Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HUANGDEXIA/hEgysvn-vXLV-B8WbXs4lOb7jog.roa
File: hEgysvn-vXLV-B8WbXs4lOb7jog.roa (raw, json)
Hash identifier: Ovj1cJhlnw4y/6i12zklvP/B9fo2HM1/K4T+LpG23nA=
Subject key identifier: 84:48:32:B2:F9:FE:BD:72:D5:F8:1F:16:6D:7B:38:94:E6:FB:8E:88
Certificate issuer: /CN=CAA8405CBD8CE6AE1EA3A9DAA6779756EC6EDC42
Certificate serial: F0
Authority key identifier: CA:A8:40:5C:BD:8C:E6:AE:1E:A3:A9:DA:A6:77:97:56:EC:6E:DC:42
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/yqhAXL2M5q4eo6napneXVuxu3EI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HUANGDEXIA/hEgysvn-vXLV-B8WbXs4lOb7jog.roa
Signing time: Wed 04 Sep 2024 09:16:38 +0000
ROA not before: Wed 04 Sep 2024 09:16:38 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131642
IP address blocks: 2401:39a0::/32 maxlen: 64
Validation: Failed, certificate revoked on Sun 22 Sep 2024 18:10:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 240 (0xf0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CAA8405CBD8CE6AE1EA3A9DAA6779756EC6EDC42
Validity
Not Before: Sep 4 09:16:38 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=844832B2F9FEBD72D5F81F166D7B3894E6FB8E88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:3b:26:89:67:37:c9:d4:58:c0:d8:88:15:7e:
ca:0a:c3:ca:54:0c:b8:99:d0:e7:0c:b6:c0:72:9c:
03:57:a7:0d:3b:91:b7:27:3a:27:bc:87:b3:d7:d7:
fe:43:1b:3e:25:6f:32:96:00:88:26:21:59:31:1c:
3c:2b:01:53:66:24:d5:c9:98:9b:97:ac:31:18:ba:
95:31:14:c0:9d:71:83:11:c9:ab:43:99:e4:06:39:
a5:db:9c:19:3e:95:ac:70:57:71:4b:22:11:e8:c1:
f5:c7:80:a1:38:90:42:ec:0f:50:39:5a:7e:ca:d2:
94:68:c4:d6:83:a0:76:33:be:23:b6:26:7e:d2:ad:
e4:b1:29:ca:bf:a4:fa:74:c6:4a:9b:48:13:2d:6b:
4c:81:c1:4c:ee:98:ff:95:5d:f3:20:2f:63:00:77:
b2:2e:43:51:ab:46:37:6f:50:64:53:1d:74:c1:bc:
47:71:5e:23:d4:ae:1c:2c:52:42:45:51:f1:1f:66:
21:df:b4:89:02:f3:0e:56:25:4e:d9:25:c4:da:87:
0c:c8:be:8d:fc:ae:84:fc:51:c9:93:67:ac:fd:7f:
9e:96:e7:08:be:04:69:7a:49:85:bf:0d:18:56:97:
b2:7b:de:fb:5c:b1:c4:ea:34:72:a4:5b:ec:8a:aa:
69:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:48:32:B2:F9:FE:BD:72:D5:F8:1F:16:6D:7B:38:94:E6:FB:8E:88
X509v3 Authority Key Identifier:
keyid:CA:A8:40:5C:BD:8C:E6:AE:1E:A3:A9:DA:A6:77:97:56:EC:6E:DC:42
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HUANGDEXIA/yqhAXL2M5q4eo6napneXVuxu3EI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/yqhAXL2M5q4eo6napneXVuxu3EI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HUANGDEXIA/hEgysvn-vXLV-B8WbXs4lOb7jog.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:39a0::/32
Signature Algorithm: sha256WithRSAEncryption
46:0f:1f:43:04:a0:28:f8:98:31:b5:8e:a8:97:8f:70:ac:1b:
62:53:77:6d:48:5e:1d:17:2d:e8:5b:56:e4:84:bf:c7:d7:5c:
3e:57:f0:b1:a6:55:6d:68:9c:f1:2c:d8:1e:fe:e9:14:ee:df:
a5:50:59:cd:c4:57:c7:16:b4:5b:9b:cf:e1:50:5c:2f:1d:72:
ec:cf:c5:b9:82:f0:76:28:0c:37:0e:81:d6:53:2a:dd:b4:de:
d0:95:89:47:66:2c:82:b5:78:57:cf:c3:1f:fa:c7:f7:7b:5c:
c6:26:e5:43:45:22:83:b8:2f:42:81:0c:fb:65:9c:31:47:32:
e6:cc:89:38:82:80:60:ee:62:bc:7d:71:74:e4:52:d8:57:61:
22:82:8a:ab:e0:08:38:60:ce:b8:00:a1:4c:b0:fd:55:5c:6d:
f6:88:b8:bd:db:fc:9b:bb:69:bb:82:c6:0c:db:00:b4:4e:7d:
b5:6b:9c:01:47:10:8e:8a:5c:9d:d3:d9:62:3e:b9:c9:15:04:
69:b5:62:4f:00:7f:16:67:61:7a:32:e5:dc:33:41:8f:f3:b0:
31:01:14:74:99:96:c5:dc:ff:5a:3b:7f:3c:13:1b:c0:90:78:
d0:29:b2:4f:e9:20:7c:37:d3:75:e6:fe:17:ba:06:d1:df:7b:
99:21:ff:67
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Sep 23 06:26:21 2024 by rpki-client on console-fra.rpki-client.org