Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CPSYS/Mu33XCBIWvZtE0xDT12mq1aDhc0.roa
File: Mu33XCBIWvZtE0xDT12mq1aDhc0.roa (raw, json)
Hash identifier: M2nZE1iiXFn5FTMHWVquoShwe3y0Le1fufArpo57Q6A=
Subject key identifier: 32:ED:F7:5C:20:48:5A:F6:6D:13:4C:43:4F:5D:A6:AB:56:83:85:CD
Certificate issuer: /CN=1F877983527470E200D5AE06A01588213555FEE6
Certificate serial: 01E1
Authority key identifier: 1F:87:79:83:52:74:70:E2:00:D5:AE:06:A0:15:88:21:35:55:FE:E6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/H4d5g1J0cOIA1a4GoBWIITVV_uY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/Mu33XCBIWvZtE0xDT12mq1aDhc0.roa
Signing time: Mon 26 Aug 2024 05:11:45 +0000
ROA not before: Mon 26 Aug 2024 05:11:45 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 63908
IP address blocks: 2400:b0a0::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:01:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 481 (0x1e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1F877983527470E200D5AE06A01588213555FEE6
Validity
Not Before: Aug 26 05:11:45 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=32EDF75C20485AF66D134C434F5DA6AB568385CD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:57:56:86:98:c9:64:8a:5e:76:b8:ee:30:57:
f0:70:5e:fd:7c:f8:c5:a1:e6:8b:c5:97:2a:92:31:
7e:c7:7f:b0:7d:4c:53:97:43:ff:35:ca:6f:5c:a8:
4d:1d:c3:29:4f:c8:63:e7:f4:b0:24:78:6c:7e:d9:
1b:1e:ad:91:d8:9e:d1:ee:79:61:10:0e:d1:f2:56:
26:99:66:73:e6:20:87:92:e2:fb:91:4a:56:a6:c0:
11:0a:38:b8:02:8c:f1:f7:26:a9:f6:3e:51:fc:58:
25:93:eb:25:db:a0:fd:d9:7c:55:ce:64:b3:58:60:
f1:57:58:88:69:b6:04:44:dc:01:15:4a:71:aa:a4:
82:bf:4d:23:ec:d3:72:62:d7:91:e3:f7:2c:89:a8:
8b:e9:00:c9:b1:d7:60:5a:9c:0a:53:95:f4:5b:66:
2a:5c:6b:09:42:ae:44:1f:69:39:12:e4:a3:7f:21:
ec:55:45:89:15:50:34:85:64:df:93:e1:87:22:1f:
d4:b3:dc:00:98:0b:79:28:eb:c3:c0:8c:4f:c1:f8:
0a:5c:19:4d:17:fb:8f:17:68:d4:33:7b:89:72:16:
b1:31:fd:bd:f9:22:62:cd:cd:6b:72:63:44:05:53:
9d:80:b4:97:1f:e4:57:8d:6f:a4:96:4c:f0:e7:b3:
01:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:ED:F7:5C:20:48:5A:F6:6D:13:4C:43:4F:5D:A6:AB:56:83:85:CD
X509v3 Authority Key Identifier:
keyid:1F:87:79:83:52:74:70:E2:00:D5:AE:06:A0:15:88:21:35:55:FE:E6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/H4d5g1J0cOIA1a4GoBWIITVV_uY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/H4d5g1J0cOIA1a4GoBWIITVV_uY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/Mu33XCBIWvZtE0xDT12mq1aDhc0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:b0a0::/32
Signature Algorithm: sha256WithRSAEncryption
21:27:3a:30:52:f4:96:46:3e:17:05:28:a9:0a:ae:af:85:07:
67:3a:cd:be:2a:31:90:b6:64:25:7a:84:a0:e1:88:1e:1b:32:
2e:c4:83:75:0c:ad:10:00:11:91:df:00:06:85:42:6b:7d:2d:
d6:a8:8d:ba:d9:47:cb:fa:64:58:02:b0:56:81:ec:a8:44:be:
7e:52:37:69:1d:24:07:fd:9c:ce:04:b8:98:78:f6:5f:e9:3f:
e8:a1:00:69:1b:22:9a:e2:f2:a3:40:8f:b0:bd:a6:f1:09:f1:
b5:86:ef:b0:ea:89:29:9e:5f:fc:84:03:17:4e:2e:d5:29:0a:
ef:97:6d:78:9e:f7:ee:86:de:fa:72:b7:af:8d:fe:8d:3e:c9:
ee:99:e5:a4:db:96:64:9f:67:f1:f5:04:53:9a:ca:93:16:0b:
29:21:74:77:77:d6:f3:28:a1:c6:69:fd:da:5c:b1:36:f7:05:
b4:cb:49:41:f3:ed:45:c6:5a:2a:f4:92:a7:7b:78:21:00:3e:
5f:c7:56:80:98:5c:2d:ea:25:79:10:82:a4:1f:47:73:1e:83:
09:56:4b:b4:b6:da:83:45:b3:b2:38:1d:97:5a:c8:5b:ca:1d:
07:45:85:a7:d3:bd:40:3c:fe:3f:5b:2b:25:d3:dc:47:1a:16:
48:e2:3a:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:47:53 2025 by rpki-client