Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/5XTKrhlVvKCfZ-c4XLsFN8P38g4.roa
File: 5XTKrhlVvKCfZ-c4XLsFN8P38g4.roa (raw, json)
Hash identifier: p+RytAnTSxS3DvhcixCna7xG+qVVdNp18BQzHSJ0xK8=
Subject key identifier: E5:74:CA:AE:19:55:BC:A0:9F:67:E7:38:5C:BB:05:37:C3:F7:F2:0E
Certificate issuer: /CN=ABD4DDB4BF932C5006B704B9828410174AC412AD
Certificate serial: 06
Authority key identifier: AB:D4:DD:B4:BF:93:2C:50:06:B7:04:B9:82:84:10:17:4A:C4:12:AD
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q9TdtL-TLFAGtwS5goQQF0rEEq0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/5XTKrhlVvKCfZ-c4XLsFN8P38g4.roa
Signing time: Wed 03 Jan 2024 03:00:58 +0000
ROA not before: Wed 03 Jan 2024 03:00:58 +0000
ROA not after: Tue 24 Dec 2024 15:30:20 +0000
asID: 150766
IP address blocks: 2401:5da0::/32 maxlen: 32
Validation: Failed, certificate revoked on Sun 14 Apr 2024 07:32:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6 (0x6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABD4DDB4BF932C5006B704B9828410174AC412AD
Validity
Not Before: Jan 3 03:00:58 2024 GMT
Not After : Dec 24 15:30:20 2024 GMT
Subject: CN=E574CAAE1955BCA09F67E7385CBB0537C3F7F20E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:e9:4e:c0:7b:d2:35:6f:30:67:73:0b:31:b9:
a8:2a:e7:0a:7b:3d:54:30:10:14:ed:2a:61:01:d0:
54:31:71:a8:34:b7:81:e3:76:20:6f:6a:6e:51:a2:
3c:78:93:47:c9:65:ac:e5:b2:d5:cc:7e:a4:8b:7f:
63:01:b1:b6:52:db:0d:5d:da:59:6e:d5:38:e7:ab:
c5:3e:e2:8e:94:47:a3:91:98:bc:3e:42:a3:10:10:
4f:e2:1f:0d:f5:34:8d:33:4e:0a:7e:28:ed:09:c0:
24:7c:71:09:1f:94:24:71:47:b7:db:a2:56:23:b5:
f1:95:5d:43:85:02:b3:09:9d:7d:e6:4a:4c:65:52:
84:9c:ae:cd:e9:b1:69:76:7d:8c:d9:bc:ae:87:75:
c7:90:f0:d0:59:a4:8e:49:9d:13:e8:52:dc:16:ed:
f6:69:05:9b:52:0f:cb:f9:20:87:dd:49:91:ac:a3:
2f:08:24:16:f0:68:db:a6:25:1a:1c:37:9c:12:f6:
8f:85:8c:5d:3e:9c:2a:c7:98:0d:46:09:c7:8d:1d:
0c:30:9a:2b:eb:d4:ed:79:7d:54:93:66:3f:32:a5:
f8:6a:e1:a8:a7:e6:a9:3b:16:2b:0f:bd:d1:5a:9e:
ca:95:2a:11:0e:7e:9e:33:fb:1b:da:66:f4:67:6b:
d7:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:74:CA:AE:19:55:BC:A0:9F:67:E7:38:5C:BB:05:37:C3:F7:F2:0E
X509v3 Authority Key Identifier:
keyid:AB:D4:DD:B4:BF:93:2C:50:06:B7:04:B9:82:84:10:17:4A:C4:12:AD
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/q9TdtL-TLFAGtwS5goQQF0rEEq0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q9TdtL-TLFAGtwS5goQQF0rEEq0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/5XTKrhlVvKCfZ-c4XLsFN8P38g4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:5da0::/32
Signature Algorithm: sha256WithRSAEncryption
5b:98:23:08:29:4c:2a:6a:2e:b3:6a:6a:a0:ae:c6:17:8b:97:
88:f7:43:34:14:b3:98:e7:e6:51:a0:66:e7:04:d6:4b:e6:a5:
49:72:fd:95:a0:74:1f:a8:15:d1:43:f8:bd:92:10:43:b5:a6:
42:31:5e:03:cd:b5:57:44:86:f2:ba:34:90:43:70:c9:dc:e1:
27:b7:17:ec:5d:2d:1c:14:ab:02:79:c0:1f:55:9b:75:4d:b2:
c8:c9:ed:e2:ef:d2:93:05:51:99:39:c9:6e:63:d9:5f:8d:f8:
9f:32:7c:c9:7f:26:b0:35:8e:7d:61:5b:1b:22:44:96:65:36:
3e:27:1c:c7:7a:45:18:78:84:ee:02:e2:ff:8e:05:4c:a4:8f:
f9:b7:ec:20:02:05:26:3e:aa:9c:e7:50:84:44:71:57:dc:88:
a6:af:00:1d:a3:2a:32:4e:9b:ea:41:a7:1b:c6:54:83:c5:e7:
cd:ab:58:ff:31:ee:1b:07:e3:28:59:46:7f:e2:0f:a0:59:ac:
39:9a:49:44:6d:23:1f:22:9c:24:2e:aa:dd:1b:7d:93:d3:f8:
ee:59:46:12:8c:34:5a:d4:96:4e:a9:1a:87:30:6a:6d:a1:f0:
6e:b0:1b:12:cd:06:46:be:d0:dd:88:e5:ae:c6:e1:b5:45:0a:
7f:a3:98:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org