Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HST/r8p0wsXPYuUwYpUSCGH_GDRj4oE.roa
File: r8p0wsXPYuUwYpUSCGH_GDRj4oE.roa (raw, json)
Hash identifier: q2z52afLq/exul3/oqFzlT+ZSuHqcuIOuiqWD+OeGao=
Subject key identifier: AF:CA:74:C2:C5:CF:62:E5:30:62:95:12:08:61:FF:18:34:63:E2:81
Certificate issuer: /CN=833D5BF79B45C730ED141CB539A508D01AA30908
Certificate serial: 0986
Authority key identifier: 83:3D:5B:F7:9B:45:C7:30:ED:14:1C:B5:39:A5:08:D0:1A:A3:09:08
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gz1b95tFxzDtFBy1OaUI0BqjCQg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/r8p0wsXPYuUwYpUSCGH_GDRj4oE.roa
Signing time: Mon 26 Aug 2024 05:18:43 +0000
ROA not before: Mon 26 Aug 2024 05:18:43 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131666
IP address blocks: 2405:6440::/32 maxlen: 38
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:16:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2438 (0x986)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833D5BF79B45C730ED141CB539A508D01AA30908
Validity
Not Before: Aug 26 05:18:43 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=AFCA74C2C5CF62E5306295120861FF183463E281
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:e2:81:9e:49:c2:f4:41:0a:32:67:7f:ee:12:
b3:33:93:f3:c6:d6:3e:fb:73:ae:53:1c:d8:5c:44:
28:57:f4:94:55:a0:39:e5:e2:7e:b1:8c:b3:35:7b:
0c:48:4c:1b:75:93:ea:22:ab:d3:44:a2:58:c3:60:
69:b3:ad:ec:7f:66:0d:d0:6e:7d:af:2e:2c:bd:74:
0b:20:ec:46:90:ad:f7:40:e9:ca:bf:22:4e:7e:b3:
44:d9:78:f6:07:98:67:83:6c:86:65:30:df:d9:d5:
a0:ba:0d:a5:f7:bb:40:ae:5b:5b:2d:b8:a0:8e:63:
be:07:66:ec:1e:5a:f2:ed:4e:e9:d3:ba:bc:b5:01:
f9:02:6e:48:c0:05:f1:0b:14:b4:b8:81:3e:eb:f4:
3e:bc:c9:8c:e1:65:ee:5c:17:13:b7:31:b8:39:58:
8b:f3:93:96:aa:78:4c:57:e7:ee:96:9b:91:85:e4:
a1:80:9e:2b:84:11:ba:9a:a4:47:af:d7:6b:5e:57:
0f:cb:39:b6:d0:40:41:f9:40:7b:19:db:0b:e3:11:
cd:eb:fe:43:ef:65:03:d7:d4:a5:41:de:8e:ec:21:
a8:58:64:89:c4:b5:26:96:0b:99:f4:8a:3e:94:7e:
78:52:54:af:16:eb:87:6f:bb:fd:75:9e:e4:0d:ca:
54:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:CA:74:C2:C5:CF:62:E5:30:62:95:12:08:61:FF:18:34:63:E2:81
X509v3 Authority Key Identifier:
keyid:83:3D:5B:F7:9B:45:C7:30:ED:14:1C:B5:39:A5:08:D0:1A:A3:09:08
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/gz1b95tFxzDtFBy1OaUI0BqjCQg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gz1b95tFxzDtFBy1OaUI0BqjCQg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/r8p0wsXPYuUwYpUSCGH_GDRj4oE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:6440::/32
Signature Algorithm: sha256WithRSAEncryption
60:eb:d0:00:89:55:13:a7:6f:35:42:77:48:64:1b:54:bb:27:
78:b3:36:db:6a:d6:c8:ac:42:35:2b:fe:2a:ae:b7:51:17:59:
05:a1:d4:1c:d2:67:a9:d4:82:bd:06:ec:73:37:50:53:56:db:
b2:57:af:72:dd:ab:35:d8:86:1a:d8:ec:7f:9d:59:93:6f:3a:
0c:38:8a:20:6d:c1:fc:f8:3c:24:80:9e:e2:8a:29:ae:4d:4a:
e0:20:67:7b:7d:ee:9c:67:98:27:05:91:de:9a:85:11:2b:25:
cb:39:74:07:1b:8e:16:e8:23:b1:fa:f2:6e:db:c3:8f:11:60:
7d:01:19:57:c7:1a:6f:e1:4e:52:9a:d3:a4:a0:5f:c7:5c:d2:
02:bf:58:b8:e6:52:4c:37:df:8d:14:5f:f6:ae:a3:4f:f5:95:
65:86:a4:ad:e2:d1:40:26:fc:1d:f9:bd:7a:d7:64:dd:36:e6:
db:a2:57:6f:6e:2e:39:04:6c:79:3e:3a:43:66:ce:73:be:fd:
28:51:d4:e5:04:54:2f:a7:ba:81:42:aa:0a:33:1b:57:c1:e5:
75:2a:cc:71:c1:d8:7c:4c:49:3d:18:bf:8b:30:6f:53:55:a2:
7c:c5:d3:11:ff:63:9d:0f:00:6d:0c:07:1b:13:c2:10:29:04:
a7:81:71:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 23:50:45 2025 by rpki-client