Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/SmUOy_jb2ljLLUL2DSjIdEMmKE8.roa
File: SmUOy_jb2ljLLUL2DSjIdEMmKE8.roa (raw, json)
Hash identifier: v3W7qvkN8y3OEY7UaXfTGVh6ebkoVLzeaNhauWDT8+E=
Subject key identifier: 4A:65:0E:CB:F8:DB:DA:58:CB:2D:42:F6:0D:28:C8:74:43:26:28:4F
Certificate issuer: /CN=165495E8D327E4F62D5A16438F080E608A34D0D3
Certificate serial: 0E66
Authority key identifier: 16:54:95:E8:D3:27:E4:F6:2D:5A:16:43:8F:08:0E:60:8A:34:D0:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FlSV6NMn5PYtWhZDjwgOYIo00NM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/SmUOy_jb2ljLLUL2DSjIdEMmKE8.roa
Signing time: Mon 26 Aug 2024 05:17:00 +0000
ROA not before: Mon 26 Aug 2024 05:17:00 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131658
IP address blocks: 2404:bac0::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 20 Sep 2024 06:52:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3686 (0xe66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=165495E8D327E4F62D5A16438F080E608A34D0D3
Validity
Not Before: Aug 26 05:17:00 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=4A650ECBF8DBDA58CB2D42F60D28C8744326284F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:c2:2a:18:0f:fb:57:05:30:b9:ca:33:68:34:
85:9d:c5:8f:3e:26:d0:07:b6:79:53:fc:80:aa:b0:
fb:eb:31:3e:73:56:90:d7:e4:5d:5c:c2:d5:f3:a5:
b9:ee:33:f6:d5:5e:2b:a2:54:e0:7c:43:32:a6:f2:
5e:7c:67:86:b8:63:40:14:55:3a:e3:06:33:47:76:
c2:10:c8:d2:2f:22:79:56:a9:c6:99:7a:a9:c2:7b:
bb:c1:22:1f:b7:7b:c4:8a:d5:c4:a8:b8:40:a4:c1:
69:81:65:03:7e:99:15:0b:03:02:d9:38:3c:be:74:
8d:cd:e5:14:ac:b8:5b:8e:04:12:0a:a3:f5:ca:1e:
6a:bf:9a:ff:0a:29:a7:20:31:9d:46:56:21:2b:9b:
70:95:46:9f:cc:4f:32:76:26:f9:c3:85:af:7b:92:
40:7c:64:23:78:e8:20:50:53:6d:35:8d:ea:10:03:
42:44:e5:f6:50:2c:be:b4:a3:92:e9:21:8b:a5:92:
dc:7f:b4:7f:c2:94:78:13:01:56:6d:6d:bd:0f:35:
59:29:5e:1d:2f:a1:93:fc:d5:ec:4c:29:78:b8:ab:
37:41:19:87:16:b3:47:47:f8:74:94:a2:d6:e4:51:
c4:c8:bc:6b:dd:e3:bc:89:9b:83:4e:9b:b0:7d:bf:
25:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:65:0E:CB:F8:DB:DA:58:CB:2D:42:F6:0D:28:C8:74:43:26:28:4F
X509v3 Authority Key Identifier:
keyid:16:54:95:E8:D3:27:E4:F6:2D:5A:16:43:8F:08:0E:60:8A:34:D0:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/FlSV6NMn5PYtWhZDjwgOYIo00NM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FlSV6NMn5PYtWhZDjwgOYIo00NM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/SmUOy_jb2ljLLUL2DSjIdEMmKE8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:bac0::/32
Signature Algorithm: sha256WithRSAEncryption
b0:e1:25:66:1b:27:51:85:bc:78:6f:65:6b:34:d9:56:59:33:
e8:8f:3d:ad:a6:42:25:08:c3:d0:b6:08:5e:a5:45:66:c1:00:
1b:a3:17:21:b3:ed:46:35:8d:23:29:e6:1b:d4:fe:74:ce:17:
f3:2c:01:8a:3d:28:47:6d:5a:91:ac:7c:a0:4d:b4:a3:29:cf:
f2:17:0f:88:47:08:99:35:10:36:14:01:a1:25:60:48:a5:95:
7a:ad:56:44:96:d5:1e:4c:7a:07:9b:09:a4:80:2a:7b:c2:4b:
78:6b:72:08:cb:93:a1:4e:30:42:6b:af:e0:b0:71:7c:61:24:
ba:d7:67:ba:c5:08:0b:81:15:fc:fa:09:8e:a0:b1:5f:40:a8:
00:45:a7:df:ee:e9:24:58:4b:2e:08:63:ae:01:dc:0e:64:25:
ad:59:5a:65:52:bb:a0:b3:36:6b:c8:f5:55:0c:dd:03:0d:73:
b3:3c:d7:51:28:78:9b:7d:91:c4:7d:60:b4:1f:07:17:da:d8:
97:86:16:94:bf:1c:de:9d:83:01:2a:8b:e3:85:d6:36:41:21:
44:a5:a1:49:67:a3:80:9c:d6:02:c1:10:fe:19:c6:ec:37:8f:
e1:5b:5c:94:14:ca:11:42:8a:49:4e:ac:a3:39:42:9f:15:7c:
e2:3f:3c:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 20 08:12:27 2024 by rpki-client on console-fra.rpki-client.org