Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/RkhRQiXgHWGCdSEpFqoe45WGMtk.roa
File: RkhRQiXgHWGCdSEpFqoe45WGMtk.roa (raw, json)
Hash identifier: rW2A95AWu/ZjEwN11yi7vxY8p8YaooZPUQhUgfeX2DQ=
Subject key identifier: 46:48:51:42:25:E0:1D:61:82:75:21:29:16:AA:1E:E3:95:86:32:D9
Certificate issuer: /CN=A5A6AC38EE68C364CF79188F06427E9C766D4C1A
Certificate serial: 01B5
Authority key identifier: A5:A6:AC:38:EE:68:C3:64:CF:79:18:8F:06:42:7E:9C:76:6D:4C:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/paasOO5ow2TPeRiPBkJ-nHZtTBo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/RkhRQiXgHWGCdSEpFqoe45WGMtk.roa
Signing time: Mon 26 Aug 2024 05:09:56 +0000
ROA not before: Mon 26 Aug 2024 05:09:56 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 134823
IP address blocks: 2400:c9e0::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:28:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 437 (0x1b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A5A6AC38EE68C364CF79188F06427E9C766D4C1A
Validity
Not Before: Aug 26 05:09:56 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=4648514225E01D618275212916AA1EE3958632D9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:d8:17:9f:c5:78:3a:f0:42:d6:25:6d:50:a6:
68:44:d2:61:cb:ea:9d:e6:94:4e:db:7b:42:58:9d:
fd:de:62:af:0c:55:f0:e7:cc:f6:d6:e0:88:9d:64:
33:68:5a:bf:5d:de:31:e1:2b:f0:fe:6f:7c:1f:59:
d1:38:f8:d1:c8:7a:6b:1a:5e:b6:bd:d7:15:32:ad:
42:71:1a:72:e5:47:c9:41:7b:a0:fe:d1:57:b3:cf:
a7:5b:af:a7:b1:6f:4e:07:f8:ae:7d:53:ec:5c:aa:
61:cc:01:c4:2d:34:b0:c3:31:d8:de:0f:1b:13:df:
77:05:c6:cb:fa:6e:b1:80:d9:89:08:3a:f0:ec:0c:
3d:64:a6:63:ab:0a:f1:4f:de:7e:c5:52:36:62:73:
4e:39:5c:c5:4d:c9:a8:68:01:6a:f9:1b:9e:a9:2a:
80:06:21:79:4f:21:2d:c6:1e:b2:72:38:dd:27:d2:
36:46:cb:4d:f5:57:f3:29:d3:44:94:a9:2c:41:2f:
62:34:ef:a2:17:30:6a:bb:b8:34:9b:df:f7:36:d1:
c4:c6:31:db:53:d3:0c:6e:d1:70:3d:e5:ae:5d:71:
57:79:41:ff:74:af:46:b9:1f:84:0c:68:ea:28:bb:
90:2c:33:66:75:fa:15:24:6f:22:28:f6:e2:db:fe:
6a:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:48:51:42:25:E0:1D:61:82:75:21:29:16:AA:1E:E3:95:86:32:D9
X509v3 Authority Key Identifier:
keyid:A5:A6:AC:38:EE:68:C3:64:CF:79:18:8F:06:42:7E:9C:76:6D:4C:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/paasOO5ow2TPeRiPBkJ-nHZtTBo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/paasOO5ow2TPeRiPBkJ-nHZtTBo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/RkhRQiXgHWGCdSEpFqoe45WGMtk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:c9e0::/32
Signature Algorithm: sha256WithRSAEncryption
26:3d:80:53:c0:83:85:2a:ce:a8:3a:41:5f:16:63:7a:09:98:
84:f6:b0:75:69:bd:e3:4f:40:2c:53:20:bc:9d:7c:b9:fa:09:
cb:89:8a:5a:e1:d6:f5:e2:7e:31:70:e9:0c:d6:bb:9c:5d:88:
9f:d4:fa:1f:92:f1:92:7c:e3:09:83:cb:60:28:bc:81:e4:4a:
85:2d:69:ed:6f:98:ba:fe:af:dd:3d:7c:cb:52:34:32:a4:99:
49:ed:fd:8a:ef:e5:bb:46:da:dc:1b:99:5a:be:49:cb:ab:4f:
2a:13:53:30:91:7d:4e:15:40:f3:3f:62:47:44:0f:04:22:fd:
76:22:0a:7a:de:63:75:99:e6:e5:b8:59:db:cc:78:da:84:0f:
a1:14:c2:d3:61:c0:3e:04:e6:84:6f:4b:99:41:2e:73:0b:0b:
c9:71:43:b0:15:db:7b:a3:a3:ef:77:9e:55:83:d0:83:37:22:
48:db:1c:0b:95:28:b7:92:ec:4f:ce:a2:94:fd:b6:91:de:80:
18:5e:4c:7e:2c:4b:92:e0:ce:23:b1:3f:24:50:83:05:d2:52:
2b:a3:96:3c:37:31:fe:71:58:0d:15:ef:66:65:d4:a3:11:7d:
bf:bf:7d:74:3f:8b:93:10:93:d5:06:91:d7:ae:fa:eb:cc:9b:
c5:c2:79:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 01:31:31 2025 by rpki-client