Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHINENET/31lNY-59Fdifsj3fSy5xpkI2tws.roa
File: 31lNY-59Fdifsj3fSy5xpkI2tws.roa (raw, json)
Hash identifier: q1B/WkaGLzULtI304e2viPw+LhQZ9f78abFXjIQZqes=
Subject key identifier: DF:59:4D:63:EE:7D:15:D8:9F:B2:3D:DF:4B:2E:71:A6:42:36:B7:0B
Certificate issuer: /CN=45542320685E62421C114DBA65B8F5705A774845
Certificate serial: 0134
Authority key identifier: 45:54:23:20:68:5E:62:42:1C:11:4D:BA:65:B8:F5:70:5A:77:48:45
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RVQjIGheYkIcEU26Zbj1cFp3SEU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINENET/31lNY-59Fdifsj3fSy5xpkI2tws.roa
Signing time: Mon 26 Aug 2024 05:25:59 +0000
ROA not before: Mon 26 Aug 2024 05:25:59 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 150770
IP address blocks: 2400:fe60::/32 maxlen: 64
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:30:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 308 (0x134)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45542320685E62421C114DBA65B8F5705A774845
Validity
Not Before: Aug 26 05:25:59 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=DF594D63EE7D15D89FB23DDF4B2E71A64236B70B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:0e:c6:0b:ac:78:02:e5:43:56:11:c7:ec:a6:
88:3a:c6:a2:17:24:c1:9f:87:ec:30:1e:61:ed:94:
07:2f:6f:32:f7:d1:6b:f6:99:b9:de:6f:16:4b:90:
a0:27:23:bb:5d:96:5c:97:bf:bd:b7:1f:12:de:67:
cd:74:55:56:0d:71:58:44:e8:14:34:c5:3f:86:00:
3e:33:c9:b0:7c:24:a9:10:a7:26:8a:23:fc:f3:b9:
75:5e:40:3b:5a:18:18:40:34:30:fc:f9:2f:6e:4b:
9d:21:22:d0:a8:d9:c2:db:fa:25:69:51:bc:2f:13:
b9:55:2d:4b:8e:5f:e4:86:e9:0f:3c:46:a0:a5:eb:
90:66:1d:79:72:2d:fd:fc:03:43:92:f5:0c:58:c1:
2c:a5:b0:e0:f2:12:7a:a8:fc:74:ad:62:08:29:30:
a7:28:cf:29:b0:9e:af:ff:a2:3b:a2:3d:10:ed:5b:
e1:b5:ea:f8:25:43:35:a1:5c:cc:ce:c7:93:de:67:
35:f4:69:f3:04:39:54:cf:b7:ae:ba:aa:59:39:93:
8f:19:43:7d:06:8c:68:97:21:40:5e:95:f2:a7:cc:
79:7b:74:3a:65:67:ab:33:e3:3c:a7:d4:0a:79:02:
00:eb:a7:27:cf:21:f4:48:07:4f:fc:a7:40:86:cd:
ee:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:59:4D:63:EE:7D:15:D8:9F:B2:3D:DF:4B:2E:71:A6:42:36:B7:0B
X509v3 Authority Key Identifier:
keyid:45:54:23:20:68:5E:62:42:1C:11:4D:BA:65:B8:F5:70:5A:77:48:45
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINENET/RVQjIGheYkIcEU26Zbj1cFp3SEU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RVQjIGheYkIcEU26Zbj1cFp3SEU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINENET/31lNY-59Fdifsj3fSy5xpkI2tws.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:fe60::/32
Signature Algorithm: sha256WithRSAEncryption
98:29:e1:49:e5:bc:c6:39:c6:00:42:10:22:63:ee:1a:97:4d:
13:cb:1a:fe:9f:6a:95:c4:3f:36:96:d9:6b:34:d1:17:3b:af:
8b:51:60:80:1e:fb:ab:46:ce:08:d0:43:48:ea:b8:92:ea:d2:
4a:13:c8:cc:0b:9c:66:3c:3f:9f:4f:de:76:6a:b0:19:08:92:
22:58:7b:b0:a0:b3:87:cf:bc:57:13:6f:1e:f4:41:eb:09:f7:
8e:10:41:85:f3:58:c9:84:a9:c5:07:9a:2d:ec:f5:d8:e3:d2:
a5:d8:23:6f:d9:2b:d9:7e:45:80:aa:e2:f9:70:29:ca:51:68:
16:a2:45:40:4e:ee:2a:06:4b:39:d7:4e:c6:07:f7:0b:18:d7:
35:64:c5:a5:8a:5d:fc:52:1b:0f:66:1c:8d:59:2c:71:98:7b:
9b:e7:20:e9:25:75:e7:d4:cf:ed:b2:57:bf:a9:b5:1f:0e:56:
aa:d0:38:f2:73:01:30:9d:2a:51:20:37:30:db:2e:f5:fd:6d:
60:36:07:4f:17:d6:13:58:2c:ef:ce:bd:60:a5:96:e8:2a:85:
21:71:96:06:f8:84:39:4f:57:06:b3:d7:a9:c4:3e:1d:87:41:
1c:17:c5:3e:71:a6:29:49:71:a1:39:ca:39:54:61:a7:74:fe:
22:26:be:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:44:14 2025 by rpki-client