Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/M2NIM/N1sxnrpygTa32kg3yy7Rz47NYvk.roa
File: N1sxnrpygTa32kg3yy7Rz47NYvk.roa (raw, json)
Hash identifier: HLtjxSRImzQPbDky2yIJYgOruKt5Xr0UA3sOkjW22Ts=
Subject key identifier: 37:5B:31:9E:BA:72:81:36:B7:DA:48:37:CB:2E:D1:CF:8E:CD:62:F9
Certificate issuer: /CN=CC4EFE97C9C1EA48F01A1F865DD617EBB13351A1
Certificate serial: E3
Authority key identifier: CC:4E:FE:97:C9:C1:EA:48:F0:1A:1F:86:5D:D6:17:EB:B1:33:51:A1
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zE7-l8nB6kjwGh-GXdYX67EzUaE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/M2NIM/N1sxnrpygTa32kg3yy7Rz47NYvk.roa
Signing time: Tue 28 Jan 2025 18:14:36 +0000
ROA not before: Tue 28 Jan 2025 18:14:36 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9923
IP address blocks: 2401:8420::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:34:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 227 (0xe3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CC4EFE97C9C1EA48F01A1F865DD617EBB13351A1
Validity
Not Before: Jan 28 18:14:36 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=375B319EBA728136B7DA4837CB2ED1CF8ECD62F9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:ae:87:72:98:39:8f:97:89:25:c1:a1:13:2b:
cf:0d:ce:24:b3:82:6d:0b:46:0b:18:f4:98:58:c6:
0f:64:ef:b4:82:a5:1e:89:d7:23:09:9a:2c:57:63:
31:17:2b:32:ef:f7:9f:c7:e0:e8:92:d0:94:5f:41:
48:55:fd:b5:e1:31:1e:b7:c9:ed:ac:42:bc:f3:4d:
69:64:4f:cc:0a:90:9c:64:55:6b:ea:8f:31:62:26:
32:79:14:53:ca:3c:90:19:d2:0f:c5:52:34:94:8f:
32:0b:7a:c6:36:bc:92:64:8a:b9:2e:40:73:e3:9f:
59:3f:1e:ee:db:f9:3e:f5:29:9c:e3:8a:e9:a1:53:
1e:84:b0:f3:fd:9a:95:27:87:6f:38:5f:fc:52:0f:
4d:77:51:47:ec:0d:03:3f:4b:80:04:1d:e9:23:cb:
62:d9:51:46:9a:9f:81:4e:3f:37:ce:d4:6d:ef:29:
81:0c:46:f9:d5:4c:8b:4b:19:c7:45:7f:3d:42:7b:
9b:1a:00:9e:4e:2c:d3:2e:ba:ca:bb:bf:9c:6a:ca:
8e:22:30:cb:11:fd:cd:82:0c:01:51:22:68:94:59:
74:62:1a:be:f0:62:e6:f7:4a:18:9c:b5:fb:d1:cd:
7d:4e:29:ff:3a:99:a9:75:6b:7c:1f:46:65:10:e3:
83:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:5B:31:9E:BA:72:81:36:B7:DA:48:37:CB:2E:D1:CF:8E:CD:62:F9
X509v3 Authority Key Identifier:
keyid:CC:4E:FE:97:C9:C1:EA:48:F0:1A:1F:86:5D:D6:17:EB:B1:33:51:A1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/M2NIM/zE7-l8nB6kjwGh-GXdYX67EzUaE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zE7-l8nB6kjwGh-GXdYX67EzUaE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/M2NIM/N1sxnrpygTa32kg3yy7Rz47NYvk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:8420::/32
Signature Algorithm: sha256WithRSAEncryption
b8:33:93:16:e2:e3:86:ca:56:ce:5a:ee:41:85:16:57:9f:fe:
65:87:91:b9:d0:d6:85:2a:10:eb:2a:42:41:8b:c2:0e:c0:14:
cc:3a:ea:be:e4:91:88:04:7e:0b:97:a5:3f:8a:25:6c:aa:8b:
08:94:2e:7d:16:90:e4:e6:f3:d8:34:fb:3a:b0:09:77:a1:60:
dd:46:ff:c8:49:77:2f:fb:4f:43:99:ce:eb:16:af:0b:dd:20:
89:97:22:ee:4f:36:7b:6e:fc:4d:25:7f:c0:48:71:71:11:89:
31:47:5e:d1:fd:e8:f3:4d:9f:65:8c:47:70:37:08:01:af:1b:
12:91:c9:14:78:83:94:ca:95:13:12:24:1a:73:a8:b3:d4:b2:
e7:01:7f:ff:f8:06:0d:71:99:3c:fc:93:d2:fb:e2:a2:17:6f:
7b:4a:49:02:07:06:5b:0d:63:55:e2:e0:d7:f3:e7:21:7f:aa:
01:53:da:f8:f1:67:d3:98:1c:56:59:24:32:2a:30:69:de:7e:
a2:6d:db:7a:b3:c9:39:e6:13:b6:8b:65:5b:28:c3:d4:67:6b:
8b:8b:0b:ab:0c:01:65:89:95:eb:f9:b0:52:ff:86:c6:4f:08:
4b:e9:00:25:69:c0:b8:89:19:34:5d:23:d7:bc:65:b7:b2:dd:
5e:58:70:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 01:57:37 2025 by rpki-client