Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/Fda7B-kXCd6ehIW4hszoEILIjgs.roa
File: Fda7B-kXCd6ehIW4hszoEILIjgs.roa (raw, json)
Hash identifier: 1cZTB3+9QLLdmhNW1uX1DM8kfb6oaRKS1S2dtKGUtY0=
Subject key identifier: 15:D6:BB:07:E9:17:09:DE:9E:84:85:B8:86:CC:E8:10:82:C8:8E:0B
Certificate issuer: /CN=6A0A165337DCFB9127C60840C45CBCEB8D6DBF75
Certificate serial: 06
Authority key identifier: 6A:0A:16:53:37:DC:FB:91:27:C6:08:40:C4:5C:BC:EB:8D:6D:BF:75
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/agoWUzfc-5EnxghAxFy8641tv3U.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/Fda7B-kXCd6ehIW4hszoEILIjgs.roa
Signing time: Mon 19 Aug 2024 02:50:30 +0000
ROA not before: Mon 19 Aug 2024 02:50:30 +0000
ROA not after: Wed 13 Aug 2025 03:59:03 +0000
asID: 32595
IP address blocks: 2401:ba60::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:13:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6 (0x6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6A0A165337DCFB9127C60840C45CBCEB8D6DBF75
Validity
Not Before: Aug 19 02:50:30 2024 GMT
Not After : Aug 13 03:59:03 2025 GMT
Subject: CN=15D6BB07E91709DE9E8485B886CCE81082C88E0B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:99:46:6f:ee:91:c3:6b:b3:87:d8:65:e1:5b:
3b:b1:f2:ad:3e:ad:c1:b7:87:b9:48:e4:a3:39:d4:
97:c6:50:6d:82:2d:30:1a:00:b5:54:e9:7d:34:f2:
3c:09:03:f2:b4:fc:61:f6:11:0d:2a:c6:1e:ad:63:
c4:13:19:50:6d:c2:d7:8a:4e:eb:f7:97:32:ce:4f:
45:99:b5:d1:57:2c:88:49:d5:de:03:55:aa:f6:62:
32:db:d6:f7:99:24:9a:32:43:27:fd:79:87:32:24:
ad:bd:7d:da:d3:d7:29:6d:52:28:33:96:79:a3:87:
3c:f9:bb:b5:19:c3:1b:04:c2:10:6c:01:19:fd:35:
04:77:91:66:8e:35:c3:44:a9:37:2b:40:a1:f4:56:
f6:06:4a:e0:bc:6f:9d:51:f1:b1:1a:3d:ce:e2:7c:
39:ff:84:2e:a1:e0:51:fb:67:38:a8:09:66:ec:16:
2d:2f:1d:5d:06:ab:c3:57:ec:c0:64:7c:30:99:35:
75:ab:19:48:12:51:39:f7:48:ac:92:1d:ac:25:3a:
9b:94:7a:78:1f:61:5b:8f:b0:e8:7a:51:a4:f1:dd:
7e:26:99:e6:ea:a6:b3:ce:bc:0b:90:09:e9:ed:6c:
33:8b:e6:c7:38:3e:3d:75:6e:c8:c2:38:47:61:ca:
d8:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:D6:BB:07:E9:17:09:DE:9E:84:85:B8:86:CC:E8:10:82:C8:8E:0B
X509v3 Authority Key Identifier:
keyid:6A:0A:16:53:37:DC:FB:91:27:C6:08:40:C4:5C:BC:EB:8D:6D:BF:75
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/agoWUzfc-5EnxghAxFy8641tv3U.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/agoWUzfc-5EnxghAxFy8641tv3U.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/Fda7B-kXCd6ehIW4hszoEILIjgs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:ba60::/32
Signature Algorithm: sha256WithRSAEncryption
12:d4:f5:74:89:bd:d6:7b:5c:7d:a4:0f:81:90:86:aa:ec:0a:
92:c7:cf:e4:f7:c7:dd:91:ce:ce:e2:c1:5c:1e:c4:a7:dd:d5:
7a:4a:a5:4f:f6:9b:6c:e3:3a:86:7b:ee:7d:75:2c:a1:77:76:
96:4e:d5:36:bb:22:28:fa:ed:eb:f7:e1:52:63:4d:39:3c:56:
11:6f:11:26:c9:81:d8:2b:cd:a5:e5:ed:fd:79:d6:be:0d:0c:
5f:c2:1f:87:5b:78:52:02:dc:80:0f:34:fe:0f:7a:2d:d3:ed:
59:63:22:c5:0a:d6:f1:1b:cb:a8:98:8f:de:a8:24:64:6f:40:
da:a5:7c:2e:5a:b0:11:5f:dc:98:dc:5b:cc:5f:7e:ac:67:72:
2d:ff:74:ff:86:05:21:13:7e:64:bc:1d:31:55:b4:42:7c:36:
ba:06:d2:2f:58:42:65:c4:b1:d3:bc:8b:26:81:cc:86:84:e6:
96:de:71:bc:7a:cb:77:54:28:a5:60:12:0c:ec:c4:58:08:8a:
cd:9b:6f:fd:15:38:ac:54:f0:80:3d:7c:cd:dd:c0:5e:36:15:
27:2a:6d:39:db:52:ed:55:1c:fc:98:9b:41:b7:91:65:b9:49:
bc:f1:3a:9f:03:d9:ff:16:b5:65:cb:95:dd:9f:68:d3:62:45:
d1:e6:b9:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:28:40 2025 by rpki-client