Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/b879hwCCetQsEpCroW6u_cZw5qA.roa
File: b879hwCCetQsEpCroW6u_cZw5qA.roa (raw, json)
Hash identifier: T6HLlWmkFl4l9vhqJVIr8qDzQXH9iRHnT+XCJaIuxjk=
Subject key identifier: 6F:CE:FD:87:00:82:7A:D4:2C:12:90:AB:A1:6E:AE:FD:C6:70:E6:A0
Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial: 06BD
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/b879hwCCetQsEpCroW6u_cZw5qA.roa
Signing time: Mon 26 Aug 2024 05:18:25 +0000
ROA not before: Mon 26 Aug 2024 05:18:25 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131657
IP address blocks: 2406:48c0::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:33:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1725 (0x6bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
Validity
Not Before: Aug 26 05:18:25 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6FCEFD8700827AD42C1290ABA16EAEFDC670E6A0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:0c:b6:85:ad:52:fb:f8:53:c3:3f:0e:b4:eb:
be:9a:c4:9d:70:1e:46:27:a4:fc:f8:09:4f:e2:13:
ab:e6:a7:64:0c:2a:d9:0b:d3:90:e2:fb:c5:ff:6c:
b6:58:6f:08:3c:80:ec:53:58:5e:0f:1e:b4:3c:7e:
77:43:72:a3:7f:ec:45:77:23:6d:21:53:53:a2:33:
14:5e:1f:47:cb:31:66:0e:13:2c:7e:93:27:cd:4c:
a1:47:da:ba:c3:6c:b9:15:42:73:aa:97:1f:a0:21:
0f:48:60:cd:ea:d9:c1:89:80:00:5d:42:2e:7e:6a:
97:f6:cf:87:82:94:03:d2:35:73:6a:85:9b:87:3f:
ca:cc:1b:b8:6b:df:10:9a:fc:c5:d4:0e:14:a0:11:
6c:21:ed:94:d7:0f:f9:0d:6a:03:e1:4d:6d:ac:b4:
d6:4d:e9:5b:1f:56:93:b3:bc:81:58:ca:6e:21:5e:
64:c2:46:3d:a1:a1:57:f8:cf:0b:64:bd:b7:fb:9d:
ec:01:4b:4c:73:0d:5e:ae:a0:68:9c:60:8b:6c:27:
1d:95:d7:08:91:cb:e0:2b:c3:ad:4e:19:3d:0c:48:
16:22:d6:89:81:af:2c:f5:26:f4:ff:6e:03:68:62:
e3:df:c6:ff:d2:92:c1:54:e1:19:81:79:ef:3f:72:
d9:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:CE:FD:87:00:82:7A:D4:2C:12:90:AB:A1:6E:AE:FD:C6:70:E6:A0
X509v3 Authority Key Identifier:
keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/b879hwCCetQsEpCroW6u_cZw5qA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:48c0::/32
Signature Algorithm: sha256WithRSAEncryption
6c:b9:21:c3:f8:7d:08:05:34:eb:c0:0e:7c:92:53:13:69:e2:
73:0a:22:2b:44:b0:f9:9f:2a:fe:f2:6c:aa:d3:37:e5:28:96:
00:9c:f4:79:b9:37:ac:f7:e1:d9:ca:28:78:9f:6a:9e:c9:8f:
5c:cf:77:d6:c2:0c:58:b7:b7:a5:25:c9:b7:16:72:79:cc:10:
98:af:f1:69:6e:32:3b:c0:fc:af:f4:26:d5:65:61:dd:0b:59:
4d:9b:0f:8d:a0:fb:cb:ea:ac:4c:5d:35:b6:60:af:a8:cc:b7:
3c:bd:01:88:73:0d:1e:1f:16:3e:51:97:80:7f:97:c6:62:2d:
65:26:61:ef:f4:e5:e5:25:0a:d2:36:59:27:ea:5b:66:0b:b6:
0c:e9:33:cd:79:02:4f:a8:30:45:af:86:95:8e:65:3c:47:f0:
83:da:91:44:24:0d:d9:b4:0a:40:f9:7e:7f:9b:60:0a:bc:9c:
9d:ff:44:82:de:e2:50:30:49:7a:81:2e:d3:e4:de:13:a3:4d:
17:08:81:fe:23:8d:55:af:d5:4e:d7:61:d8:31:e9:4b:23:b0:
2f:07:52:c2:14:11:fe:68:d0:c5:f4:39:0a:69:22:4a:6d:d3:
6c:95:54:c3:58:87:c1:88:97:4c:a5:cc:b6:99:32:5b:6a:53:
70:7c:33:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:57:21 2025 by rpki-client