Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/PmSElShvUmiGHKh7Yp9w72w8ank.roa
File: PmSElShvUmiGHKh7Yp9w72w8ank.roa (raw, json)
Hash identifier: LXRcO0bN1azuMxuUp6TuBCcT4wm6CDGTZW+9r/LRWzI=
Subject key identifier: 3E:64:84:95:28:6F:52:68:86:1C:A8:7B:62:9F:70:EF:6C:3C:6A:79
Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Certificate serial: 0CC1
Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/PmSElShvUmiGHKh7Yp9w72w8ank.roa
Signing time: Mon 26 Aug 2024 05:27:31 +0000
ROA not before: Mon 26 Aug 2024 05:27:31 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17709
IP address blocks: 61.58.64.0/20 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:13:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3265 (0xcc1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7
Validity
Not Before: Aug 26 05:27:31 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=3E648495286F5268861CA87B629F70EF6C3C6A79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:3a:2a:42:d2:cc:7a:b8:57:e9:8c:27:85:50:
20:a1:7d:34:35:aa:c5:7b:bd:27:7f:36:73:98:1a:
df:c6:7e:77:43:a6:c1:fe:32:d9:a2:15:1b:24:87:
9b:1e:a1:61:89:22:13:bc:cc:26:79:16:79:fd:b2:
60:3c:64:f3:5e:57:be:8a:20:97:9e:87:68:06:8b:
af:3f:3f:ba:a6:52:8f:cb:8d:58:bc:5a:58:b7:9e:
3c:1e:c3:0e:cb:85:86:6c:98:5a:88:2c:48:69:0f:
94:6b:be:8e:6f:a1:88:3c:92:a8:07:34:ca:8d:2b:
ec:a8:88:e0:f2:22:76:88:aa:4c:8b:5f:aa:eb:11:
40:a3:45:22:27:b2:ff:63:f4:59:65:a9:77:d4:6f:
ae:2f:86:e4:99:9d:67:de:ce:fd:67:70:fe:d5:ec:
9e:47:cf:74:f9:5a:97:20:37:15:b1:24:9f:05:96:
19:e5:a1:af:c4:86:33:62:e0:8a:8f:d4:67:9b:7e:
36:d3:0c:00:54:4d:e3:7d:78:5b:1d:42:e3:97:61:
d7:77:66:d8:38:65:fb:89:92:79:94:15:ee:7a:43:
3d:ca:38:df:73:2c:f6:08:0f:ec:43:8b:c9:54:5e:
24:bb:cc:d4:87:c9:ae:da:c5:d8:2e:7f:f4:7e:85:
1b:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:64:84:95:28:6F:52:68:86:1C:A8:7B:62:9F:70:EF:6C:3C:6A:79
X509v3 Authority Key Identifier:
keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/PmSElShvUmiGHKh7Yp9w72w8ank.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.64.0/20
Signature Algorithm: sha256WithRSAEncryption
4b:bb:e1:2c:23:ed:3a:fd:10:ea:8f:c1:41:62:c4:75:86:39:
59:aa:51:0d:b2:8a:e8:ee:25:41:68:4e:e4:5c:d5:67:fb:3e:
10:79:2d:8c:41:57:48:2b:d5:db:c3:3e:e1:4d:50:35:aa:75:
a3:03:9f:a3:50:48:31:35:b9:2b:5f:2a:1d:63:db:95:50:84:
2c:93:ec:19:48:92:4b:92:93:86:df:d8:ab:cb:d4:e7:e2:b6:
f3:07:0c:0c:74:1a:e7:42:d4:6c:e8:7c:28:39:fb:80:54:d3:
77:a5:10:fc:2e:e5:ae:a4:67:d9:a3:90:5d:97:66:fe:5d:97:
2a:90:f6:0a:4b:f1:23:18:50:48:4b:51:b7:9c:36:3c:33:78:
96:55:fe:d3:03:ad:b7:e9:c6:43:c1:8d:02:98:b9:6f:1a:1c:
8a:ce:98:4b:5c:7b:c1:11:9d:cb:a3:6f:e0:0b:06:13:f9:56:
4f:06:0e:31:59:e7:8b:12:ad:98:e0:bf:c9:06:56:c7:16:2f:
2c:ea:a1:3b:f1:55:c7:fa:fe:77:3c:71:fd:1f:03:12:c1:fc:
3b:3b:10:cb:7e:5e:b4:a0:6c:84:69:51:a8:71:37:b0:fe:7f:
49:b0:6b:a9:21:b5:16:d0:f6:aa:d7:94:7c:91:d4:43:56:25:
d8:ab:7c:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:26:00 2025 by rpki-client