Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIWAN_NO1/g4YoQhjfEkz3t963Pj5I1YO8o2w.roa
File: g4YoQhjfEkz3t963Pj5I1YO8o2w.roa (raw, json)
Hash identifier: I8MJa7Ep8m1gX+SGl7rmRbQqYV8GFXrNfmpbC+vf6Qc=
Subject key identifier: 83:86:28:42:18:DF:12:4C:F7:B7:DE:B7:3E:3E:48:D5:83:BC:A3:6C
Certificate issuer: /CN=F297B39C40002EFADBDDE272B637AD61A9F51A45
Certificate serial: 04
Authority key identifier: F2:97:B3:9C:40:00:2E:FA:DB:DD:E2:72:B6:37:AD:61:A9:F5:1A:45
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8peznEAALvrb3eJytjetYan1GkU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWAN_NO1/g4YoQhjfEkz3t963Pj5I1YO8o2w.roa
Signing time: Wed 09 Oct 2024 11:14:34 +0000
ROA not before: Wed 09 Oct 2024 11:14:34 +0000
ROA not after: Wed 08 Oct 2025 15:30:28 +0000
asID: 38047
IP address blocks: 2401:cae0::/32 maxlen: 48
Validation: Failed, certificate revoked on Fri 11 Oct 2024 06:12:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F297B39C40002EFADBDDE272B637AD61A9F51A45
Validity
Not Before: Oct 9 11:14:34 2024 GMT
Not After : Oct 8 15:30:28 2025 GMT
Subject: CN=8386284218DF124CF7B7DEB73E3E48D583BCA36C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:eb:6a:76:cd:2d:6b:54:47:3d:91:99:2a:fd:
b9:85:64:52:aa:bc:b5:62:62:dc:e5:f2:3b:4c:56:
3e:1b:b4:ef:87:96:7a:75:76:b6:4e:05:3e:71:84:
e3:a7:66:ad:ba:10:ac:6d:6f:b5:06:34:40:50:f4:
9a:b4:63:41:fd:d5:6b:b4:f5:ab:f8:71:70:d4:d9:
b4:e8:41:0d:28:b9:2b:09:c4:06:c8:49:ff:8e:ea:
42:5f:d4:2d:ef:2b:5a:e7:1b:c1:12:20:65:85:5e:
7d:45:c1:31:c3:c0:ef:d7:5d:82:fd:23:33:af:dd:
ad:24:09:74:87:ab:5e:b0:89:2c:94:1c:59:f8:29:
2c:94:33:77:21:56:6a:4f:a2:10:19:3c:c4:02:0e:
51:db:ea:16:7e:a1:b3:23:df:ed:b9:6d:da:3f:ae:
45:c1:2e:b8:23:29:49:39:84:6f:c4:50:27:20:11:
10:d3:84:45:a0:4d:d1:90:61:47:c6:47:88:8f:2a:
5a:97:e2:31:4b:7f:e0:c6:27:bc:ce:e7:09:5b:94:
6e:48:38:8f:45:ae:61:3f:ee:39:36:33:91:86:ae:
2d:1e:17:96:d3:a9:9c:6c:1d:a9:9b:2b:e5:71:e5:
3b:c3:0c:db:54:e6:0e:46:10:82:71:f3:df:5c:b3:
b9:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:86:28:42:18:DF:12:4C:F7:B7:DE:B7:3E:3E:48:D5:83:BC:A3:6C
X509v3 Authority Key Identifier:
keyid:F2:97:B3:9C:40:00:2E:FA:DB:DD:E2:72:B6:37:AD:61:A9:F5:1A:45
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWAN_NO1/8peznEAALvrb3eJytjetYan1GkU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8peznEAALvrb3eJytjetYan1GkU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWAN_NO1/g4YoQhjfEkz3t963Pj5I1YO8o2w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:cae0::/32
Signature Algorithm: sha256WithRSAEncryption
aa:b7:dc:f9:e8:37:61:3b:f0:ff:c1:e8:14:41:70:80:25:d2:
e4:f2:a2:a1:09:4e:52:fc:a4:c4:34:f7:5d:c1:4b:a5:59:4d:
c1:c0:3c:f3:e5:92:f1:3d:88:ae:5e:51:fd:64:ab:b0:a4:34:
09:9e:82:64:fd:30:91:86:68:aa:92:6a:aa:0a:52:6b:17:e4:
16:c0:9c:8d:4c:21:58:0b:09:65:de:03:e1:92:88:a2:bd:be:
ed:f1:4d:d9:7b:b7:f5:a7:de:8a:cc:79:47:bb:5e:96:88:81:
89:71:7c:87:be:74:24:fd:49:65:4c:db:b0:77:1b:8c:e4:ec:
6d:4f:0a:a6:c8:21:73:58:f8:4b:ab:69:94:a8:67:89:26:2a:
60:3f:5f:b4:3c:09:4c:cd:31:cd:1f:11:48:61:26:de:52:1d:
c3:7c:b2:e0:f8:2f:a3:d9:cb:19:ff:ad:e8:94:52:fe:b5:b8:
dd:8b:15:e4:21:ca:79:41:06:d3:9c:2b:49:f3:70:de:db:d7:
b3:88:9e:88:c7:07:27:8c:93:21:ca:e8:9c:9f:f7:d4:84:31:
09:27:1b:b1:28:36:fa:64:48:00:e5:98:90:df:56:ca:b2:3f:
5b:6f:ab:69:91:99:50:c9:8a:e6:72:18:ba:46:3a:fe:1e:44:
fe:51:55:ef
-----BEGIN CERTIFICATE-----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==
Generated at Fri Oct 11 07:28:40 2024 by rpki-client on console-fra.rpki-client.org