Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LIRUN/C5po47ks7SIrRazdq5-76Dz2ooA.roa
File: C5po47ks7SIrRazdq5-76Dz2ooA.roa (raw, json)
Hash identifier: ZvfyP9mHwh5arejH0ucWKNJbWNpqNTBnMP3YHkPq2oI=
Subject key identifier: 0B:9A:68:E3:B9:2C:ED:22:2B:45:AC:DD:AB:9F:BB:E8:3C:F6:A2:80
Certificate issuer: /CN=8A57D6F0354EA58A149352BF24330D6630702F9B
Certificate serial: 24
Authority key identifier: 8A:57:D6:F0:35:4E:A5:8A:14:93:52:BF:24:33:0D:66:30:70:2F:9B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ilfW8DVOpYoUk1K_JDMNZjBwL5s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/C5po47ks7SIrRazdq5-76Dz2ooA.roa
Signing time: Mon 03 Jun 2024 17:27:38 +0000
ROA not before: Mon 03 Jun 2024 17:27:38 +0000
ROA not after: Sat 26 Apr 2025 10:00:55 +0000
asID: 150766
IP address blocks: 2401:97e0::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 18 Oct 2024 11:17:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 36 (0x24)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8A57D6F0354EA58A149352BF24330D6630702F9B
Validity
Not Before: Jun 3 17:27:38 2024 GMT
Not After : Apr 26 10:00:55 2025 GMT
Subject: CN=0B9A68E3B92CED222B45ACDDAB9FBBE83CF6A280
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:bc:dc:4a:1b:97:a6:7a:ac:37:ce:6b:d0:45:
51:f8:ad:2b:36:ef:d5:f4:1e:28:5a:7f:62:a9:92:
f3:ca:05:a2:a0:51:2d:45:04:84:ea:f9:6c:3e:65:
a9:33:68:a9:9d:48:a7:d9:c4:fc:23:2d:85:6e:23:
f2:b3:f7:05:ff:74:35:e1:6e:37:27:1d:1b:0d:36:
eb:15:e7:f8:4b:21:b2:6f:04:7a:7b:33:0f:3d:b6:
54:2c:6c:53:ff:bd:b2:f3:9f:eb:91:cc:e4:5a:fa:
bb:21:7d:b3:85:7c:bd:ef:3d:c7:c7:d1:4f:92:b3:
8c:98:9b:40:4e:6c:7a:ce:fb:47:67:30:e8:26:74:
15:31:8a:a8:44:66:7e:a7:ed:02:25:35:57:70:3b:
24:80:05:17:37:9f:87:3a:59:4f:82:fe:cb:b7:e3:
df:7b:6a:f6:f4:4f:45:9d:2e:b2:12:a4:e7:d5:9b:
f2:dc:c3:57:a3:a3:b6:8a:44:28:c9:b8:49:d2:44:
8e:c4:a2:82:72:bf:1b:83:80:f5:49:59:92:cf:de:
ac:fc:9c:1e:df:42:84:dc:0d:1d:f6:0c:40:1a:7d:
2e:cd:d4:22:f4:05:a1:e5:52:a3:38:41:23:3e:15:
9e:50:e6:85:11:4d:9f:73:2e:eb:ac:1c:fe:41:f8:
a4:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:9A:68:E3:B9:2C:ED:22:2B:45:AC:DD:AB:9F:BB:E8:3C:F6:A2:80
X509v3 Authority Key Identifier:
keyid:8A:57:D6:F0:35:4E:A5:8A:14:93:52:BF:24:33:0D:66:30:70:2F:9B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/ilfW8DVOpYoUk1K_JDMNZjBwL5s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ilfW8DVOpYoUk1K_JDMNZjBwL5s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/C5po47ks7SIrRazdq5-76Dz2ooA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:97e0::/32
Signature Algorithm: sha256WithRSAEncryption
28:a9:de:bd:2f:c7:b1:ed:5e:71:90:43:17:a7:28:b5:ab:03:
db:78:a5:35:53:79:86:6e:7d:27:2e:11:62:6e:c9:59:59:ca:
42:8c:b6:46:49:55:48:5f:a9:53:fc:a3:95:e9:30:51:b6:fc:
38:c7:6d:b7:3c:1a:d8:3c:25:d9:14:32:4b:a1:da:c9:59:be:
cd:8d:4b:9a:05:be:e2:e5:5c:67:92:7c:60:ce:69:12:44:29:
40:ab:12:45:08:e6:72:64:9a:37:a1:a2:9b:85:c2:37:cf:ae:
7b:0b:5f:19:7b:d5:13:65:c8:05:85:0c:df:58:b5:33:18:5a:
96:dd:cf:de:72:b7:3c:65:23:5f:71:69:96:24:2a:07:7e:fd:
b3:72:db:59:4e:08:92:78:29:1c:1a:96:56:46:b7:62:d5:79:
5e:48:5e:26:1f:53:17:98:4a:59:0a:cc:5a:f5:f4:e4:b7:5f:
58:c4:19:c4:6c:e4:7e:3a:f5:72:0a:f3:f4:9d:b4:af:65:c9:
ef:bc:b7:f7:4e:d0:ea:79:20:45:6a:10:7f:8d:7f:6e:96:b6:
63:ea:44:72:6d:18:d2:57:0d:f9:6f:f4:90:9c:07:a1:1a:7c:
ed:53:2b:e1:8c:98:32:78:bf:db:c0:86:1f:20:94:0d:3d:a9:
c1:9e:73:44
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgIBJDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4QTU3
RDZGMDM1NEVBNThBMTQ5MzUyQkYyNDMzMEQ2NjMwNzAyRjlCMB4XDTI0MDYwMzE3
MjczOFoXDTI1MDQyNjEwMDA1NVowMzExMC8GA1UEAxMoMEI5QTY4RTNCOTJDRUQy
MjJCNDVBQ0REQUI5RkJCRTgzQ0Y2QTI4MDCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAL+83Eobl6Z6rDfOa9BFUfitKzbv1fQeKFp/YqmS88oFoqBRLUUE
hOr5bD5lqTNoqZ1Ip9nE/CMthW4j8rP3Bf90NeFuNycdGw026xXn+Eshsm8Eensz
Dz22VCxsU/+9svOf65HM5Fr6uyF9s4V8ve89x8fRT5KzjJibQE5ses77R2cw6CZ0
FTGKqERmfqftAiU1V3A7JIAFFzefhzpZT4L+y7fj33tq9vRPRZ0ushKk59Wb8tzD
V6OjtopEKMm4SdJEjsSignK/G4OA9UlZks/erPycHt9ChNwNHfYMQBp9Ls3UIvQF
oeVSozhBIz4VnlDmhRFNn3Mu66wc/kH4pOUCAwEAAaOCAe0wggHpMB0GA1UdDgQW
BBQLmmjjuSztIitFrN2rn7voPPaigDAfBgNVHSMEGDAWgBSKV9bwNU6lihSTUr8k
Mw1mMHAvmzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFsGA1UdHwRUMFIwUKBO
oEyGSnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9MSVJVTi9p
bGZXOERWT3BZb1VrMUtfSkRNTlpqQndMNXMuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L2lsZlc4RFZPcFlvVWsxS19KRE1OWmpCd0w1cy5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGbBggrBgEFBQcBCwSBjjCBizBWBggrBgEFBQcwC4ZKcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0xJUlVOL0M1cG80N2tzN1NJclJhemRxNS03
NkR6Mm9vQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9y
cmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAZfg
MA0GCSqGSIb3DQEBCwUAA4IBAQAoqd69L8ex7V5xkEMXpyi1qwPbeKU1U3mGbn0n
LhFibslZWcpCjLZGSVVIX6lT/KOV6TBRtvw4x223PBrYPCXZFDJLodrJWb7NjUua
Bb7i5VxnknxgzmkSRClAqxJFCOZyZJo3oaKbhcI3z657C18Ze9UTZcgFhQzfWLUz
GFqW3c/ecrc8ZSNfcWmWJCoHfv2zcttZTgiSeCkcGpZWRrdi1XleSF4mH1MXmEpZ
Csxa9fTkt19YxBnEbOR+OvVyCvP0nbSvZcnvvLf3TtDqeSBFahB/jX9ulrZj6kRy
bRjSVw35b/SQnAehGnztUyvhjJgyeL/bwIYfIJQNPanBnnNE
-----END CERTIFICATE-----
Generated at Fri Oct 18 13:45:18 2024 by rpki-client on console-fra.rpki-client.org