Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CATHDD/Oyi6F0cHtktisL-SUOeFaxiGqRc.roa
File: Oyi6F0cHtktisL-SUOeFaxiGqRc.roa (raw, json)
Hash identifier: cUpf37RbpPYyeU1GWQVjjts5L6dEZ2xA9Kg+7yBi5IY=
Subject key identifier: 3B:28:BA:17:47:07:B6:4B:62:B0:BF:92:50:E7:85:6B:18:86:A9:17
Certificate issuer: /CN=43514F485EC01C9D0F311BEA61D93BD62C236992
Certificate serial: 03
Authority key identifier: 43:51:4F:48:5E:C0:1C:9D:0F:31:1B:EA:61:D9:3B:D6:2C:23:69:92
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Q1FPSF7AHJ0PMRvqYdk71iwjaZI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/Oyi6F0cHtktisL-SUOeFaxiGqRc.roa
Signing time: Thu 17 Oct 2024 06:21:11 +0000
ROA not before: Thu 17 Oct 2024 06:21:11 +0000
ROA not after: Wed 15 Oct 2025 15:30:20 +0000
asID: 150766
IP address blocks: 2401:cd60::/32 maxlen: 32
Validation: Failed, certificate revoked on Sun 29 Dec 2024 16:19:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43514F485EC01C9D0F311BEA61D93BD62C236992
Validity
Not Before: Oct 17 06:21:11 2024 GMT
Not After : Oct 15 15:30:20 2025 GMT
Subject: CN=3B28BA174707B64B62B0BF9250E7856B1886A917
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:60:3c:8e:2a:df:45:2c:74:ec:53:bb:e5:8e:
41:3f:6b:3c:62:a9:bc:3b:6b:26:0b:c7:83:81:b6:
dd:bf:11:c3:df:cf:39:34:b6:99:3f:1c:48:89:4d:
fe:96:6e:02:19:bc:ce:3a:46:24:a3:4e:3a:91:81:
cc:74:a3:6d:45:72:56:d1:37:54:a8:6c:bc:26:18:
54:bc:93:47:38:c9:45:1b:52:d4:f4:12:fb:2b:5b:
46:51:63:df:f6:80:96:05:48:6d:7a:4b:fa:a6:e8:
c0:37:77:6e:c3:59:4e:68:b1:9e:cd:c7:ff:a8:b1:
ad:d0:09:2b:a8:ce:9f:56:ec:91:ee:58:86:35:47:
19:8e:79:81:27:e0:07:b8:34:05:69:ca:8b:fd:86:
fb:06:04:87:4a:12:db:24:f8:be:b9:dc:f2:8c:8d:
08:47:d5:14:fa:9d:87:c3:67:7b:d3:bd:27:b2:ac:
0d:dc:24:74:a0:ae:76:25:8f:f1:10:99:88:ed:11:
13:83:3e:e4:73:08:4b:9c:2b:e7:dd:fb:30:06:e1:
04:ef:32:a8:f5:21:66:03:f0:d4:96:5a:7c:b9:00:
07:2c:61:7f:fc:cc:ea:d4:8a:be:de:5e:78:2a:bf:
27:a8:ed:08:1f:4a:65:d3:2d:5f:62:9f:83:10:e2:
60:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:28:BA:17:47:07:B6:4B:62:B0:BF:92:50:E7:85:6B:18:86:A9:17
X509v3 Authority Key Identifier:
keyid:43:51:4F:48:5E:C0:1C:9D:0F:31:1B:EA:61:D9:3B:D6:2C:23:69:92
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/Q1FPSF7AHJ0PMRvqYdk71iwjaZI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Q1FPSF7AHJ0PMRvqYdk71iwjaZI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/Oyi6F0cHtktisL-SUOeFaxiGqRc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:cd60::/32
Signature Algorithm: sha256WithRSAEncryption
70:1f:b4:b1:28:a4:dd:4e:75:7e:58:05:b2:e6:a5:29:d0:fb:
07:bc:d5:ae:6c:7e:c0:45:6a:45:27:96:34:7c:72:c0:32:72:
8d:41:10:8f:c1:18:18:80:dc:56:cc:93:8e:15:25:80:eb:a0:
bd:81:49:11:5e:35:d0:9d:db:38:e3:62:4e:07:c5:ad:ad:77:
5d:b6:03:85:90:7b:c3:1a:90:77:7a:6c:64:09:7e:7e:ed:5b:
27:99:d8:23:21:1e:4b:55:c6:c4:da:f7:85:64:a0:91:1f:10:
b2:14:70:ab:0c:5c:3e:c5:57:c5:0b:c3:67:94:7f:e9:bc:b3:
f3:a1:d3:62:1c:5e:71:14:d2:f8:65:1b:29:10:fd:b9:a5:01:
39:6a:4f:7b:02:d6:ab:1b:00:6d:8d:77:b7:4d:65:ea:65:54:
fc:04:ee:26:57:91:c0:e9:7c:81:b0:90:d9:d7:8c:9d:c8:5d:
82:6d:1d:ad:8f:22:e3:2d:8c:e9:36:cc:ea:c6:aa:f3:c8:29:
8c:ba:5e:d2:b7:6e:d5:ba:7c:1c:09:d7:b5:de:ba:c5:c6:28:
7f:e2:f6:bb:a3:ff:40:5b:dd:ec:04:ed:33:c8:9b:38:c4:c3:
ab:3c:e4:dc:38:1b:2d:64:4f:2e:bd:68:d2:56:c1:2c:9a:40:
62:9d:31:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:16:52 2025 by rpki-client