Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FUYU/mEOYIqeCHMw21uIX3DtHB_gXy2c.roa
File: mEOYIqeCHMw21uIX3DtHB_gXy2c.roa (raw, json)
Hash identifier: lAf7xWqnK6pfvjmNwUw5dVUdRm8ANp2ZuNrozoguSxw=
Subject key identifier: 98:43:98:22:A7:82:1C:CC:36:D6:E2:17:DC:3B:47:07:F8:17:CB:67
Certificate issuer: /CN=6B3C09A6D48E6F4E1760EDD8942C436D0A196387
Certificate serial: 03
Authority key identifier: 6B:3C:09:A6:D4:8E:6F:4E:17:60:ED:D8:94:2C:43:6D:0A:19:63:87
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/azwJptSOb04XYO3YlCxDbQoZY4c.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FUYU/mEOYIqeCHMw21uIX3DtHB_gXy2c.roa
Signing time: Fri 22 Mar 2024 09:15:46 +0000
ROA not before: Fri 22 Mar 2024 09:15:46 +0000
ROA not after: Fri 21 Feb 2025 15:30:22 +0000
asID: 150771
IP address blocks: 2401:81a0::/32 maxlen: 32
Validation: Failed, certificate revoked on Sun 24 Mar 2024 13:19:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6B3C09A6D48E6F4E1760EDD8942C436D0A196387
Validity
Not Before: Mar 22 09:15:46 2024 GMT
Not After : Feb 21 15:30:22 2025 GMT
Subject: CN=98439822A7821CCC36D6E217DC3B4707F817CB67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:5b:40:0e:59:e3:b8:e3:53:4a:f0:30:7f:e8:
89:a5:f2:a4:64:22:1d:af:b7:64:86:80:3e:67:5e:
e9:ec:1d:63:48:98:9d:da:f8:99:3b:44:19:b7:f8:
25:5c:6a:83:67:20:9d:05:99:12:21:d3:db:88:4b:
25:20:a3:f7:08:51:b1:3c:23:4d:44:5d:6c:a7:70:
6b:71:de:5a:28:d3:83:30:4b:1c:a2:da:cd:62:0c:
59:9e:40:73:39:09:da:c5:49:83:46:fa:8e:f4:f8:
3e:42:f8:bc:19:98:02:94:01:8d:d4:e9:7f:b6:a9:
34:86:62:0c:2c:9a:b2:15:f5:ef:a7:59:a0:0b:e2:
55:e0:3d:1d:52:2f:cc:31:bd:90:34:a9:23:1b:7f:
a7:9f:ad:33:a1:f0:4a:18:7d:d1:2b:ef:0e:32:3c:
f3:c9:b5:28:64:1b:3c:8a:d0:c1:08:22:cc:cf:ad:
18:a6:66:c3:3e:80:e6:b7:81:ad:0e:48:69:bd:7a:
76:89:ee:0e:77:77:d8:21:6f:ec:73:70:2c:59:94:
64:c6:59:38:ce:08:bc:8b:b4:cf:75:1b:b2:01:93:
9d:b1:ee:2b:09:84:9e:b9:5d:16:bc:69:93:4d:33:
74:62:ee:67:9c:6f:a5:f8:b6:92:ba:d3:1c:3a:6f:
10:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:43:98:22:A7:82:1C:CC:36:D6:E2:17:DC:3B:47:07:F8:17:CB:67
X509v3 Authority Key Identifier:
keyid:6B:3C:09:A6:D4:8E:6F:4E:17:60:ED:D8:94:2C:43:6D:0A:19:63:87
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FUYU/azwJptSOb04XYO3YlCxDbQoZY4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/azwJptSOb04XYO3YlCxDbQoZY4c.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FUYU/mEOYIqeCHMw21uIX3DtHB_gXy2c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:81a0::/32
Signature Algorithm: sha256WithRSAEncryption
2a:4c:1a:d8:81:cf:36:f3:fa:ba:71:e8:76:b8:78:5e:7d:5f:
49:f5:41:34:31:02:a4:4f:03:37:91:90:7b:4f:4b:af:0e:80:
b5:01:09:33:53:45:b1:1f:50:36:53:99:94:6b:ab:39:6b:e9:
68:40:17:55:35:f7:07:1d:ba:73:1a:5f:9f:b6:55:f3:fa:dc:
29:26:ee:37:78:0d:d8:70:b0:ae:35:50:ba:f1:d9:60:3c:62:
ee:9c:10:c4:af:1b:02:8e:7a:2d:8e:8e:9a:9e:e7:b6:69:6d:
65:04:d8:18:ab:5c:82:cf:d7:80:81:02:78:1f:82:f7:c4:ee:
0f:07:50:3d:ca:be:12:ff:3f:69:f5:62:3f:a7:ff:5d:29:d2:
b4:f7:58:b5:7a:51:13:92:65:e0:b4:1d:d3:09:69:88:97:40:
c4:a6:16:67:f5:21:7c:57:80:81:8e:cf:e2:bc:59:8b:16:c0:
34:76:94:6c:15:c2:07:0c:9c:05:55:81:b3:33:25:b4:1f:95:
60:fe:50:1a:fb:ef:77:39:6c:1e:09:75:a3:f5:88:b9:6d:a6:
16:2c:c5:63:b4:10:e6:cc:98:2f:0f:32:cb:45:fa:14:51:3e:
77:5d:8f:d4:73:fb:55:62:ba:7e:c4:3c:77:2a:1a:ef:39:b9:
1c:48:a4:ba
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgIBAzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2QjND
MDlBNkQ0OEU2RjRFMTc2MEVERDg5NDJDNDM2RDBBMTk2Mzg3MB4XDTI0MDMyMjA5
MTU0NloXDTI1MDIyMTE1MzAyMlowMzExMC8GA1UEAxMoOTg0Mzk4MjJBNzgyMUND
QzM2RDZFMjE3REMzQjQ3MDdGODE3Q0I2NzCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBALVbQA5Z47jjU0rwMH/oiaXypGQiHa+3ZIaAPmde6ewdY0iYndr4
mTtEGbf4JVxqg2cgnQWZEiHT24hLJSCj9whRsTwjTURdbKdwa3HeWijTgzBLHKLa
zWIMWZ5AczkJ2sVJg0b6jvT4PkL4vBmYApQBjdTpf7apNIZiDCyashX176dZoAvi
VeA9HVIvzDG9kDSpIxt/p5+tM6HwShh90SvvDjI888m1KGQbPIrQwQgizM+tGKZm
wz6A5reBrQ5Iab16donuDnd32CFv7HNwLFmUZMZZOM4IvIu0z3UbsgGTnbHuKwmE
nrldFrxpk00zdGLuZ5xvpfi2krrTHDpvEH0CAwEAAaOCAeswggHnMB0GA1UdDgQW
BBSYQ5gip4IczDbW4hfcO0cH+BfLZzAfBgNVHSMEGDAWgBRrPAmm1I5vThdg7diU
LENtChljhzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFoGA1UdHwRTMFEwT6BN
oEuGSXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9GVVlVL2F6
d0pwdFNPYjA0WFlPM1lsQ3hEYlFvWlk0Yy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
YXp3SnB0U09iMDRYWU8zWWxDeERiUW9aWTRjLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZoGCCsGAQUFBwELBIGNMIGKMFUGCCsGAQUFBzALhklyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvRlVZVS9tRU9ZSXFlQ0hNdzIxdUlYM0R0SEJf
Z1h5MmMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcvcnJk
cC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJAGBoDAN
BgkqhkiG9w0BAQsFAAOCAQEAKkwa2IHPNvP6unHodrh4Xn1fSfVBNDECpE8DN5GQ
e09Lrw6AtQEJM1NFsR9QNlOZlGurOWvpaEAXVTX3Bx26cxpfn7ZV8/rcKSbuN3gN
2HCwrjVQuvHZYDxi7pwQxK8bAo56LY6Omp7ntmltZQTYGKtcgs/XgIECeB+C98Tu
DwdQPcq+Ev8/afViP6f/XSnStPdYtXpRE5Jl4LQd0wlpiJdAxKYWZ/UhfFeAgY7P
4rxZixbANHaUbBXCBwycBVWBszMltB+VYP5QGvvvdzlsHgl1o/WIuW2mFizFY7QQ
5syYLw8yy0X6FFE+d12P1HP7VWK6fsQ8dyoa7zm5HEikug==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org