Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/UaVccXgfRCh9KUcmP9CyUhPazKU.roa
File: UaVccXgfRCh9KUcmP9CyUhPazKU.roa (raw, json)
Hash identifier: 3gT+uk3iEn6X8pDNWkBs4NzZh9owXdRbHRzcvos+QHk=
Subject key identifier: 51:A5:5C:71:78:1F:44:28:7D:29:47:26:3F:D0:B2:52:13:DA:CC:A5
Certificate issuer: /CN=ABD4DDB4BF932C5006B704B9828410174AC412AD
Certificate serial: 010D
Authority key identifier: AB:D4:DD:B4:BF:93:2C:50:06:B7:04:B9:82:84:10:17:4A:C4:12:AD
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q9TdtL-TLFAGtwS5goQQF0rEEq0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/UaVccXgfRCh9KUcmP9CyUhPazKU.roa
Signing time: Thu 19 Dec 2024 15:50:49 +0000
ROA not before: Thu 19 Dec 2024 15:50:49 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 150766
IP address blocks: 2401:5da0:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:23:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 269 (0x10d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABD4DDB4BF932C5006B704B9828410174AC412AD
Validity
Not Before: Dec 19 15:50:49 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=51A55C71781F44287D2947263FD0B25213DACCA5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:c1:b6:e8:85:0f:49:6f:1a:24:65:2f:62:b9:
b8:fc:02:08:df:dd:4b:c2:dd:06:b7:51:6c:c9:18:
f2:33:b4:dd:0f:6f:87:58:b2:74:38:cd:4c:a0:19:
7d:27:d2:c0:5a:fd:15:ef:33:5d:46:4d:b2:b4:fe:
17:b1:4d:af:f2:bb:27:db:30:9f:20:72:fb:3f:38:
8a:3e:c5:2b:96:b4:0b:7c:ba:61:e3:14:45:ee:42:
ec:63:ed:a3:70:d3:1c:6d:74:73:d1:1d:6d:35:ca:
20:29:d0:35:80:34:c5:99:82:85:69:69:32:db:ae:
07:ff:9e:e8:71:db:e0:fb:42:84:07:d9:38:78:a4:
04:61:97:8a:96:1b:d4:2e:f9:31:2f:13:8a:89:49:
bd:dc:95:2c:85:53:20:fe:36:3b:27:04:6f:92:18:
26:0e:5e:32:e8:db:8c:8f:a4:0c:32:b5:b6:a9:85:
99:99:c1:a0:d7:cd:76:91:c3:46:3d:fe:e1:e3:12:
72:8c:3b:8a:f1:e0:11:76:2d:f6:7b:56:aa:ad:09:
5d:51:9f:7e:d1:ff:90:4e:9e:1b:11:cc:a1:6d:e4:
42:2f:a1:39:06:de:9f:6b:7b:52:6f:88:01:2b:03:
2a:01:79:40:06:e1:b9:d1:02:32:07:7a:13:51:5a:
31:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:A5:5C:71:78:1F:44:28:7D:29:47:26:3F:D0:B2:52:13:DA:CC:A5
X509v3 Authority Key Identifier:
keyid:AB:D4:DD:B4:BF:93:2C:50:06:B7:04:B9:82:84:10:17:4A:C4:12:AD
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/q9TdtL-TLFAGtwS5goQQF0rEEq0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q9TdtL-TLFAGtwS5goQQF0rEEq0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/UaVccXgfRCh9KUcmP9CyUhPazKU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:5da0:2::/48
Signature Algorithm: sha256WithRSAEncryption
4a:65:78:00:e6:82:ec:24:35:40:98:a1:ff:f0:6e:09:5a:15:
63:d7:64:dd:c1:0d:f4:5c:1c:f6:15:cb:f6:12:2f:4a:f9:f5:
92:13:d7:8e:6f:a5:96:82:04:ea:1d:7d:0b:f0:95:b8:54:ad:
cd:20:fa:29:72:2c:2b:43:eb:16:94:7e:f4:8a:3c:7e:99:d5:
74:8d:73:dc:eb:6a:52:0f:bf:18:8e:79:41:de:bd:21:56:a0:
94:3f:0a:f0:44:91:1e:80:e5:bc:69:90:9a:65:40:be:d8:3b:
ec:48:2b:b0:3f:e5:8e:ee:0b:1a:0c:cf:91:3c:da:4b:cd:87:
40:c4:30:1b:00:82:2d:0f:e4:67:93:71:37:e2:3d:3c:63:9a:
5c:6c:32:44:42:a4:cb:50:cb:e3:72:2f:dc:0b:67:5b:2e:29:
4f:50:b1:71:ad:c8:16:f3:23:a7:0f:da:37:94:e8:3c:ec:16:
f2:c7:83:a1:47:bd:86:23:a8:78:4d:da:5c:8c:fe:49:32:67:
87:47:7a:fa:88:33:e0:74:e7:3e:48:fb:57:43:7b:81:c7:2b:
16:e9:ca:e2:24:19:73:26:84:a8:57:06:82:d0:01:3d:ec:79:
34:a3:c8:34:ad:2e:61:5e:52:8c:a0:7b:e9:e9:a7:94:10:f5:
75:8f:83:eb
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 18 23:41:33 2025 by rpki-client