Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CODEUPTECH/tL0_RfogyCVGP5Xpz6Il5eVw4lc.roa
File: tL0_RfogyCVGP5Xpz6Il5eVw4lc.roa (raw, json)
Hash identifier: mrhklj14wRgUDxkDs7cl+jbL4o6Kz5WrYqV08Ed69Hg=
Subject key identifier: B4:BD:3F:45:FA:20:C8:25:46:3F:95:E9:CF:A2:25:E5:E5:70:E2:57
Certificate issuer: /CN=2C20881A0EFD0664A591AF3095D29935EF9BC361
Certificate serial: 47
Authority key identifier: 2C:20:88:1A:0E:FD:06:64:A5:91:AF:30:95:D2:99:35:EF:9B:C3:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LCCIGg79BmSlka8wldKZNe-bw2E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CODEUPTECH/tL0_RfogyCVGP5Xpz6Il5eVw4lc.roa
Signing time: Fri 13 Sep 2024 14:01:59 +0000
ROA not before: Fri 13 Sep 2024 14:01:59 +0000
ROA not after: Thu 28 Aug 2025 15:30:19 +0000
asID: 215262
IP address blocks: 2401:bf60:4ff9::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 71 (0x47)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2C20881A0EFD0664A591AF3095D29935EF9BC361
Validity
Not Before: Sep 13 14:01:59 2024 GMT
Not After : Aug 28 15:30:19 2025 GMT
Subject: CN=B4BD3F45FA20C825463F95E9CFA225E5E570E257
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:27:56:fa:a8:8d:08:2d:03:7f:c8:03:c0:c7:
90:39:9c:c6:d7:24:00:35:9f:64:c0:34:fe:23:b4:
b9:38:b4:62:fa:e0:bd:c6:02:eb:9e:52:d8:6d:e4:
2e:db:86:73:cf:12:51:b3:1d:f5:65:8c:e5:8e:23:
d9:e6:37:ff:ee:34:50:56:5b:e3:4f:09:36:dc:5b:
f7:40:ec:00:08:a4:7f:5a:59:03:80:ba:1c:2b:39:
5b:54:c7:46:d1:cc:67:35:3f:b4:13:a8:95:ae:5c:
06:d5:12:21:96:45:db:b8:83:50:de:cd:35:65:fe:
8b:6e:64:29:f3:18:3a:26:3b:9d:7f:2f:31:19:12:
6c:cb:fa:bf:05:39:35:61:66:6d:a4:01:ce:dd:43:
18:98:38:6e:8f:f5:9e:8e:35:71:b9:c5:0f:d2:79:
72:d7:50:81:e2:3a:d7:8d:71:22:f0:59:1a:ae:2f:
65:12:43:29:d7:77:ea:d1:a0:a7:29:42:c6:b5:cd:
a4:8a:87:1f:fe:10:c2:b5:f3:93:bb:5c:8f:8a:0f:
0d:89:63:ec:1a:c0:90:9a:ca:c6:29:26:33:f9:fb:
1a:40:41:39:84:c9:1d:22:84:8b:74:61:78:2b:d6:
6c:1c:b7:26:d2:45:1f:48:65:a6:16:06:10:05:db:
a7:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:BD:3F:45:FA:20:C8:25:46:3F:95:E9:CF:A2:25:E5:E5:70:E2:57
X509v3 Authority Key Identifier:
keyid:2C:20:88:1A:0E:FD:06:64:A5:91:AF:30:95:D2:99:35:EF:9B:C3:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CODEUPTECH/LCCIGg79BmSlka8wldKZNe-bw2E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LCCIGg79BmSlka8wldKZNe-bw2E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CODEUPTECH/tL0_RfogyCVGP5Xpz6Il5eVw4lc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:bf60:4ff9::/48
Signature Algorithm: sha256WithRSAEncryption
06:be:9c:0a:30:a1:f6:b4:f7:a0:0d:62:51:23:5a:2c:2f:fc:
ad:f0:f3:2b:f3:0c:8d:04:74:3c:95:6c:16:2e:1c:46:2b:df:
fa:2c:1a:c0:c5:93:6f:54:fc:1c:27:8c:7e:42:fe:b1:5e:17:
c7:5b:5d:71:91:dd:53:1f:2d:49:5b:28:e3:76:3e:e4:bd:a2:
f9:f3:90:79:c5:0b:9f:13:5a:ca:db:b4:61:69:8a:b4:ee:d3:
e6:d5:64:56:33:1b:3e:6c:34:f9:b6:4d:5f:5d:d9:c7:26:d3:
bc:08:9a:f8:fc:d2:87:95:4a:31:10:1e:fd:93:e1:b8:37:23:
2e:69:7b:b4:08:2d:70:22:5a:f9:0d:34:43:d0:02:26:7e:15:
32:ae:3d:19:82:8a:16:5e:0e:2f:68:48:6e:a5:34:f2:a8:d5:
7a:b7:52:fd:e9:42:72:19:0a:5c:9b:77:ac:f7:42:70:08:70:
1a:d3:4f:82:02:f2:c8:be:83:82:6a:1a:bd:61:a0:d1:48:96:
3e:ee:b7:75:78:ac:f2:9b:6b:59:4d:bf:e6:60:11:a0:f0:6a:
39:83:4f:6d:db:ae:95:4d:6d:a2:f8:ea:19:5b:87:df:ae:1e:
93:58:a9:c2:ad:6e:b6:32:12:13:c5:83:83:5f:cc:0b:94:fd:
66:b0:75:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:22:11 2025 by rpki-client