Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/b_OgZ-EcW4IZM7tGcpfnq5ah6Rs.roa
File: b_OgZ-EcW4IZM7tGcpfnq5ah6Rs.roa (raw, json)
Hash identifier: P65OMXnGNMla4VQRysLDlKwsW6zXXKF0REGgWAYaCKM=
Subject key identifier: 6F:F3:A0:67:E1:1C:5B:82:19:33:BB:46:72:97:E7:AB:96:A1:E9:1B
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 1085
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/b_OgZ-EcW4IZM7tGcpfnq5ah6Rs.roa
Signing time: Mon 26 Aug 2024 05:16:31 +0000
ROA not before: Mon 26 Aug 2024 05:16:31 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24155
IP address blocks: 2404:0:6000::/36 maxlen: 48
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:27:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4229 (0x1085)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Aug 26 05:16:31 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6FF3A067E11C5B821933BB467297E7AB96A1E91B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f3:cf:f6:41:30:19:44:11:4b:a0:bb:29:69:
65:8c:11:b9:70:2b:05:df:42:57:e6:3f:b0:02:8b:
0a:ac:e4:f0:e9:33:c8:44:4c:b4:9c:1a:32:94:62:
d2:bc:4a:9d:4c:a8:ce:f3:37:2c:ef:95:c6:82:f6:
70:4d:11:7d:c3:e7:02:bd:ae:04:b4:45:2c:e8:99:
2e:8a:0f:9d:49:2d:2f:71:a7:18:a3:ab:df:27:94:
be:0f:f7:54:fb:c5:63:d3:c3:ba:cf:22:b2:43:81:
5f:9a:50:8a:8c:a8:57:71:98:61:69:22:69:77:c6:
43:0f:80:5f:f1:1a:cb:1b:ed:94:43:27:8e:76:18:
ba:e2:57:1a:a4:11:cb:d5:b4:75:32:75:fb:9f:90:
3e:f5:10:62:09:a4:86:89:17:03:94:72:e6:fe:d0:
e5:af:5b:8e:55:2d:e6:6e:e4:5c:f5:ac:52:26:0b:
95:03:61:5d:85:cd:72:13:da:41:0d:97:30:cf:34:
07:08:a3:a0:69:23:c3:5e:8d:5c:43:18:1f:32:91:
38:ac:f7:02:46:35:15:b6:4f:91:d8:dc:0b:11:2b:
93:1b:da:6d:cf:d9:be:58:da:8e:d4:84:76:57:a3:
09:23:83:b2:62:49:ec:66:25:32:5e:b9:98:cb:46:
e4:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:F3:A0:67:E1:1C:5B:82:19:33:BB:46:72:97:E7:AB:96:A1:E9:1B
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/b_OgZ-EcW4IZM7tGcpfnq5ah6Rs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:0:6000::/36
Signature Algorithm: sha256WithRSAEncryption
9d:f9:e1:7c:1b:fd:42:4b:58:c4:90:3c:0e:3b:fa:2d:ed:83:
2d:df:a3:93:b6:12:9e:f9:24:c4:c7:cb:9b:30:de:02:26:e8:
17:76:d4:c8:bc:92:cf:29:53:3e:2b:d7:88:ac:ee:35:5f:a2:
36:b8:e0:30:07:5c:9e:d5:33:0a:2c:1b:31:c5:e4:35:c9:cf:
94:d9:64:ae:e9:af:17:68:8a:ef:bf:4b:3b:8b:a5:6a:cc:1d:
f3:89:c1:13:0e:86:8e:a2:9e:21:34:9e:d1:4a:95:6f:7d:11:
2b:08:ac:c0:5b:3f:65:0c:1e:43:e5:63:f3:cb:53:ee:26:40:
3e:32:a7:e0:5d:05:29:f7:2d:62:b9:be:e6:2a:8d:69:3e:38:
97:f3:83:0b:4d:1f:d5:98:1c:b8:99:06:3e:3c:b9:00:49:9b:
1a:a4:7a:32:a4:9d:f3:45:9e:17:b6:37:b0:91:f8:20:5a:fd:
8f:e9:ad:7e:a8:ab:4d:e6:32:e8:9b:18:8b:87:96:f8:c5:2d:
c0:82:7d:44:03:ba:f8:56:b9:cc:07:ab:f4:56:c7:9c:2f:c7:
60:6e:0d:6f:50:30:9e:0c:46:32:b7:7b:82:20:53:af:fb:37:
06:55:2c:cc:f4:c0:59:0a:f6:7e:4d:45:42:f8:b9:13:6e:29:
86:b8:44:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:51:16 2025 by rpki-client