Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/KtzETZN3iBTWhoE87zbobJt_sDM.roa
File: KtzETZN3iBTWhoE87zbobJt_sDM.roa (raw, json)
Hash identifier: yc/FM2PQzoqlMTr11nc30Pgk6H9iYclNLXoUU0NCb58=
Subject key identifier: 2A:DC:C4:4D:93:77:88:14:D6:86:81:3C:EF:36:E8:6C:9B:7F:B0:33
Certificate issuer: /CN=35FF90306B47A7DE0307F0E335B4DC7F27DEA4FB
Certificate serial: 0130
Authority key identifier: 35:FF:90:30:6B:47:A7:DE:03:07:F0:E3:35:B4:DC:7F:27:DE:A4:FB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Nf-QMGtHp94DB_DjNbTcfyfepPs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/KtzETZN3iBTWhoE87zbobJt_sDM.roa
Signing time: Tue 28 Jan 2025 18:33:13 +0000
ROA not before: Tue 28 Jan 2025 18:33:13 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9923
IP address blocks: 2401:5f20:1000::/36 maxlen: 48
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:23:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 304 (0x130)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35FF90306B47A7DE0307F0E335B4DC7F27DEA4FB
Validity
Not Before: Jan 28 18:33:13 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=2ADCC44D93778814D686813CEF36E86C9B7FB033
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:a3:68:e7:04:f8:28:33:f1:31:79:49:24:cb:
96:a9:df:54:af:ec:1c:a1:69:24:a4:a7:85:f8:0c:
09:2d:59:f4:c2:ad:90:ea:ea:4c:46:a2:42:3b:b6:
1d:64:77:ff:b5:54:73:00:81:50:5c:63:1e:2a:61:
bc:83:d3:68:17:43:96:54:a2:34:0a:7b:60:d7:a1:
fa:ae:ba:12:bf:9e:21:44:82:4c:ee:e2:70:1f:4b:
ad:c4:4e:a7:bd:64:94:94:9c:7a:aa:6d:90:f7:34:
00:be:1a:1a:b3:65:4f:31:9d:66:92:08:cf:b5:d0:
b7:ac:56:a6:6f:e1:93:b8:44:08:03:0c:f3:61:3c:
94:6a:7e:39:7e:4f:1b:cf:d9:ed:5e:f5:6e:60:be:
e2:e9:97:6b:c2:da:e3:6c:71:11:9b:91:0b:98:8e:
99:b1:5d:d5:d3:79:aa:5c:fe:f1:ff:08:f6:06:3c:
f5:b6:d3:c3:86:55:bc:ab:c3:50:79:89:24:43:07:
19:67:49:82:e9:06:87:61:1a:e2:da:5c:b1:ae:b1:
03:a9:ae:fc:c0:3e:ce:bb:d9:f7:97:8c:28:a6:7d:
eb:e4:de:04:72:fd:af:2f:6c:5d:5c:78:1e:c7:16:
06:4c:71:a6:56:82:4c:7b:f0:bd:92:95:94:2b:53:
22:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:DC:C4:4D:93:77:88:14:D6:86:81:3C:EF:36:E8:6C:9B:7F:B0:33
X509v3 Authority Key Identifier:
keyid:35:FF:90:30:6B:47:A7:DE:03:07:F0:E3:35:B4:DC:7F:27:DE:A4:FB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/Nf-QMGtHp94DB_DjNbTcfyfepPs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Nf-QMGtHp94DB_DjNbTcfyfepPs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIJICOLTD/KtzETZN3iBTWhoE87zbobJt_sDM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:5f20:1000::/36
Signature Algorithm: sha256WithRSAEncryption
b6:6c:7c:b6:27:b6:49:9c:3b:12:32:4b:06:6b:a3:8b:3b:f4:
af:e8:b7:00:6d:c9:fa:11:02:37:54:2b:55:a3:44:91:65:26:
f7:8e:0c:7f:0c:cd:6e:8e:7b:58:52:a2:c2:b1:14:86:9d:01:
97:fb:65:97:34:37:0e:31:cc:cd:dd:11:41:09:68:29:12:94:
8f:b5:6a:35:7d:32:a5:96:b5:0e:3c:4b:22:a5:09:5a:80:c3:
61:3e:5b:51:5b:c8:28:24:55:44:0a:c4:c8:4f:fe:98:fb:ad:
dc:45:10:12:b2:cc:4b:2a:0e:e4:d1:3f:f5:00:55:e0:aa:87:
b2:75:56:48:ba:f5:33:6a:23:4e:58:07:aa:50:e2:32:39:33:
0c:3c:ea:b6:10:d6:53:bd:2e:35:5e:ee:e6:14:b7:75:22:df:
8d:b4:8c:13:52:b9:f7:81:cc:04:92:7a:1b:1f:39:5c:e6:be:
b4:3e:3e:3b:3d:dd:2c:b3:92:fe:28:20:b2:b1:18:97:c0:1b:
52:e5:52:c5:c6:77:2c:c3:c4:4c:3e:e1:4e:19:e7:8f:29:06:
6c:b4:5c:5c:6b:0e:9a:53:42:d9:1f:67:2a:7e:4e:1e:c2:8b:
f2:5e:12:7c:a2:04:93:13:47:f8:b7:83:32:22:3a:cf:1e:18:
b4:1d:02:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 05:10:52 2025 by rpki-client