Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/DDX1cN0Yw_IhrxAIGZb9wb815ak.roa
File: DDX1cN0Yw_IhrxAIGZb9wb815ak.roa (raw, json)
Hash identifier: mlGM8Y9bOgkkxwWiYPvBjyTuKfyhcowgpgAd2xrYMxQ=
Subject key identifier: 0C:35:F5:70:DD:18:C3:F2:21:AF:10:08:19:96:FD:C1:BF:35:E5:A9
Certificate issuer: /CN=35FF90306B47A7DE0307F0E335B4DC7F27DEA4FB
Certificate serial: C1
Authority key identifier: 35:FF:90:30:6B:47:A7:DE:03:07:F0:E3:35:B4:DC:7F:27:DE:A4:FB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Nf-QMGtHp94DB_DjNbTcfyfepPs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/DDX1cN0Yw_IhrxAIGZb9wb815ak.roa
Signing time: Wed 18 Sep 2024 14:58:54 +0000
ROA not before: Wed 18 Sep 2024 14:58:54 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 216123
IP address blocks: 2401:5f20:f000::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 22 Oct 2024 18:01:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 193 (0xc1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35FF90306B47A7DE0307F0E335B4DC7F27DEA4FB
Validity
Not Before: Sep 18 14:58:54 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=0C35F570DD18C3F221AF10081996FDC1BF35E5A9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a8:1b:f0:17:d0:8a:12:96:1d:40:fa:2f:f6:
a2:8c:87:d6:af:03:51:7b:07:3c:69:e5:4b:90:95:
57:35:37:15:58:e2:86:1c:9a:53:b4:a1:4c:1e:29:
4f:eb:d9:b1:79:c5:8f:e0:bb:4f:6b:19:31:1d:92:
26:b4:89:9d:2a:47:3b:11:bb:ad:7e:26:4c:ae:aa:
8b:fe:fe:cd:a3:68:a5:38:35:69:e3:a9:c2:63:6d:
45:52:56:a0:81:f7:62:1a:21:36:57:f6:65:f3:3c:
12:1b:88:ec:45:57:1b:73:00:9c:fc:68:fb:ee:cf:
9c:ad:dc:8d:c6:d7:e7:8a:8d:ff:9a:4e:02:a4:08:
22:38:a3:c8:0d:a6:36:e4:3f:3f:c6:a2:bd:d7:08:
b4:74:16:19:c1:56:e5:60:04:66:da:45:e2:9c:b7:
9c:2b:c8:dd:8c:ae:24:84:be:21:59:b1:af:f7:33:
9e:c5:88:fe:cc:61:2a:cc:ca:97:af:f7:3d:4e:86:
36:68:fa:57:b3:b6:ec:5c:13:55:c6:98:e7:d3:e9:
7e:f0:f8:28:e2:d2:07:b5:66:34:85:15:dd:b4:34:
8f:75:8f:f9:ac:dc:65:14:f6:11:3d:c2:a3:8c:82:
11:8b:5d:13:15:6e:0d:ba:90:1a:50:f7:22:f0:b7:
74:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:35:F5:70:DD:18:C3:F2:21:AF:10:08:19:96:FD:C1:BF:35:E5:A9
X509v3 Authority Key Identifier:
keyid:35:FF:90:30:6B:47:A7:DE:03:07:F0:E3:35:B4:DC:7F:27:DE:A4:FB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/Nf-QMGtHp94DB_DjNbTcfyfepPs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Nf-QMGtHp94DB_DjNbTcfyfepPs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/DDX1cN0Yw_IhrxAIGZb9wb815ak.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:5f20:f000::/48
Signature Algorithm: sha256WithRSAEncryption
5f:2d:cc:19:9d:f7:b6:39:c6:b0:c5:88:87:74:21:77:b2:a2:
30:62:77:9b:ce:f7:cb:5f:50:13:40:44:a5:b1:19:9b:49:91:
b9:09:84:8f:73:db:2f:00:ae:77:ea:80:2a:a5:c7:ac:39:0c:
7e:1b:1f:19:20:85:28:44:52:6c:82:39:40:ba:4e:02:e6:47:
22:80:ec:ee:09:d0:51:db:39:d1:11:7c:26:15:6e:18:03:27:
ed:74:01:97:46:9d:2e:0c:53:83:32:5b:15:01:07:fc:71:24:
39:6b:4b:66:61:d2:be:68:00:55:b0:4e:0f:00:f4:e7:13:30:
13:ca:fe:91:f9:71:3a:1e:9f:31:7a:f5:1d:4a:07:6b:15:88:
1f:a7:e2:bd:3b:cb:48:7d:f8:ef:e0:4a:c1:10:2d:12:15:6e:
6c:64:41:ba:68:ce:70:13:05:3d:a6:9d:bc:9f:14:f7:c0:83:
ba:f5:c1:4a:93:43:39:17:8e:2b:ea:36:b4:e1:08:4c:10:aa:
4f:e4:ba:c4:d3:61:19:3f:39:90:c7:06:6b:b7:b1:6e:ee:44:
d2:23:d8:26:b2:28:02:86:5f:da:d5:a7:18:ef:13:3d:37:15:
1d:39:a0:df:89:18:c8:26:dc:38:37:7f:8f:3d:78:1f:97:8f:
5e:56:9e:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 22 21:28:28 2024 by rpki-client on console-ams.rpki-client.org