Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/SKuEd0awYury_ccJM1eoG-gLrcA.roa
File: SKuEd0awYury_ccJM1eoG-gLrcA.roa (raw, json)
Hash identifier: iKt4GclS8lwRMLSRJfATAjOGngIbtnIL4wic45TAbGQ=
Subject key identifier: 48:AB:84:77:46:B0:62:EA:F2:FD:C7:09:33:57:A8:1B:E8:0B:AD:C0
Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Certificate serial: 0C93
Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/SKuEd0awYury_ccJM1eoG-gLrcA.roa
Signing time: Mon 26 Aug 2024 05:17:12 +0000
ROA not before: Mon 26 Aug 2024 05:17:12 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4782
IP address blocks: 2001:4420::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:08:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3219 (0xc93)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Validity
Not Before: Aug 26 05:17:12 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=48AB847746B062EAF2FDC7093357A81BE80BADC0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:dd:6e:8e:c4:0c:1e:d4:45:c1:c5:13:75:35:
b1:4b:73:b9:f8:5e:86:22:03:f9:87:f2:ac:8f:7a:
57:39:b0:55:56:99:44:8e:db:aa:3d:fa:a4:ad:64:
13:86:ea:cf:33:34:62:c1:7a:b4:3d:6c:b0:1e:81:
f2:dc:ee:19:52:84:03:16:8d:c6:33:3d:15:d7:03:
5c:04:7c:cc:ac:72:a7:c3:f1:08:c1:f9:f0:a5:46:
44:4f:a5:6c:17:23:c1:21:b1:66:cd:f2:e5:9c:3c:
a8:0f:b9:e0:ae:d6:9a:c8:e8:56:7b:9b:da:29:c2:
15:97:1f:c6:68:17:ae:52:03:b9:5b:f0:63:d3:6b:
5c:78:09:eb:c6:80:f0:0f:2b:95:9c:32:c1:62:76:
41:ba:fc:f4:87:c0:a2:94:38:03:e4:e5:c0:7d:cf:
f2:6c:a8:04:c7:78:b0:d8:8e:ef:85:4f:dc:52:fa:
fd:58:97:bf:d6:15:81:15:88:ef:87:12:39:27:92:
4e:0a:fb:5a:18:82:8d:de:d1:ad:b3:cf:35:78:80:
ff:33:03:9c:bd:fb:48:64:3e:48:c8:07:66:c5:14:
bc:94:48:77:ee:22:0a:93:90:63:8f:50:91:d1:07:
71:15:5d:ec:05:fd:5f:61:51:de:d2:eb:e4:68:92:
11:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:AB:84:77:46:B0:62:EA:F2:FD:C7:09:33:57:A8:1B:E8:0B:AD:C0
X509v3 Authority Key Identifier:
keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/SKuEd0awYury_ccJM1eoG-gLrcA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:4420::/32
Signature Algorithm: sha256WithRSAEncryption
42:de:38:64:7a:7e:27:c2:75:e3:0a:68:9c:44:49:7c:b9:93:
1e:69:01:ff:ee:30:f6:7b:81:0b:26:6b:93:38:4a:7d:f4:0d:
df:b7:28:f9:5a:70:3e:15:c8:3b:74:ba:4f:c9:b7:cb:ca:d9:
f2:56:7a:8b:68:d9:76:58:c3:e9:b0:ea:b6:f7:ec:e1:04:be:
16:3e:e1:9d:43:1b:e9:d5:96:83:d9:26:fe:59:c9:ad:f8:49:
d4:67:e2:14:61:ec:b9:9c:a1:9d:bb:47:be:d5:42:49:f4:84:
19:fd:65:c3:9f:7b:67:c3:44:f0:4d:3d:d4:38:da:05:81:0a:
f6:ef:66:9c:6b:3d:57:b9:29:5b:2d:34:de:2c:85:01:42:2a:
3d:d6:f3:2f:9f:33:37:c0:b1:74:8b:f3:37:fd:e2:98:3f:75:
d4:0b:2d:29:13:3b:c3:3d:bc:3e:86:ff:5d:ba:cd:0d:e2:70:
3c:be:48:b9:26:ae:b9:98:eb:89:6b:97:15:81:92:aa:3b:18:
f7:95:65:7b:b5:17:08:4c:f7:16:4f:80:46:f5:78:05:10:2b:
73:30:35:57:6a:11:5a:4a:46:40:34:5d:cd:88:b7:a2:0e:cc:
e2:12:11:76:22:e7:b6:21:b8:88:e8:b1:10:f0:b7:de:23:9a:
2a:75:dc:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 23:16:51 2025 by rpki-client