Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ISHISH/-fO-p5gSreah9V1swrogvksE-i8.roa
File: -fO-p5gSreah9V1swrogvksE-i8.roa (raw, json)
Hash identifier: Aud5t9zVsspypXxgfNAupu1xFXWwQVT3sJyYYvvGOqA=
Subject key identifier: F9:F3:BE:A7:98:12:AD:E6:A1:F5:5D:6C:C2:BA:20:BE:4B:04:FA:2F
Certificate issuer: /CN=7E17D923AA0BC6B0A08B5A187BEE9CADE8D50EAF
Certificate serial: 027D
Authority key identifier: 7E:17:D9:23:AA:0B:C6:B0:A0:8B:5A:18:7B:EE:9C:AD:E8:D5:0E:AF
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/fhfZI6oLxrCgi1oYe-6crejVDq8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/-fO-p5gSreah9V1swrogvksE-i8.roa
Signing time: Mon 26 Aug 2024 05:19:07 +0000
ROA not before: Mon 26 Aug 2024 05:19:07 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38047
IP address blocks: 2400:5ea0::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:57:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 637 (0x27d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7E17D923AA0BC6B0A08B5A187BEE9CADE8D50EAF
Validity
Not Before: Aug 26 05:19:07 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F9F3BEA79812ADE6A1F55D6CC2BA20BE4B04FA2F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:e8:ac:01:55:a4:db:32:ed:f5:bd:fd:4e:ec:
b3:ae:31:b9:aa:69:79:49:ae:dd:66:e0:97:8c:f0:
a9:a4:f8:36:e0:e7:6d:3a:37:81:14:f7:5e:20:00:
e9:99:65:97:19:5f:96:4b:6a:89:86:d9:b6:07:27:
28:c4:20:29:f0:22:6a:fb:bd:b2:53:53:23:83:50:
6a:f5:fa:ad:fd:70:45:7f:76:5e:b7:e2:ba:9d:3b:
6a:c0:26:70:32:7e:a5:98:57:c5:48:5e:eb:be:ea:
e1:3d:91:22:bf:a2:b8:49:bb:3a:9d:0c:8d:fb:1a:
ce:ec:88:9e:e9:67:b3:b5:4c:b5:c6:39:45:65:b5:
51:06:a8:b7:2b:9f:94:b6:a4:83:7a:5c:7c:81:10:
b7:b5:93:cc:ad:bb:df:33:63:52:f8:5b:ea:22:f6:
bc:2c:6f:1e:fe:63:a4:97:cd:5e:9d:9b:91:c2:73:
2a:f5:25:2a:ef:e2:05:92:a4:21:f7:bb:49:00:81:
64:2a:5b:86:bf:fa:2b:f0:d0:b2:39:41:f0:f7:9a:
51:26:35:2b:ba:74:b9:5d:e1:81:fb:f9:09:c3:d8:
a5:25:da:dd:0d:57:15:3b:c2:67:e7:f9:13:d4:ef:
59:68:8e:5d:3e:a6:ce:8e:74:ea:44:eb:48:99:24:
fa:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:F3:BE:A7:98:12:AD:E6:A1:F5:5D:6C:C2:BA:20:BE:4B:04:FA:2F
X509v3 Authority Key Identifier:
keyid:7E:17:D9:23:AA:0B:C6:B0:A0:8B:5A:18:7B:EE:9C:AD:E8:D5:0E:AF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/fhfZI6oLxrCgi1oYe-6crejVDq8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/-fO-p5gSreah9V1swrogvksE-i8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:5ea0::/32
Signature Algorithm: sha256WithRSAEncryption
62:3e:c3:2e:d1:d1:6b:74:d4:e7:3b:9b:b4:c5:d6:3b:10:5c:
48:aa:51:ac:54:b4:93:95:20:4f:29:b4:91:7e:52:5a:0c:04:
a8:a4:21:58:4e:3f:3b:da:0e:01:a1:b8:75:98:70:ce:bf:eb:
fa:96:b9:84:a2:f2:8d:e4:15:25:d2:d3:f3:4f:86:d3:c4:78:
4f:c1:62:98:f9:01:d4:1c:39:6c:4e:40:d6:41:0c:be:9e:b0:
03:02:3f:2c:dd:2f:24:63:15:5a:09:84:17:d2:b2:65:e6:22:
47:c2:ba:e7:4d:71:f2:07:bd:79:4b:48:06:a8:6e:53:ac:ca:
5c:53:a3:2d:66:ce:2e:3c:88:2e:ff:56:8e:7f:ca:06:27:8b:
bb:53:73:f8:47:43:47:57:05:4e:3b:0f:b7:6e:20:28:d4:b2:
ec:e9:5c:b9:53:27:8b:29:d0:74:7b:21:76:fe:66:35:38:4f:
92:95:6b:6f:d8:2a:bc:66:93:6a:3b:4d:00:fc:6f:90:34:cd:
45:3c:3e:a8:d4:a9:c5:65:2a:c6:3c:37:1d:45:32:12:7d:f7:
39:85:8e:97:06:03:05:31:41:42:7e:a7:a1:df:16:b8:ca:04:
0c:3d:00:bc:e3:59:b1:a8:76:62:ec:c9:c8:1f:94:bc:06:97:
d9:c0:63:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 09:07:18 2025 by rpki-client