Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LIRUN/hqb9tzr8bKfFqPGLfgihoNdwWyY.roa
File: hqb9tzr8bKfFqPGLfgihoNdwWyY.roa (raw, json)
Hash identifier: TtpTPuALkinL9K103vol95QXMvxcdpTB6UydgRvdZ3w=
Subject key identifier: 86:A6:FD:B7:3A:FC:6C:A7:C5:A8:F1:8B:7E:08:A1:A0:D7:70:5B:26
Certificate issuer: /CN=8A57D6F0354EA58A149352BF24330D6630702F9B
Certificate serial: 03
Authority key identifier: 8A:57:D6:F0:35:4E:A5:8A:14:93:52:BF:24:33:0D:66:30:70:2F:9B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ilfW8DVOpYoUk1K_JDMNZjBwL5s.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/hqb9tzr8bKfFqPGLfgihoNdwWyY.roa
Signing time: Mon 29 Apr 2024 02:07:25 +0000
ROA not before: Mon 29 Apr 2024 02:07:25 +0000
ROA not after: Sat 26 Apr 2025 10:00:55 +0000
asID: 131147
IP address blocks: 2401:97e0::/32 maxlen: 48
Validation: Failed, certificate revoked on Fri 18 Oct 2024 11:18:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8A57D6F0354EA58A149352BF24330D6630702F9B
Validity
Not Before: Apr 29 02:07:25 2024 GMT
Not After : Apr 26 10:00:55 2025 GMT
Subject: CN=86A6FDB73AFC6CA7C5A8F18B7E08A1A0D7705B26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:d8:21:ae:42:a3:0d:b1:d2:82:53:3e:6d:f6:
0d:f4:78:23:52:33:42:6b:8c:95:1a:dd:93:aa:78:
95:0a:1e:4c:07:46:dd:c5:ea:96:45:8b:88:b0:ad:
53:fd:f1:39:27:ab:62:31:bf:ed:f8:3b:cc:eb:83:
08:75:f9:1c:99:ab:3a:cc:45:74:8c:99:75:4c:72:
27:71:52:b4:09:19:43:6c:7f:d5:6b:59:72:e4:63:
e2:b1:63:ef:75:fd:4a:8b:0a:4d:76:2e:24:89:5c:
b0:f2:13:97:05:e9:4c:2a:c3:24:66:f0:5c:36:da:
6a:77:04:97:4b:47:0a:85:a3:27:92:59:c9:81:09:
36:40:59:89:c3:a4:41:a4:03:9f:e2:cd:8c:e9:15:
e6:fa:a1:88:68:ed:e4:af:99:14:6b:f5:5e:a4:67:
72:91:46:e0:bf:1e:cf:26:6a:02:00:5d:bd:c3:c7:
ed:22:71:e2:ff:9b:24:7c:6c:f4:14:aa:2d:45:6c:
7c:b4:3c:e3:29:45:c2:80:14:93:a9:9b:95:4c:6f:
94:4d:25:cf:cf:8e:de:42:3c:a7:bf:c0:7d:e4:94:
26:d6:38:f0:b0:69:8f:e2:94:21:75:a9:ed:d5:68:
94:af:41:19:b6:72:a7:48:d3:d8:ce:a3:e3:ea:2a:
a4:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:A6:FD:B7:3A:FC:6C:A7:C5:A8:F1:8B:7E:08:A1:A0:D7:70:5B:26
X509v3 Authority Key Identifier:
keyid:8A:57:D6:F0:35:4E:A5:8A:14:93:52:BF:24:33:0D:66:30:70:2F:9B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/ilfW8DVOpYoUk1K_JDMNZjBwL5s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ilfW8DVOpYoUk1K_JDMNZjBwL5s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/hqb9tzr8bKfFqPGLfgihoNdwWyY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:97e0::/32
Signature Algorithm: sha256WithRSAEncryption
76:52:39:7a:6c:a9:47:ed:6a:49:05:45:23:ca:16:42:81:ad:
d0:9d:9f:44:e1:c7:6a:e7:88:fd:6a:25:00:bc:02:da:30:25:
68:bc:f6:65:18:9a:f2:3f:ef:1e:77:b7:42:1b:00:92:7b:a5:
a1:88:e4:b2:db:7e:93:91:ec:1d:c1:ff:e5:97:da:d5:d3:1c:
cd:97:ec:2b:16:39:53:8b:47:53:d5:85:7b:15:e8:30:4c:f3:
ac:78:c2:5a:00:7a:ca:9c:40:ed:6d:3a:90:d0:df:b9:23:3e:
14:fa:08:26:44:ff:68:e5:67:f8:83:1b:ac:a3:87:f4:7e:8f:
0b:0a:be:e7:aa:fc:39:28:91:ce:32:ea:ca:46:2c:9a:23:c6:
3c:69:a7:29:55:0e:d3:6f:6a:e1:33:cb:d1:b2:48:a6:ea:87:
86:01:d6:a0:99:ae:63:83:00:d1:16:29:cb:6f:07:47:48:77:
51:e1:2f:e4:c8:31:af:37:6a:05:2b:02:4c:a3:ec:39:cc:66:
c0:a3:3f:b9:a9:d4:7e:a5:0b:25:e1:62:4f:db:23:c2:26:fa:
6c:5b:18:63:fd:ef:4a:db:6d:47:da:92:55:e6:97:87:df:1d:
dc:2a:b1:ec:1e:88:14:58:31:26:c7:8b:4d:ad:fb:5c:f6:cc:
4d:95:80:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:17:00 2025 by rpki-client