Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/omE1HnFHGF0PWmqiEJ_1OFS1eh0.roa
File: omE1HnFHGF0PWmqiEJ_1OFS1eh0.roa (raw, json)
Hash identifier: CTsEpYi1ZoqBBm5eui+eqAxGhzgpUPgFg0a55abuozM=
Subject key identifier: A2:61:35:1E:71:47:18:5D:0F:5A:6A:A2:10:9F:F5:38:54:B5:7A:1D
Certificate issuer: /CN=ABD4DDB4BF932C5006B704B9828410174AC412AD
Certificate serial: 54
Authority key identifier: AB:D4:DD:B4:BF:93:2C:50:06:B7:04:B9:82:84:10:17:4A:C4:12:AD
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q9TdtL-TLFAGtwS5goQQF0rEEq0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/omE1HnFHGF0PWmqiEJ_1OFS1eh0.roa
Signing time: Sun 14 Apr 2024 07:38:14 +0000
ROA not before: Sun 14 Apr 2024 07:38:14 +0000
ROA not after: Tue 24 Dec 2024 15:30:20 +0000
asID: 150766
IP address blocks: 2401:5da0::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 14 Apr 2024 12:25:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84 (0x54)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABD4DDB4BF932C5006B704B9828410174AC412AD
Validity
Not Before: Apr 14 07:38:14 2024 GMT
Not After : Dec 24 15:30:20 2024 GMT
Subject: CN=A261351E7147185D0F5A6AA2109FF53854B57A1D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:da:ae:22:49:bb:95:14:a2:6e:c7:d1:aa:42:
54:f2:8a:c3:a9:24:af:91:d3:9e:45:cf:69:8f:59:
01:de:21:1c:09:66:d1:c3:f4:f0:2f:38:68:65:e0:
49:7b:2b:e9:fc:c0:8d:c1:d7:e5:ed:dd:d5:21:91:
69:98:49:8e:1c:1a:06:e0:f0:02:b2:54:1f:45:cb:
cf:1a:5c:21:d7:5b:04:5c:3a:5a:31:bb:d6:4e:19:
f6:f7:42:5e:40:1d:d1:86:d0:5e:11:d8:f2:94:46:
b5:33:b6:2c:dd:3a:e9:e3:bc:d0:e8:6c:5f:79:95:
fe:20:e0:7d:7c:45:e6:93:55:1c:5d:c6:b3:e5:1c:
20:63:6a:fd:a4:e5:2d:77:fb:49:69:75:d8:6b:a1:
7f:b1:57:b5:83:86:36:e8:5e:dc:42:0c:f3:ab:f4:
0b:bd:fb:d4:da:5a:5d:23:29:4e:53:22:df:d5:02:
81:53:84:f0:5a:61:b5:89:69:36:01:58:06:50:ab:
ea:09:cf:3c:8c:64:e8:51:2d:af:2e:bb:27:6a:ed:
4a:77:33:fb:49:2e:98:6a:84:b0:19:8d:29:02:50:
58:cd:e7:d9:ad:59:1a:df:1e:ee:1c:35:d2:8e:76:
17:a1:7a:4d:71:16:ee:c7:b4:25:e3:09:ea:0b:83:
e9:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:61:35:1E:71:47:18:5D:0F:5A:6A:A2:10:9F:F5:38:54:B5:7A:1D
X509v3 Authority Key Identifier:
keyid:AB:D4:DD:B4:BF:93:2C:50:06:B7:04:B9:82:84:10:17:4A:C4:12:AD
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/q9TdtL-TLFAGtwS5goQQF0rEEq0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q9TdtL-TLFAGtwS5goQQF0rEEq0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/omE1HnFHGF0PWmqiEJ_1OFS1eh0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:5da0::/48
Signature Algorithm: sha256WithRSAEncryption
31:75:b7:62:9b:73:b7:a2:82:d5:e8:e9:2f:31:e4:e1:21:ce:
ae:4a:88:cc:c5:62:82:8e:77:e8:5a:4a:ae:c4:e9:75:47:0f:
c3:18:de:30:d4:1c:44:74:cb:e6:84:5d:78:37:0c:9d:8d:b1:
53:d0:81:74:ec:59:00:28:b9:02:db:34:19:00:02:c8:f1:00:
1a:44:05:d6:3b:56:0e:be:fd:0e:e4:13:41:7a:75:7f:f5:14:
9f:f5:52:86:f6:c6:6f:ad:11:6c:3b:97:a9:40:b2:03:92:84:
3e:44:d2:5c:48:dd:ae:1d:af:37:b6:b8:de:c6:26:81:f4:39:
cc:8f:c0:40:da:fc:e1:07:22:40:37:11:ab:ae:bb:33:46:11:
e0:63:cf:a0:bc:33:1b:f4:e7:9c:08:fe:99:3f:49:1c:8c:58:
47:48:6c:e7:9f:14:61:20:ac:13:29:2d:ee:35:fb:5e:56:97:
14:f3:0a:c4:67:d7:42:1d:67:7e:1d:cd:0c:49:11:87:fe:ad:
13:3d:f6:c9:76:c6:86:b9:e6:b6:b5:63:75:ec:74:70:70:5d:
b3:76:46:be:75:5f:58:69:21:14:a8:2a:d4:24:0e:08:4b:9f:
9b:7d:e2:a1:28:28:50:6a:af:16:2c:14:9d:8d:c1:dc:97:ba:
86:40:c8:70
-----BEGIN CERTIFICATE-----
MIIE2jCCA8KgAwIBAgIBVDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhBQkQ0
RERCNEJGOTMyQzUwMDZCNzA0Qjk4Mjg0MTAxNzRBQzQxMkFEMB4XDTI0MDQxNDA3
MzgxNFoXDTI0MTIyNDE1MzAyMFowMzExMC8GA1UEAxMoQTI2MTM1MUU3MTQ3MTg1
RDBGNUE2QUEyMTA5RkY1Mzg1NEI1N0ExRDCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAJzariJJu5UUom7H0apCVPKKw6kkr5HTnkXPaY9ZAd4hHAlm0cP0
8C84aGXgSXsr6fzAjcHX5e3d1SGRaZhJjhwaBuDwArJUH0XLzxpcIddbBFw6WjG7
1k4Z9vdCXkAd0YbQXhHY8pRGtTO2LN066eO80OhsX3mV/iDgfXxF5pNVHF3Gs+Uc
IGNq/aTlLXf7SWl12Guhf7FXtYOGNuhe3EIM86v0C7371NpaXSMpTlMi39UCgVOE
8FphtYlpNgFYBlCr6gnPPIxk6FEtry67J2rtSncz+0kumGqEsBmNKQJQWM3n2a1Z
Gt8e7hw10o52F6F6TXEW7se0JeMJ6guD6b0CAwEAAaOCAfcwggHzMB0GA1UdDgQW
BBSiYTUecUcYXQ9aaqIQn/U4VLV6HTAfBgNVHSMEGDAWgBSr1N20v5MsUAa3BLmC
hBAXSsQSrTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF8GA1UdHwRYMFYwVKBS
oFCGTnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DT0NPRElH
SVQvcTlUZHRMLVRMRkFHdHdTNWdvUVFGMHJFRXEwLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9xOVRkdEwtVExGQUd0d1M1Z29RUUYwckVFcTAuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBnwYIKwYBBQUHAQsEgZIwgY8wWgYIKwYBBQUHMAuGTnJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DT0NPRElHSVQvb21FMUhuRkhHRjBQ
V21xaUVKXzFPRlMxZWgwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3
bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIw
CQMHACQBXaAAADANBgkqhkiG9w0BAQsFAAOCAQEAMXW3Yptzt6KC1ejpLzHk4SHO
rkqIzMVigo536FpKrsTpdUcPwxjeMNQcRHTL5oRdeDcMnY2xU9CBdOxZACi5Ats0
GQACyPEAGkQF1jtWDr79DuQTQXp1f/UUn/VShvbGb60RbDuXqUCyA5KEPkTSXEjd
rh2vN7a43sYmgfQ5zI/AQNr84QciQDcRq667M0YR4GPPoLwzG/TnnAj+mT9JHIxY
R0hs558UYSCsEykt7jX7XlaXFPMKxGfXQh1nfh3NDEkRh/6tEz32yXbGhrnmtrVj
dex0cHBds3ZGvnVfWGkhFKgq1CQOCEufm33ioSgoUGqvFiwUnY3B3Je6hkDIcA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org