Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/COCHENTEK/LQA2_iTp8ki_5Pe5L9gTbfH4ll4.roa
File: LQA2_iTp8ki_5Pe5L9gTbfH4ll4.roa (raw, json)
Hash identifier: ejSN19gxIKILySA4DU98GS4hoBvdeckvIxy5G/Areo4=
Subject key identifier: 2D:00:36:FE:24:E9:F2:48:BF:E4:F7:B9:2F:D8:13:6D:F1:F8:96:5E
Certificate issuer: /CN=A736CFF1948740614D0321E63B8403EB9AB9748D
Certificate serial: 01C3
Authority key identifier: A7:36:CF:F1:94:87:40:61:4D:03:21:E6:3B:84:03:EB:9A:B9:74:8D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/pzbP8ZSHQGFNAyHmO4QD65q5dI0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/COCHENTEK/LQA2_iTp8ki_5Pe5L9gTbfH4ll4.roa
Signing time: Mon 26 Aug 2024 05:11:36 +0000
ROA not before: Mon 26 Aug 2024 05:11:36 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38136
IP address blocks: 2400:bea0::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:15:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 451 (0x1c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A736CFF1948740614D0321E63B8403EB9AB9748D
Validity
Not Before: Aug 26 05:11:36 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=2D0036FE24E9F248BFE4F7B92FD8136DF1F8965E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:67:1c:2b:2d:81:7b:3d:22:71:ce:5a:ba:8c:
76:9a:2b:c2:f7:0f:ee:ed:ac:a7:f3:43:d8:8f:48:
32:f8:78:7a:f5:db:ef:04:93:03:2d:45:59:63:d4:
fc:07:36:ba:75:d1:ca:b1:82:e8:d8:a0:69:08:a6:
ac:85:8d:1d:23:c1:eb:3c:ac:3d:f0:32:3d:f0:ca:
5e:4f:76:87:31:fe:e2:b1:5f:39:c7:01:31:1f:0b:
a0:fb:bd:d2:1f:e7:98:35:f0:fa:e3:ed:cb:db:9f:
6d:69:bd:5c:99:62:9f:c7:87:8b:ea:68:1f:13:0a:
a4:94:5e:4e:4f:73:9f:01:b3:20:f4:54:ab:ae:7b:
67:ca:69:01:46:5d:41:8d:13:64:7f:47:fc:9b:2b:
fa:ee:dd:06:da:3a:f2:62:1b:71:f1:33:41:e2:75:
5d:76:1a:e2:75:d8:db:da:a7:69:26:60:c6:ef:7e:
3d:a7:49:3f:26:f3:f3:2e:5c:3d:5d:f6:2c:f9:02:
6b:58:ab:92:cf:7e:c5:6b:74:ea:be:48:6b:89:1d:
d1:a9:c7:59:c5:ba:b5:aa:1a:07:37:a3:6e:b2:40:
9d:68:30:70:33:27:af:6c:27:0a:93:50:02:27:f7:
f6:ed:97:f0:03:26:ce:71:a4:c6:7e:f9:c9:fd:e4:
9c:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:00:36:FE:24:E9:F2:48:BF:E4:F7:B9:2F:D8:13:6D:F1:F8:96:5E
X509v3 Authority Key Identifier:
keyid:A7:36:CF:F1:94:87:40:61:4D:03:21:E6:3B:84:03:EB:9A:B9:74:8D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COCHENTEK/pzbP8ZSHQGFNAyHmO4QD65q5dI0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/pzbP8ZSHQGFNAyHmO4QD65q5dI0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COCHENTEK/LQA2_iTp8ki_5Pe5L9gTbfH4ll4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:bea0::/32
Signature Algorithm: sha256WithRSAEncryption
cb:fe:dc:bb:2e:78:34:95:80:56:d3:ff:bc:b0:f6:81:38:3b:
e3:cc:2e:e2:96:07:ac:29:d7:60:1e:8f:49:8d:5c:2d:12:44:
61:7c:ec:ef:77:5b:8b:46:23:bd:34:75:67:fa:0d:ff:d0:98:
5c:37:88:24:d0:64:fb:15:c1:21:99:b8:87:95:ea:7f:f3:e9:
61:af:40:f3:fa:d7:92:06:87:23:b3:08:f5:66:88:4c:94:a0:
a9:49:65:75:fd:a0:c1:e3:a1:55:b2:ee:f7:4d:11:9a:0a:38:
cd:b8:bc:1a:66:b6:a1:bc:69:31:30:2c:31:3c:a0:34:e3:3e:
09:7e:00:7e:d1:d6:30:d2:1c:10:7d:97:b6:58:66:ed:43:d4:
57:67:61:c8:bc:a2:66:b1:01:45:d6:f0:67:3f:be:49:6b:e6:
b5:02:ea:45:6f:c2:dc:4b:96:68:0a:7a:d5:44:48:97:49:4d:
2b:32:3b:92:c0:b9:75:fd:7f:92:08:f9:0a:74:8f:c3:1b:f5:
dd:6a:af:30:ba:12:bc:ca:87:93:47:49:57:26:2d:72:c0:9d:
4b:b3:3d:84:3c:9f:a4:15:ed:b9:ba:41:a2:c0:4f:76:c3:96:
2e:a1:b9:13:b6:23:5a:e7:33:66:94:3f:36:18:f1:15:da:02:
56:3f:4a:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:42:04 2025 by rpki-client