Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/Xz2Jd-84U0CZgIWEqyCJ1i5MJPA.roa
File: Xz2Jd-84U0CZgIWEqyCJ1i5MJPA.roa (raw, json)
Hash identifier: d3Va3wY4F6zk9+0O6I4+jcUDb9BJ1rwX9fprJ8rrfmo=
Subject key identifier: 5F:3D:89:77:EF:38:53:40:99:80:85:84:AB:20:89:D6:2E:4C:24:F0
Certificate issuer: /CN=165495E8D327E4F62D5A16438F080E608A34D0D3
Certificate serial: 0E64
Authority key identifier: 16:54:95:E8:D3:27:E4:F6:2D:5A:16:43:8F:08:0E:60:8A:34:D0:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FlSV6NMn5PYtWhZDjwgOYIo00NM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/Xz2Jd-84U0CZgIWEqyCJ1i5MJPA.roa
Signing time: Mon 26 Aug 2024 05:16:59 +0000
ROA not before: Mon 26 Aug 2024 05:16:59 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131658
IP address blocks: 2404:bac0::/44 maxlen: 44
Validation: Failed, certificate revoked on Fri 20 Sep 2024 06:52:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3684 (0xe64)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=165495E8D327E4F62D5A16438F080E608A34D0D3
Validity
Not Before: Aug 26 05:16:59 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5F3D8977EF38534099808584AB2089D62E4C24F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:e0:f4:f1:de:75:14:64:55:6c:ab:88:17:37:
aa:41:c0:40:61:d5:c3:12:bb:f3:2b:58:1c:22:df:
17:86:1b:43:ee:8c:34:2e:8d:a6:ed:8c:54:d5:7f:
00:dd:67:9b:25:25:11:95:25:60:e3:a1:4f:25:de:
65:f3:05:f9:4c:d4:1c:23:e7:7c:d0:fe:2b:c6:9d:
67:04:73:0c:27:7d:3c:27:4a:e7:f2:ed:5b:fd:24:
ce:a4:9c:c3:87:3b:35:2e:d3:7b:da:42:72:31:b3:
56:26:cd:52:8c:a3:8f:0b:7c:d1:0e:3e:6a:90:92:
31:7d:95:69:e8:32:54:c8:e2:a4:73:ec:c9:b2:0d:
57:d2:2a:07:89:2e:5c:11:3e:34:d1:72:e1:60:ae:
3e:9b:20:6d:43:f4:61:cf:d6:d3:12:2e:19:a9:a3:
0a:34:ff:b3:52:3d:59:90:73:ab:95:69:b2:89:86:
88:9d:0e:38:6a:71:d1:c9:d8:87:c5:eb:cc:cf:80:
0b:9d:ea:27:0f:93:f4:cf:1b:1e:e6:dd:10:cb:27:
86:c1:8e:df:b2:19:30:c7:19:2b:74:5d:02:bf:5f:
7c:4c:1a:4f:29:4c:e0:98:d1:5b:b7:c5:a9:d5:dc:
ec:9f:08:ff:e4:8e:bd:38:99:a8:9a:56:4c:c2:d7:
50:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:3D:89:77:EF:38:53:40:99:80:85:84:AB:20:89:D6:2E:4C:24:F0
X509v3 Authority Key Identifier:
keyid:16:54:95:E8:D3:27:E4:F6:2D:5A:16:43:8F:08:0E:60:8A:34:D0:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/FlSV6NMn5PYtWhZDjwgOYIo00NM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FlSV6NMn5PYtWhZDjwgOYIo00NM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/Xz2Jd-84U0CZgIWEqyCJ1i5MJPA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:bac0::/44
Signature Algorithm: sha256WithRSAEncryption
34:da:cd:6a:b5:ce:f0:ca:5a:81:61:c7:cd:0e:ba:bf:8f:e1:
af:b5:2f:55:56:9c:44:54:dd:dd:ad:d8:15:71:d9:99:43:c8:
c7:9b:5d:a3:f9:f1:07:83:df:68:8f:48:f5:56:b8:ed:86:a4:
86:e4:30:55:ea:21:3b:75:b9:be:bc:3b:88:bf:8f:03:f1:80:
41:59:e3:7d:09:45:ad:52:c7:cc:e7:8d:c1:cd:d0:c8:c5:5e:
f3:a6:a3:09:44:a0:c9:13:cb:cb:a6:ce:48:2f:8b:e9:a4:ef:
ae:ab:68:21:73:9a:a5:6d:32:62:55:a0:31:3a:e3:59:ba:2c:
91:49:53:aa:0a:4e:8f:a0:ed:7f:3a:d5:1b:34:69:33:2c:8c:
75:64:9f:d5:a2:65:ae:c2:cb:a9:1d:36:10:89:8d:3e:ba:6b:
6d:6c:a6:c6:83:91:7e:8f:73:f6:b0:ed:70:6a:44:78:38:08:
fb:bb:ed:33:3d:95:8a:08:ff:09:7a:04:46:f1:b9:bc:dd:06:
1a:0a:46:2d:ec:e9:60:7f:76:87:85:04:49:53:da:e4:c6:41:
eb:ea:2a:4b:7e:c7:b3:88:1f:c7:da:ad:8c:9b:e5:dc:d3:00:
c7:89:27:eb:36:71:1b:66:7c:bb:73:1b:b2:25:86:b7:cf:85:
8b:31:f4:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 20 08:12:27 2024 by rpki-client on console-fra.rpki-client.org