1:4e:
13:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:CE:EE:2E:36:11:3A:45:94:DC:C2:7C:05:5E:49:0E:FB:E3:3E:F6
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/887uLjYROkWU3MJ8BV5JDvvjPvY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.72.0/21
Signature Algorithm: sha256WithRSAEncryption
65:fa:5e:6e:26:4c:14:54:e4:01:73:50:cf:6c:51:71:61:6c:
f2:6e:0e:ea:bf:4d:20:8d:38:aa:eb:8d:ff:82:95:ac:d3:3c:
8c:1d:f3:c6:c4:72:de:c2:2a:79:71:c1:81:69:03:4b:f2:43:
fa:84:c4:e6:c8:24:5a:f3:45:a3:f0:6f:ca:82:7f:25:3a:e2:
3b:27:4f:14:65:7c:70:df:95:bc:1f:23:16:50:cb:74:8e:86:
a6:d1:79:76:5b:9c:e5:49:0a:93:fe:88:52:b0:76:c6:14:57:
3b:aa:7d:3c:86:f3:ca:fe:40:c3:89:c6:d0:66:4d:bd:2e:2c:
09:36:f8:f1:1e:f4:91:90:71:59:2c:dc:95:3a:8f:30:71:04:
07:99:a6:25:66:dc:fc:86:df:8d:db:56:07:cb:14:d7:54:e4:
b4:46:70:df:40:2c:a5:15:8f:ca:3b:aa:32:1f:b5:c3:1f:ed:
c2:2b:0d:a8:d7:0c:4e:b3:b3:b9:49:0e:63:ce:e9:c6:96:bb:
d3:46:9c:a9:32:49:6f:74:7f:28:fc:0f:66:5f:32:08:32:34:
7e:7e:4a:b1:f7:c1:59:2b:18:4b:28:d6:2f:e2:fb:a4:9f:1d:
3f:b2:91:98:27:46:23:c4:97:be:d3:72:f7:42:fd:a0:d9:17:
22:15:03:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:22:00 2025 by rpki-client