Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NUNLINE/u3l8RU-Q2itEtKqNoMgiONHM8O8.roa
File: u3l8RU-Q2itEtKqNoMgiONHM8O8.roa (raw, json)
Hash identifier: 5+Li/eZYlNYMSc+chibsO4uvemLvDl8a7zrV86OYGt0=
Subject key identifier: BB:79:7C:45:4F:90:DA:2B:44:B4:AA:8D:A0:C8:22:38:D1:CC:F0:EF
Certificate issuer: /CN=1C7073A6066C765842FDF07169E43518A0BB0235
Certificate serial: F1
Authority key identifier: 1C:70:73:A6:06:6C:76:58:42:FD:F0:71:69:E4:35:18:A0:BB:02:35
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HHBzpgZsdlhC_fBxaeQ1GKC7AjU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NUNLINE/u3l8RU-Q2itEtKqNoMgiONHM8O8.roa
Signing time: Sat 26 Oct 2024 15:48:56 +0000
ROA not before: Sat 26 Oct 2024 15:48:56 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 150755
IP address blocks: 2401:4e60::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:33:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 241 (0xf1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1C7073A6066C765842FDF07169E43518A0BB0235
Validity
Not Before: Oct 26 15:48:56 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=BB797C454F90DA2B44B4AA8DA0C82238D1CCF0EF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:c2:fb:e2:01:ea:ef:8a:4b:25:40:0f:d9:b8:
e0:98:cf:28:b1:f5:b1:6f:da:db:4b:b3:59:37:5e:
be:90:77:21:42:a8:6b:49:a2:31:cb:fc:3d:d7:75:
f9:b6:ee:0a:ae:ae:d3:52:2c:8f:84:72:d8:c2:73:
0a:6b:e8:66:e6:9e:06:ae:f9:59:04:77:6f:ae:f1:
ab:b8:15:6c:1d:e0:69:a0:fb:49:49:90:98:3d:d9:
7b:68:7a:c1:68:b1:e2:9f:a2:bd:dd:44:33:df:51:
fa:ce:f5:3f:4f:4b:d8:13:40:65:b3:19:44:2f:ba:
8e:28:8c:b5:f1:a4:75:ab:9c:f4:eb:9c:d2:72:63:
c6:36:78:a0:64:92:41:07:2e:8d:d1:e7:a7:8a:d3:
62:56:47:b1:d4:41:82:b6:bf:c6:62:08:f9:41:f0:
92:ac:ec:96:5d:61:6e:c3:d9:b3:43:da:78:bb:44:
aa:30:7d:a6:8b:e9:a1:8d:b7:6c:65:ef:21:80:d2:
f4:83:51:62:5c:54:23:3d:ce:ba:ae:b7:7c:ba:53:
0a:15:58:59:8a:87:4e:b0:20:87:72:b3:77:97:b3:
e3:28:74:46:b9:8f:f4:7f:99:20:20:05:05:18:c6:
8c:8e:0e:f1:69:da:b2:53:da:cc:21:f0:91:cf:cf:
33:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:79:7C:45:4F:90:DA:2B:44:B4:AA:8D:A0:C8:22:38:D1:CC:F0:EF
X509v3 Authority Key Identifier:
keyid:1C:70:73:A6:06:6C:76:58:42:FD:F0:71:69:E4:35:18:A0:BB:02:35
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NUNLINE/HHBzpgZsdlhC_fBxaeQ1GKC7AjU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HHBzpgZsdlhC_fBxaeQ1GKC7AjU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NUNLINE/u3l8RU-Q2itEtKqNoMgiONHM8O8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:4e60::/32
Signature Algorithm: sha256WithRSAEncryption
a1:03:0b:41:e5:55:21:03:bd:ac:27:41:10:e6:55:60:62:af:
80:4e:43:63:33:b5:21:64:71:f0:64:22:60:72:49:29:72:95:
53:8a:19:ce:ea:05:40:f7:1f:d1:1e:13:51:c1:a9:52:4b:95:
e2:52:c4:96:4d:d3:95:60:11:0f:c2:b8:bd:92:4d:69:dc:58:
9d:e5:ee:8c:19:b5:59:d5:70:cd:b9:0b:90:88:8f:fa:be:73:
f9:1a:56:4b:2f:e8:f2:15:96:e3:21:aa:43:43:1a:0a:37:f1:
f4:7f:b4:96:de:db:ea:b5:42:60:ae:23:a1:98:81:a2:74:6e:
6f:36:a6:48:8d:5a:a5:3d:be:f9:5f:5e:21:7f:2b:90:e8:55:
57:6b:1a:0e:13:43:35:89:43:e4:31:5d:39:5c:be:b9:7e:89:
64:74:45:6b:60:b1:06:50:6c:8b:19:73:c6:63:83:4a:26:73:
98:e1:31:5a:04:d2:9b:ed:e8:b9:c2:b0:2d:9c:5a:de:93:85:
63:d1:f5:3e:9b:5f:48:a9:55:ea:ec:52:62:00:a8:d5:be:5a:
1b:68:98:aa:6c:4d:71:ea:c9:66:66:e8:37:8b:a4:10:ee:5b:
68:98:aa:1d:03:b1:f6:40:8a:1e:20:a6:9a:89:e7:38:94:9a:
6a:d3:4e:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 15:13:26 2025 by rpki-client