Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/9ET1dm4MyI3guxxxm6poMbY9Esw.roa
File: 9ET1dm4MyI3guxxxm6poMbY9Esw.roa (raw, json)
Hash identifier: 4PxcMmUEJBDbZGcrfgLU7yejPS35oKwVgoTJlLTRJCA=
Subject key identifier: F4:44:F5:76:6E:0C:C8:8D:E0:BB:1C:71:9B:AA:68:31:B6:3D:12:CC
Certificate issuer: /CN=57A994BD60555145CB6452DC6A980FC851136BDA
Certificate serial: 0557
Authority key identifier: 57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/9ET1dm4MyI3guxxxm6poMbY9Esw.roa
Signing time: Mon 26 Aug 2024 05:09:30 +0000
ROA not before: Mon 26 Aug 2024 05:09:30 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 51044
IP address blocks: 2406:8dc0:2500::/40 maxlen: 48
Validation: Failed, certificate revoked on Fri 13 Sep 2024 09:05:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1367 (0x557)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A994BD60555145CB6452DC6A980FC851136BDA
Validity
Not Before: Aug 26 05:09:30 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F444F5766E0CC88DE0BB1C719BAA6831B63D12CC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:0b:2a:c3:a0:91:07:8c:b4:fa:4d:99:e0:99:
f1:86:8b:e0:8c:a0:89:85:a0:92:c8:de:5e:ce:31:
83:38:29:3b:ca:2d:47:46:c4:b2:48:e1:e5:d8:6f:
de:3e:23:cf:b9:96:ee:89:fa:8d:6e:f5:ce:3f:fc:
7a:38:f7:35:52:91:67:97:27:dc:3d:7a:24:ee:91:
6c:80:f7:9a:34:b3:c7:bf:31:d9:6d:ec:c0:27:47:
ca:46:b4:65:9b:4f:4f:67:cf:da:b0:0f:1f:70:44:
b4:fb:de:8c:ee:07:53:71:69:0b:49:44:46:64:4d:
9f:f4:73:51:ef:93:27:10:cc:f7:99:74:86:92:c8:
7d:20:01:4c:cd:d7:21:32:d6:47:38:fb:a8:06:0b:
92:27:11:10:95:b7:b5:9a:10:52:f1:e2:77:39:d9:
22:53:f6:54:a8:c9:05:49:c8:d9:01:7a:43:64:9f:
db:82:82:5f:62:62:d0:58:5e:39:14:47:0f:69:22:
cc:7c:7f:2e:19:80:65:f4:6b:59:89:7b:6e:58:62:
d9:a5:3c:15:27:2b:49:13:07:81:66:82:ee:26:3b:
a2:e8:ac:05:3a:8f:21:32:c5:e1:3e:02:da:34:9b:
5f:b8:bd:c0:ef:10:c1:f4:9e:06:0c:f0:37:ce:73:
0c:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:44:F5:76:6E:0C:C8:8D:E0:BB:1C:71:9B:AA:68:31:B6:3D:12:CC
X509v3 Authority Key Identifier:
keyid:57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/9ET1dm4MyI3guxxxm6poMbY9Esw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:8dc0:2500::/40
Signature Algorithm: sha256WithRSAEncryption
9c:e9:2f:2d:9a:34:ea:c7:9a:11:5c:5d:61:c7:20:b6:56:5f:
22:e7:2a:28:bb:62:bb:f3:41:60:3a:0d:f8:f2:30:78:eb:59:
31:66:1e:ad:87:ce:c7:90:af:b9:e2:7a:a7:2b:d2:4f:32:9a:
dc:d6:50:fc:52:73:31:7d:45:65:ab:e1:16:87:c8:5b:81:b1:
92:4c:01:77:6c:a4:7e:57:67:d1:9a:62:38:09:e4:44:8d:76:
78:fa:93:55:d8:ae:7e:42:c2:f1:c5:65:a6:a0:8f:77:c5:12:
16:cd:03:53:45:28:d5:be:47:c9:7a:a2:5c:87:aa:a9:13:75:
af:cc:1e:b5:14:86:db:47:96:b9:65:54:66:08:05:95:ea:d1:
56:d6:9d:3c:ec:b8:72:72:6f:ba:21:c5:a4:5b:e8:e0:97:60:
60:59:6b:38:d6:0d:08:70:4b:79:1e:46:eb:66:48:c4:a4:cb:
7c:85:85:be:7a:f9:29:a8:85:94:03:05:2c:f8:81:df:49:7d:
f7:47:ff:61:ba:cb:19:ab:74:82:21:ad:9f:9b:a3:0a:a2:b9:
43:e2:4e:18:c1:db:b9:e2:69:a6:31:39:a2:85:fa:08:78:d9:
13:89:3e:4a:20:2a:9e:8f:a9:ed:4a:74:69:28:9a:db:ad:e8:
d9:84:91:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:57:51 2025 by rpki-client