Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CATHDD/LOWTYmtIlvqvMo3Gf_KC0h_trjw.roa
File: LOWTYmtIlvqvMo3Gf_KC0h_trjw.roa (raw, json)
Hash identifier: dmC+KHLWSppr60ASyP/WRnFV1j16tWjqZBoIg8ETpro=
Subject key identifier: 2C:E5:93:62:6B:48:96:FA:AF:32:8D:C6:7F:F2:82:D2:1F:ED:AE:3C
Certificate issuer: /CN=43514F485EC01C9D0F311BEA61D93BD62C236992
Certificate serial: CC
Authority key identifier: 43:51:4F:48:5E:C0:1C:9D:0F:31:1B:EA:61:D9:3B:D6:2C:23:69:92
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Q1FPSF7AHJ0PMRvqYdk71iwjaZI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/LOWTYmtIlvqvMo3Gf_KC0h_trjw.roa
Signing time: Fri 22 Nov 2024 14:44:54 +0000
ROA not before: Fri 22 Nov 2024 14:44:54 +0000
ROA not after: Wed 15 Oct 2025 15:30:20 +0000
asID: 214030
IP address blocks: 2401:cd60::/40 maxlen: 40
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:05:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 204 (0xcc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43514F485EC01C9D0F311BEA61D93BD62C236992
Validity
Not Before: Nov 22 14:44:54 2024 GMT
Not After : Oct 15 15:30:20 2025 GMT
Subject: CN=2CE593626B4896FAAF328DC67FF282D21FEDAE3C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:8e:3b:08:2e:69:b9:dc:8b:33:fc:d8:13:b4:
3f:cb:5d:a3:52:c8:6f:41:4e:d7:16:d3:04:61:5b:
97:2e:7f:65:1a:13:a8:4f:9b:e9:ec:1f:e6:21:7a:
51:8a:2f:ff:ae:a4:6e:e9:f0:b2:02:f6:d4:01:c7:
c3:78:56:c5:d4:e6:23:33:84:db:ad:2b:50:12:70:
65:65:93:17:a1:10:13:04:49:ba:8b:6d:5b:f9:87:
e9:fa:fc:ef:54:80:35:5e:64:8e:2d:e1:84:ce:80:
50:8f:1f:29:ae:42:01:d5:67:42:dc:90:ae:36:d5:
7e:0f:7b:b8:28:bd:67:4a:62:22:1a:13:7b:8d:47:
57:cb:b1:94:9d:7f:08:fa:fa:28:df:cc:8e:10:8c:
3c:79:7f:60:52:4d:99:f6:97:85:78:d7:fb:f6:ee:
7d:78:4a:40:b8:3a:d4:66:1c:76:2e:ad:bd:f3:14:
fb:78:dd:ec:96:0e:38:46:ee:d6:3b:48:43:9d:2b:
a4:47:ec:88:5f:55:1e:4f:70:ce:1f:62:5c:5b:18:
14:a2:bd:c9:f9:ec:6e:96:f5:a1:8e:cc:aa:94:d3:
5b:d9:05:6e:15:a0:9c:23:83:73:a8:5c:2e:b6:c7:
c7:63:19:6d:4a:92:a7:fa:81:22:28:f6:8c:44:b7:
71:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:E5:93:62:6B:48:96:FA:AF:32:8D:C6:7F:F2:82:D2:1F:ED:AE:3C
X509v3 Authority Key Identifier:
keyid:43:51:4F:48:5E:C0:1C:9D:0F:31:1B:EA:61:D9:3B:D6:2C:23:69:92
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/Q1FPSF7AHJ0PMRvqYdk71iwjaZI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Q1FPSF7AHJ0PMRvqYdk71iwjaZI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/LOWTYmtIlvqvMo3Gf_KC0h_trjw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:cd60::/40
Signature Algorithm: sha256WithRSAEncryption
26:fc:96:bc:f3:18:d2:df:b3:9d:d3:c9:62:36:59:0b:c7:b1:
43:35:52:20:6a:e1:d7:37:65:5d:5e:a7:dc:7b:b0:39:ac:5f:
d5:88:38:a9:f4:4d:f3:b7:95:1d:4d:f0:a8:06:8f:0d:52:83:
55:a4:c6:3f:18:33:98:e7:52:81:36:cd:61:a3:f6:1c:84:4a:
83:32:cd:36:94:77:68:1d:0a:b8:68:52:2c:e6:41:9e:78:02:
ff:26:31:0b:cb:71:99:31:0e:8a:40:58:71:4d:94:ef:a9:1a:
ea:ea:c8:20:74:c1:08:66:f1:1f:03:bb:c1:87:c4:e6:90:5b:
a7:d3:6c:1e:49:07:60:9c:3e:c0:46:14:5a:66:d7:29:87:14:
61:b9:7d:ef:fd:0d:da:35:0b:ee:cf:97:46:89:45:8e:7f:af:
e6:4f:af:b4:d5:79:94:e8:fc:3d:35:6a:a0:e2:60:a3:46:03:
7e:2f:2a:d5:bc:f6:60:50:c5:de:5e:a1:48:a2:6d:5d:0e:3a:
0b:84:bb:6d:f8:f5:b0:6a:69:8a:38:db:cf:4a:44:65:f8:f4:
82:b2:1e:e9:a4:51:c1:d1:63:b6:4e:1b:81:2a:b8:96:32:5b:
a2:92:c9:fe:e9:9a:f1:f7:f2:f6:6a:65:94:59:a4:ab:6a:9c:
c7:61:ea:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 13:45:26 2025 by rpki-client