Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/ZccaY02QNDvcEYvS9jfmgWnOixo.roa
File: ZccaY02QNDvcEYvS9jfmgWnOixo.roa (raw, json)
Hash identifier: H2SQLbXiI2Xed/x2D+KTXPUXWOyhap3QotLx4KNTmj4=
Subject key identifier: 65:C7:1A:63:4D:90:34:3B:DC:11:8B:D2:F6:37:E6:81:69:CE:8B:1A
Certificate issuer: /CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Certificate serial: 0677
Authority key identifier: AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/ZccaY02QNDvcEYvS9jfmgWnOixo.roa
Signing time: Mon 26 Aug 2024 05:18:40 +0000
ROA not before: Mon 26 Aug 2024 05:18:40 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 134522
IP address blocks: 2401:95c0::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 11 Dec 2024 12:41:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1655 (0x677)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Validity
Not Before: Aug 26 05:18:40 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=65C71A634D90343BDC118BD2F637E68169CE8B1A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:51:e9:59:82:7f:76:c7:33:81:f6:ae:9d:c7:
06:dd:8d:ce:5e:06:c4:ab:b7:00:9c:34:3a:92:9b:
b8:f1:68:20:3b:0f:bf:a5:da:89:25:41:06:c9:da:
1e:69:90:96:d5:2e:4e:5b:b9:d0:1a:1e:fa:e1:5f:
84:2a:46:1d:31:37:97:c3:53:83:c4:92:7c:27:3b:
ee:f9:cb:ce:c8:32:0d:64:45:d4:a9:6d:75:3f:86:
28:96:57:3a:94:49:6b:7a:06:3b:fe:f1:fc:82:a2:
6f:70:92:e1:8b:cf:21:cc:8a:a4:89:76:81:a2:dc:
0e:f2:67:a6:75:33:03:ab:29:53:de:4c:d4:18:26:
67:c2:7c:09:46:94:93:bf:64:32:14:fd:59:68:f0:
13:80:4a:d0:2a:09:eb:e1:37:6c:42:d7:73:50:8d:
2d:b3:b8:a6:40:03:d1:a3:8b:85:e3:26:b2:b2:cc:
3a:a9:a4:1e:92:1e:a8:d4:8e:4b:30:23:cb:9e:d0:
e3:6e:aa:13:09:e0:40:35:60:e2:f9:bb:8b:6f:d3:
1a:5e:8d:04:b0:36:49:80:f6:04:db:f3:44:43:c2:
5e:7c:33:91:43:7f:ea:a7:ed:ec:c4:d1:1e:65:76:
9c:5a:bb:01:67:9d:8d:b0:c2:d9:29:2f:a7:bd:9b:
53:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:C7:1A:63:4D:90:34:3B:DC:11:8B:D2:F6:37:E6:81:69:CE:8B:1A
X509v3 Authority Key Identifier:
keyid:AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/ZccaY02QNDvcEYvS9jfmgWnOixo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:95c0::/32
Signature Algorithm: sha256WithRSAEncryption
0c:81:96:0e:1d:5e:f0:64:7d:c4:a2:08:78:ae:78:87:93:2b:
f7:fa:a7:bd:eb:2a:90:74:ed:ac:38:00:ad:14:32:f5:5e:4e:
02:9f:f6:6b:07:41:a0:84:a2:5f:eb:1c:dd:78:c4:5d:65:8e:
71:7e:c2:f8:42:f0:3b:d9:a7:43:93:73:35:6c:90:78:ee:0c:
b1:49:92:b7:35:5d:e2:3f:9f:18:f1:f3:2c:02:bb:ca:40:3d:
37:a2:3f:cf:44:30:3d:ae:6e:10:58:6c:7e:d4:96:8e:2d:1b:
76:17:eb:a0:47:bf:d1:65:53:b2:73:aa:b1:b8:7f:b8:e1:55:
b1:c7:d6:ab:3b:9e:88:36:9d:30:97:d7:81:3f:12:7e:a9:16:
6d:c8:03:ca:bc:1b:1b:6f:08:3f:e4:fd:45:c7:80:2e:c8:04:
3f:1c:73:2f:de:2a:e8:a0:4d:fd:f0:f7:35:e9:d4:bf:95:98:
d1:e8:d2:22:c4:1c:f9:c6:58:aa:fb:a1:e5:29:e2:5f:d5:24:
ce:89:f7:0b:73:7a:ec:26:87:66:a5:f7:d0:ba:f2:e3:d7:61:
c9:70:d5:c1:d2:d8:07:c6:45:35:1b:c8:4d:6c:12:07:ad:dd:
1f:0c:0a:9b:62:4b:7d:fa:50:b0:75:50:f0:d1:30:1c:37:41:
91:05:0e:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 00:13:39 2025 by rpki-client