Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/_6ysWZe2j-3NZV9QDnIE-Z-FMos.roa
File: _6ysWZe2j-3NZV9QDnIE-Z-FMos.roa (raw, json)
Hash identifier: FLPDAQSe489Hh+JL231sdp4c7/Vni2EbMCu/0YoIaXQ=
Subject key identifier: FF:AC:AC:59:97:B6:8F:ED:CD:65:5F:50:0E:72:04:F9:9F:85:32:8B
Certificate issuer: /CN=ABC8439FE19D99B038270208C94B66CA231FFED5
Certificate serial: 0284
Authority key identifier: AB:C8:43:9F:E1:9D:99:B0:38:27:02:08:C9:4B:66:CA:23:1F:FE:D5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/_6ysWZe2j-3NZV9QDnIE-Z-FMos.roa
Signing time: Mon 26 Aug 2024 05:11:15 +0000
ROA not before: Mon 26 Aug 2024 05:11:15 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38047
IP address blocks: 2400:61a0:a054::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:57:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 644 (0x284)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABC8439FE19D99B038270208C94B66CA231FFED5
Validity
Not Before: Aug 26 05:11:15 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=FFACAC5997B68FEDCD655F500E7204F99F85328B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:1d:13:63:21:22:86:54:b5:97:76:04:a4:79:
62:06:f5:7d:5e:54:ab:42:4b:2a:cf:2b:0c:2e:17:
ba:1c:f6:bc:56:35:7d:01:cc:b8:6c:34:91:b2:09:
67:f0:41:af:d8:3b:af:34:3d:17:ca:3b:74:08:2c:
a5:ce:ff:3e:51:21:29:b2:d0:ea:0b:3f:2d:89:33:
31:f9:f0:68:09:65:43:8c:e7:39:a1:bb:82:3d:e0:
26:61:0f:e7:a9:8c:ee:fd:cf:fd:50:ea:14:08:b8:
09:2a:a1:82:0e:ba:83:4b:6b:75:30:00:c6:4b:56:
34:8e:14:13:db:94:5b:5f:6c:49:38:56:73:07:74:
32:f1:8f:2a:75:dc:16:16:c8:45:9f:58:aa:39:65:
9d:05:be:7b:23:a1:9f:68:5d:17:f8:f8:09:12:55:
38:f4:f9:24:33:bf:c1:1d:05:7c:9c:e3:6a:0f:34:
28:5d:4b:11:f7:37:c4:0e:cd:9e:58:d8:7e:c3:98:
89:6e:4b:17:8e:4d:ac:35:04:e1:4f:49:84:1e:4f:
a7:c8:e0:13:55:4f:b8:5d:d6:c4:9d:aa:63:33:1e:
48:31:b0:b0:a2:a1:b0:12:fa:a7:b3:cb:47:6a:85:
63:d3:fe:f9:0a:67:9d:29:2a:79:f0:2a:1e:a9:72:
44:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:AC:AC:59:97:B6:8F:ED:CD:65:5F:50:0E:72:04:F9:9F:85:32:8B
X509v3 Authority Key Identifier:
keyid:AB:C8:43:9F:E1:9D:99:B0:38:27:02:08:C9:4B:66:CA:23:1F:FE:D5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/q8hDn-GdmbA4JwIIyUtmyiMf_tU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/_6ysWZe2j-3NZV9QDnIE-Z-FMos.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:61a0:a054::/48
Signature Algorithm: sha256WithRSAEncryption
15:16:1f:65:25:29:01:54:0e:0c:2d:8c:40:39:ba:6e:13:f4:
ab:79:dc:ab:8c:b0:01:b4:d9:88:74:20:da:52:4d:99:e3:4b:
d6:cc:5c:ce:76:c2:23:d0:1c:69:1b:d7:d8:4d:a2:db:c9:9c:
97:70:6e:4c:6a:58:df:9b:39:9b:60:94:f3:da:67:cc:bb:64:
b5:e5:e3:b3:e5:7f:de:d3:b7:45:db:e9:cd:9a:f3:6e:b5:6a:
de:f6:0c:26:1c:25:bd:36:f4:40:9b:e4:7c:a6:0b:f0:4f:07:
7d:db:db:c1:77:1b:c2:4f:77:e3:1b:ef:bf:53:8e:33:09:79:
c2:81:dd:7b:ee:51:6a:2d:1a:21:68:6a:81:41:f5:fc:d0:2e:
08:06:88:c0:71:74:a3:c1:85:4a:a2:df:98:56:a2:ed:07:ef:
b4:83:2d:ad:f1:61:f0:94:df:91:5d:f0:d4:b5:99:a0:da:e0:
b9:22:79:49:25:5e:f0:1e:b6:dd:ed:3d:a6:b6:f4:0d:7f:e7:
02:42:f5:02:50:9e:bb:ac:da:cb:4c:a0:55:06:34:b3:8a:92:
28:4d:57:3e:2b:7a:01:e9:92:ce:10:e4:a9:a9:a3:5f:52:61:
06:e8:1d:24:38:e2:25:8a:54:86:a7:5a:a8:eb:18:53:8c:a7:
8f:ea:dc:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:28:56 2025 by rpki-client