Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/Eyr2o4UED9l0bN_Xc3XRtAbLN4k.roa
File: Eyr2o4UED9l0bN_Xc3XRtAbLN4k.roa (raw, json)
Hash identifier: Z1fX6XT6XLNcmapZZw6Hs35GMM3+cnnu4IwQ5OomUTw=
Subject key identifier: 13:2A:F6:A3:85:04:0F:D9:74:6C:DF:D7:73:75:D1:B4:06:CB:37:89
Certificate issuer: /CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Certificate serial: 0CCC
Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/Eyr2o4UED9l0bN_Xc3XRtAbLN4k.roa
Signing time: Thu 24 Oct 2024 08:04:21 +0000
ROA not before: Thu 24 Oct 2024 08:04:21 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18046
IP address blocks: 2401:1780::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:04:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3276 (0xccc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Validity
Not Before: Oct 24 08:04:21 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=132AF6A385040FD9746CDFD77375D1B406CB3789
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:b4:0f:2e:da:05:e7:5e:1e:72:96:74:6d:db:
bc:97:fe:d5:15:6b:41:2d:67:ff:27:c9:80:89:28:
c7:c7:e0:61:6c:73:11:9a:64:8f:06:f0:f1:a8:a5:
1a:2d:98:23:e2:b2:0a:0d:38:3c:21:f3:b0:cd:90:
46:ce:41:a2:98:19:49:97:73:4c:d8:64:5e:cc:cc:
90:9f:a7:b0:42:8c:31:84:b2:22:ed:a2:77:fd:20:
52:79:4b:27:d4:2a:ac:5f:89:e6:b4:0d:d7:bf:0d:
7e:86:5d:ca:de:2c:e2:2f:66:69:cf:b2:0a:01:96:
8c:23:35:2a:3d:8d:9f:3d:b5:7f:91:4d:60:91:bd:
28:43:cb:94:f6:d3:40:21:9d:6c:77:37:a8:66:d1:
15:88:ee:21:84:93:ee:d4:4b:7c:96:25:e8:c0:89:
a8:38:72:15:a2:90:ad:9d:9e:f1:c6:72:04:37:ab:
39:79:ad:16:8d:b1:a0:c8:ca:a0:1c:71:16:f6:25:
5a:36:39:c6:09:55:e8:84:50:ce:a4:02:be:62:62:
53:4d:47:a6:70:67:0f:6d:aa:39:ae:bd:16:23:df:
b5:60:04:6e:f1:d9:05:ad:ab:72:f8:5a:d7:39:9c:
dd:8c:30:62:54:88:e1:40:50:4e:72:02:ef:c4:4f:
7f:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:2A:F6:A3:85:04:0F:D9:74:6C:DF:D7:73:75:D1:B4:06:CB:37:89
X509v3 Authority Key Identifier:
keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/Eyr2o4UED9l0bN_Xc3XRtAbLN4k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:1780::/32
Signature Algorithm: sha256WithRSAEncryption
0b:10:9a:26:15:f3:f6:d7:12:fc:48:17:ae:19:14:3d:9f:2c:
74:db:85:e9:a4:c6:82:38:88:46:56:05:1e:47:9c:a1:38:bd:
a1:59:d5:e6:dc:39:c4:16:09:b4:b9:46:9f:eb:7c:66:73:c0:
be:ec:20:a2:62:26:f1:63:d6:ad:74:b6:58:19:51:4a:d3:a8:
17:7f:32:9e:86:08:54:37:a8:ab:4a:31:98:d4:f2:1f:c4:0c:
f8:ed:73:7f:46:70:8a:a3:1c:5e:ca:f3:eb:13:c9:0c:1b:f2:
71:ac:82:e7:e1:a1:ba:2a:e5:81:e4:9e:2d:84:6b:68:d1:1a:
d8:54:6e:65:2e:7b:fc:b6:b2:7d:15:6f:02:e3:15:a7:05:1a:
d2:48:cf:83:63:e3:00:dc:4e:d9:d8:8a:12:6a:e8:48:06:e1:
f6:3a:08:4a:db:29:02:d0:ca:3f:d8:44:4d:55:e4:2c:e4:78:
13:b9:14:5f:8d:75:c8:a4:19:80:ea:31:c0:5e:f4:4e:df:e1:
eb:52:6d:1d:62:fe:66:c1:7a:ae:9d:dc:89:2f:35:57:a1:0b:
4a:f4:b6:6a:d7:94:c5:79:95:06:8a:27:15:81:11:7e:05:1c:
98:56:b3:1b:fb:a3:6e:0d:ff:22:83:05:6e:11:6c:ac:7e:5f:
bc:87:30:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 05:58:40 2025 by rpki-client