Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/hi5Up8xfylGcpYdzW5bzQEZoYyo.roa
File: hi5Up8xfylGcpYdzW5bzQEZoYyo.roa (raw, json)
Hash identifier: NtTAsZ2jdaBormW8DiBMktTiE3rvvXjNjHAJ/cmeICw=
Subject key identifier: 86:2E:54:A7:CC:5F:CA:51:9C:A5:87:73:5B:96:F3:40:46:68:63:2A
Certificate issuer: /CN=ED186F6314D7B5713EFFECFB93EBC3E82197E2EF
Certificate serial: 113D
Authority key identifier: ED:18:6F:63:14:D7:B5:71:3E:FF:EC:FB:93:EB:C3:E8:21:97:E2:EF
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/hi5Up8xfylGcpYdzW5bzQEZoYyo.roa
Signing time: Mon 26 Aug 2024 05:26:04 +0000
ROA not before: Mon 26 Aug 2024 05:26:04 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131633
IP address blocks: 2404:29c0::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:27:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4413 (0x113d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ED186F6314D7B5713EFFECFB93EBC3E82197E2EF
Validity
Not Before: Aug 26 05:26:04 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=862E54A7CC5FCA519CA587735B96F3404668632A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:fe:8e:ab:c7:cf:0f:ee:e3:f2:46:43:9b:f0:
a0:8d:f8:ac:e9:da:a9:85:c4:cc:67:51:64:e5:f9:
67:8a:40:f1:bf:4c:1a:f1:6c:7b:43:e0:ce:e0:1f:
2f:71:81:0d:bd:ab:0c:97:f9:ad:aa:8e:ee:db:4a:
c6:9a:10:68:71:29:43:86:9f:27:83:59:ae:09:a5:
fc:39:6f:28:46:81:0c:80:ea:34:f5:41:52:f1:a2:
5b:05:16:21:d4:a2:76:d7:d8:8f:0a:51:a3:74:6c:
7f:84:65:4d:ec:9b:b2:23:45:8a:e0:80:61:65:6a:
82:1e:2c:07:0d:df:bc:02:5a:bc:fc:80:70:91:c0:
35:d2:b4:75:1e:c1:6a:29:a9:3e:76:60:59:1d:ee:
25:77:e7:9d:77:f1:4f:72:ea:e7:73:17:e6:2d:15:
d4:ae:ad:6e:52:22:c5:36:f2:90:74:9f:0d:22:2e:
96:4b:50:f5:23:54:35:e2:3d:2c:6f:a7:36:27:c0:
dd:98:2e:89:d1:64:b3:4b:82:35:2a:aa:b6:c2:ba:
db:2d:20:87:b8:b7:c2:ca:ee:a1:3a:c9:d3:b1:71:
75:49:13:b0:8f:b7:34:07:65:80:f9:dd:20:53:e2:
9e:1e:e3:02:dd:5b:08:74:f4:46:78:73:38:24:2e:
9e:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:2E:54:A7:CC:5F:CA:51:9C:A5:87:73:5B:96:F3:40:46:68:63:2A
X509v3 Authority Key Identifier:
keyid:ED:18:6F:63:14:D7:B5:71:3E:FF:EC:FB:93:EB:C3:E8:21:97:E2:EF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7RhvYxTXtXE-_-z7k-vD6CGX4u8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/hi5Up8xfylGcpYdzW5bzQEZoYyo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:29c0::/32
Signature Algorithm: sha256WithRSAEncryption
cc:aa:89:c7:77:06:2f:d0:a3:85:61:2a:73:62:24:86:47:3c:
ee:32:92:10:ec:4b:1d:37:0b:18:f4:b5:58:84:a4:f2:f5:d5:
c0:50:8c:1e:8b:e2:5b:8b:f4:e5:b9:ea:4e:92:ba:25:c0:10:
54:c3:5e:19:09:4d:fa:20:2c:9e:7a:bd:b2:81:6b:f1:7a:13:
09:98:6d:c3:63:35:dc:cd:17:b7:85:b7:62:ff:cf:27:fa:bf:
d7:51:ff:2c:b7:4d:6a:64:53:15:ab:8c:95:de:85:ae:43:7f:
81:ac:99:2e:54:17:66:b0:b6:5f:a3:c9:71:0c:ae:1f:e8:f1:
7a:3d:79:60:4e:c8:f7:3d:4c:b4:4b:bc:ac:16:27:61:a2:9e:
6b:54:6f:89:e4:90:0d:6f:2a:4c:dd:a0:b1:2e:24:f6:04:f8:
59:51:f3:61:9a:54:0f:a6:98:8e:e4:7e:dc:a5:6f:93:94:cf:
b5:de:71:b9:09:a8:30:e6:a7:0b:60:8e:e4:0b:9f:6d:d4:c6:
a2:ad:d3:9c:26:c2:be:13:ff:ea:39:d9:0a:9d:db:2d:38:c8:
dd:75:4b:37:8d:f8:64:a9:65:b0:b6:5c:e3:d4:3a:fc:e7:a8:
6e:98:75:3e:2e:44:a1:c2:12:0c:17:c2:ac:c7:e0:da:fb:37:
88:31:b7:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:20:46 2025 by rpki-client