Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/43RbiYMySsfYfaaokrXSG99bhEo.roa
File: 43RbiYMySsfYfaaokrXSG99bhEo.roa (raw, json)
Hash identifier: Bjz9JfMtdYDGKrzwVmU7ek6P47ah9UuwPhf2231iUtg=
Subject key identifier: E3:74:5B:89:83:32:4A:C7:D8:7D:A6:A8:92:B5:D2:1B:DF:5B:84:4A
Certificate issuer: /CN=ABD4DDB4BF932C5006B704B9828410174AC412AD
Certificate serial: 010B
Authority key identifier: AB:D4:DD:B4:BF:93:2C:50:06:B7:04:B9:82:84:10:17:4A:C4:12:AD
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q9TdtL-TLFAGtwS5goQQF0rEEq0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/43RbiYMySsfYfaaokrXSG99bhEo.roa
Signing time: Thu 19 Dec 2024 14:20:47 +0000
ROA not before: Thu 19 Dec 2024 14:20:47 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 150766
IP address blocks: 2401:5da0:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:23:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 267 (0x10b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABD4DDB4BF932C5006B704B9828410174AC412AD
Validity
Not Before: Dec 19 14:20:47 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=E3745B8983324AC7D87DA6A892B5D21BDF5B844A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:2c:eb:36:cd:58:1a:04:6d:e4:90:e7:d5:5a:
dc:4a:e7:5f:a6:db:87:ec:d6:41:6d:0f:93:14:92:
fc:56:d7:2f:e1:17:ce:cb:32:5d:9b:3e:18:16:9f:
82:19:44:75:de:57:b1:66:07:ed:00:50:e7:d7:c5:
14:cf:27:f9:db:d2:7b:3d:6e:e7:31:b5:3d:63:5a:
0e:dc:12:5c:35:12:e1:5d:bd:60:83:04:65:d6:36:
c9:27:48:75:d5:ae:10:4f:36:fa:20:99:89:f4:8f:
b8:7e:17:46:02:89:43:e1:a1:fe:c4:ff:74:5d:cc:
f7:16:cb:64:27:dd:fa:f1:8b:54:40:87:d3:17:21:
a2:07:2d:b8:4b:70:c0:d3:81:65:2e:b3:c4:6b:4e:
56:58:57:4b:b9:6e:53:d8:be:d3:f7:a8:40:a4:72:
19:6f:12:cb:14:d2:34:a9:0a:86:01:33:cb:ef:f0:
9b:42:bc:8c:43:a9:8a:0d:43:87:27:cc:e8:f9:10:
68:48:8b:8f:fc:21:28:b1:1a:6e:19:90:ef:00:4c:
7f:85:45:c8:7b:72:0b:08:e7:97:ca:ed:f5:a2:74:
3c:71:2c:61:be:97:f5:21:75:e3:6a:a8:b6:b6:ff:
f3:cb:34:d0:3f:cc:35:a6:85:40:3f:70:6f:42:eb:
8f:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:74:5B:89:83:32:4A:C7:D8:7D:A6:A8:92:B5:D2:1B:DF:5B:84:4A
X509v3 Authority Key Identifier:
keyid:AB:D4:DD:B4:BF:93:2C:50:06:B7:04:B9:82:84:10:17:4A:C4:12:AD
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/q9TdtL-TLFAGtwS5goQQF0rEEq0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q9TdtL-TLFAGtwS5goQQF0rEEq0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/43RbiYMySsfYfaaokrXSG99bhEo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:5da0:1::/48
Signature Algorithm: sha256WithRSAEncryption
7c:cd:3f:1b:c2:5d:c5:77:71:59:91:7f:0a:6a:d8:c0:66:82:
19:e7:5a:53:c2:d8:89:c5:61:a5:d3:f1:c9:95:f0:57:6a:bc:
fc:2f:ea:ab:38:15:0a:78:7f:17:de:c1:3c:10:e9:41:ac:dc:
c5:b2:20:0a:ec:b1:b2:1b:c6:ff:82:ce:e9:a2:d1:4e:89:d5:
e9:b3:9d:61:5f:da:15:f6:c0:82:2b:53:2e:a6:55:14:72:44:
51:1a:07:6c:4b:5f:6e:3b:66:98:44:b5:ce:fe:7c:a0:49:11:
0f:d2:b7:44:56:3f:7f:ee:9d:d5:2d:5c:60:71:b4:b9:93:e5:
67:10:5a:69:69:f4:86:d8:b0:2d:23:55:aa:3e:8d:e9:4e:fa:
d7:61:69:87:f8:33:7d:f8:5d:55:d6:23:82:67:69:0c:f8:b8:
32:2f:9d:6c:f7:10:1a:93:10:f0:f2:6c:0f:5a:f8:82:cd:1e:
24:ca:75:3e:89:e4:54:e8:c0:3f:b3:a7:ed:03:e1:39:d3:85:
4d:43:d2:b6:72:8a:5d:7d:f6:c2:37:63:1d:fd:96:ed:90:29:
fc:67:8e:8b:93:82:f8:72:f9:8f:71:05:09:52:01:62:73:f8:
10:91:ff:5f:ca:d6:be:0a:6e:89:3f:31:52:2b:6d:bc:ed:2d:
a3:e7:67:e8
-----BEGIN CERTIFICATE-----
MIIE2zCCA8OgAwIBAgICAQswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUJE
NEREQjRCRjkzMkM1MDA2QjcwNEI5ODI4NDEwMTc0QUM0MTJBRDAeFw0yNDEyMTkx
NDIwNDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEUzNzQ1Qjg5ODMzMjRB
QzdEODdEQTZBODkyQjVEMjFCREY1Qjg0NEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCuLOs2zVgaBG3kkOfVWtxK51+m24fs1kFtD5MUkvxW1y/hF87L
Ml2bPhgWn4IZRHXeV7FmB+0AUOfXxRTPJ/nb0ns9bucxtT1jWg7cElw1EuFdvWCD
BGXWNsknSHXVrhBPNvogmYn0j7h+F0YCiUPhof7E/3RdzPcWy2Qn3frxi1RAh9MX
IaIHLbhLcMDTgWUus8RrTlZYV0u5blPYvtP3qECkchlvEssU0jSpCoYBM8vv8JtC
vIxDqYoNQ4cnzOj5EGhIi4/8ISixGm4ZkO8ATH+FRch7cgsI55fK7fWidDxxLGG+
l/UhdeNqqLa2//PLNNA/zDWmhUA/cG9C64+tAgMBAAGjggH3MIIB8zAdBgNVHQ4E
FgQU43RbiYMySsfYfaaokrXSG99bhEowHwYDVR0jBBgwFoAUq9TdtL+TLFAGtwS5
goQQF0rEEq0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg
UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ09DT0RJ
R0lUL3E5VGR0TC1UTEZBR3R3UzVnb1FRRjByRUVxMC5jcmwwYAYIKwYBBQUHAQEE
VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX
TklDQ0EvcTlUZHRMLVRMRkFHdHdTNWdvUVFGMHJFRXEwLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw
a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ09DT0RJR0lULzQzUmJpWU15U3Nm
WWZhYW9rclhTRzk5YmhFby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50
d25pYy50dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC
MAkDBwAkAV2gAAEwDQYJKoZIhvcNAQELBQADggEBAHzNPxvCXcV3cVmRfwpq2MBm
ghnnWlPC2InFYaXT8cmV8FdqvPwv6qs4FQp4fxfewTwQ6UGs3MWyIArssbIbxv+C
zumi0U6J1emznWFf2hX2wIIrUy6mVRRyRFEaB2xLX247ZphEtc7+fKBJEQ/St0RW
P3/undUtXGBxtLmT5WcQWmlp9IbYsC0jVao+jelO+tdhaYf4M334XVXWI4JnaQz4
uDIvnWz3EBqTEPDybA9a+ILNHiTKdT6J5FTowD+zp+0D4TnThU1D0rZyil199sI3
Yx39lu2QKfxnjouTgvhy+Y9xBQlSAWJz+BCR/1/K1r4Kbok/MVIrbbztLaPnZ+g=
-----END CERTIFICATE-----
Generated at Fri Apr 18 23:52:49 2025 by rpki-client