Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/eAJVkLaku43w7o8lmO8C1-hWynU.roa
File: eAJVkLaku43w7o8lmO8C1-hWynU.roa (raw, json)
Hash identifier: XLqYrQsGhIru68C9Nw8WbTuyOZXSkhcK6EsZO7MHkuI=
Subject key identifier: 78:02:55:90:B6:A4:BB:8D:F0:EE:8F:25:98:EF:02:D7:E8:56:CA:75
Certificate issuer: /CN=6CA5B8B7E0A281C467262246DF0C859DF5F87F1F
Certificate serial: C3
Authority key identifier: 6C:A5:B8:B7:E0:A2:81:C4:67:26:22:46:DF:0C:85:9D:F5:F8:7F:1F
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/bKW4t-CigcRnJiJG3wyFnfX4fx8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/eAJVkLaku43w7o8lmO8C1-hWynU.roa
Signing time: Tue 24 Dec 2024 05:47:43 +0000
ROA not before: Tue 24 Dec 2024 05:47:43 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 152609
IP address blocks: 2401:8c20:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:33:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 195 (0xc3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6CA5B8B7E0A281C467262246DF0C859DF5F87F1F
Validity
Not Before: Dec 24 05:47:43 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=78025590B6A4BB8DF0EE8F2598EF02D7E856CA75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:76:b8:17:20:27:d1:ea:a3:fc:8e:45:34:82:
b3:44:8f:c6:22:3a:2d:c3:46:30:5e:17:c7:e3:15:
10:7e:45:90:ad:49:d8:35:17:cf:2a:26:45:98:e8:
cc:6a:fd:d1:5f:a9:fe:70:62:2d:fc:79:32:eb:69:
f9:7e:45:a4:d3:8f:61:78:95:45:a1:4b:cf:96:69:
01:29:d0:ef:9c:dd:fa:68:94:ab:45:cf:1b:c4:4c:
15:25:12:cd:90:6f:ff:37:a8:4d:52:c2:f0:03:bf:
83:02:04:9d:10:f4:f9:86:b5:76:bc:04:f4:5c:53:
d9:ef:c2:57:0a:bf:0d:4f:74:43:74:46:e5:65:bb:
63:98:bf:b4:02:d8:12:b5:a1:13:7a:5d:56:81:af:
19:86:bb:52:d2:b5:da:d6:60:79:3b:8b:ae:f5:6a:
92:9a:bc:73:51:3b:74:45:e3:e9:b7:c7:ba:c0:6d:
e9:fe:d9:7b:f8:f1:e4:3b:96:82:65:24:b1:e6:a3:
42:4d:7a:9a:ba:a0:5b:06:19:47:77:f9:12:5b:6a:
08:bd:57:5b:02:e6:d9:8e:65:e7:c7:13:7b:10:38:
a0:5e:32:ed:23:ba:16:bc:65:d8:51:cf:47:23:a9:
bf:e6:61:5e:48:12:52:95:db:bb:f7:2b:ec:f4:4b:
16:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:02:55:90:B6:A4:BB:8D:F0:EE:8F:25:98:EF:02:D7:E8:56:CA:75
X509v3 Authority Key Identifier:
keyid:6C:A5:B8:B7:E0:A2:81:C4:67:26:22:46:DF:0C:85:9D:F5:F8:7F:1F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/bKW4t-CigcRnJiJG3wyFnfX4fx8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/bKW4t-CigcRnJiJG3wyFnfX4fx8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/eAJVkLaku43w7o8lmO8C1-hWynU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:8c20:1::/48
Signature Algorithm: sha256WithRSAEncryption
97:24:31:bf:67:cb:c0:7b:4e:aa:56:92:ce:ff:99:08:bc:81:
83:f6:ab:02:9b:44:c1:b0:d2:41:9e:2d:db:68:5c:b4:34:50:
87:ab:fe:d2:13:79:df:c1:6e:45:ea:46:93:55:be:19:35:37:
64:e9:57:34:b5:74:44:77:cf:35:91:57:77:f6:68:14:49:e8:
93:be:ee:11:5b:ac:bd:54:6b:06:62:19:4e:31:92:6f:d7:12:
fe:75:c1:23:ed:c3:cf:db:88:a8:1b:73:d3:53:22:e4:b9:14:
15:e6:ec:a6:05:c0:94:dd:ce:02:af:b6:c3:9a:a7:21:01:3d:
7b:6d:8d:10:e9:a7:19:9d:80:cb:18:b8:a5:f2:8e:fd:ff:a5:
c8:d5:6d:f0:6f:3d:59:9f:73:34:8f:de:2a:36:7a:9a:68:07:
d5:54:0a:01:a1:60:e8:07:2e:1f:1b:29:d9:25:bb:10:a1:8d:
d9:29:c6:43:7a:1c:35:b7:9b:07:8a:96:62:6b:4f:7b:12:cf:
f0:ed:b2:04:32:de:9b:20:95:33:18:77:fb:46:d0:57:51:16:
a1:16:cf:1b:3c:0f:fb:c8:61:14:bb:f9:a3:86:22:87:46:f9:
c6:98:ee:72:07:45:98:9a:52:08:29:40:cd:60:4b:06:9d:7a:
2a:19:1b:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 19:24:17 2025 by rpki-client