Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/gpkSvlsGgQyNwqCIrBfmoaLbK_4.roa
File: gpkSvlsGgQyNwqCIrBfmoaLbK_4.roa (raw, json)
Hash identifier: mjG98Hl1nksP6pWUc7Bow5fCZzRE5VP085kgGUydSZ0=
Subject key identifier: 82:99:12:BE:5B:06:81:0C:8D:C2:A0:88:AC:17:E6:A1:A2:DB:2B:FE
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 16A6
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/gpkSvlsGgQyNwqCIrBfmoaLbK_4.roa
Signing time: Mon 26 Aug 2024 05:22:27 +0000
ROA not before: Mon 26 Aug 2024 05:22:27 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131586
IP address blocks: 2401:a040::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5798 (0x16a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Aug 26 05:22:27 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=829912BE5B06810C8DC2A088AC17E6A1A2DB2BFE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:75:63:66:c3:f3:91:1f:f8:41:81:ec:97:83:
93:11:48:2b:7a:11:02:3b:1e:2b:5e:ff:48:10:3d:
ed:e6:e6:8d:cc:0f:0a:a8:9b:39:25:dd:eb:f2:46:
7f:80:64:2f:ec:3c:57:f6:14:42:65:db:f7:83:4c:
c7:6e:7e:86:e2:c5:d0:e2:61:a1:12:e3:b5:e1:f8:
5d:68:9c:a6:38:bd:b3:97:b9:fc:78:3f:3a:ab:c0:
9e:48:d5:2b:b7:d3:36:93:c1:92:a8:1e:98:6b:d4:
ff:d0:75:de:ff:d1:66:96:87:96:a0:0d:24:64:9f:
49:50:91:58:24:83:bd:1c:0d:c3:55:74:d2:e5:fe:
25:c0:68:7a:84:a5:c0:94:15:29:9b:fe:14:60:3d:
b0:39:1f:89:3a:32:37:76:93:23:96:65:5e:30:23:
cf:b9:28:23:56:86:4d:52:68:dc:cf:1d:5a:ad:88:
20:ac:2d:ad:8b:89:66:b2:03:31:cf:cd:55:7f:ee:
bb:86:ef:fb:28:51:a9:74:22:00:ef:b3:69:25:01:
dc:4f:2a:82:ec:72:c9:ee:d8:8d:a4:d4:f1:59:8b:
9d:6a:43:8e:5d:fb:48:0a:61:ea:0b:0d:26:32:6f:
8e:ef:5b:c7:64:f8:94:5b:00:8d:74:15:8c:02:1d:
58:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:99:12:BE:5B:06:81:0C:8D:C2:A0:88:AC:17:E6:A1:A2:DB:2B:FE
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/gpkSvlsGgQyNwqCIrBfmoaLbK_4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:a040::/32
Signature Algorithm: sha256WithRSAEncryption
8d:46:34:dc:67:de:9a:7b:69:e4:b8:39:89:5d:60:1e:0d:cc:
12:bc:d2:aa:33:7e:b9:e8:0a:13:0b:75:86:ab:88:c6:d0:d7:
a7:fe:a4:61:c2:19:85:07:44:4a:ad:ef:40:3d:92:ac:0e:2e:
65:fc:60:15:14:58:7a:ed:c2:7a:1a:90:b7:81:48:00:7d:e1:
8f:b8:79:de:f2:15:d4:99:3c:22:63:e6:9b:bd:1c:12:05:89:
dd:bb:b3:8c:d8:78:ad:a1:6c:03:0a:5a:a8:b4:2c:a0:3a:a4:
b2:fc:b1:cd:97:69:42:06:ad:43:00:cb:a7:65:cf:b4:36:31:
fb:13:ca:5f:4a:3b:10:79:0f:00:51:f0:1e:37:be:26:2a:11:
88:24:f5:69:28:b1:d1:e1:d6:86:82:c0:3b:77:54:30:af:38:
77:0b:b0:62:39:8e:a4:a9:b4:79:34:91:14:2f:48:4e:c8:5e:
74:ac:0e:53:9e:f3:4c:a4:e5:48:49:49:13:cd:6a:be:5b:80:
dd:87:f4:61:8e:e1:74:a8:3f:9b:e2:b8:e5:0a:2c:aa:eb:7d:
e3:2f:77:9d:10:10:a2:17:34:81:a8:91:87:f8:4e:e8:f4:d1:
c0:97:34:ab:f5:b0:4c:17:6c:3a:11:12:5b:c2:31:07:fb:36:
db:b7:9f:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:53:50 2025 by rpki-client