Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TCB/XwoLgNYvJpO1rtwSF2mU6esb4mo.roa
File: XwoLgNYvJpO1rtwSF2mU6esb4mo.roa (raw, json)
Hash identifier: P53fQTeuz0cPMn0mcL3dL48ZPIW3KzXVV5BpSfrY2Zg=
Subject key identifier: 5F:0A:0B:80:D6:2F:26:93:B5:AE:DC:12:17:69:94:E9:EB:1B:E2:6A
Certificate issuer: /CN=BF82A3AC11455030743C0A743711F8A0D8EBAE28
Certificate serial: 0C59
Authority key identifier: BF:82:A3:AC:11:45:50:30:74:3C:0A:74:37:11:F8:A0:D8:EB:AE:28
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/v4KjrBFFUDB0PAp0NxH4oNjrrig.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/XwoLgNYvJpO1rtwSF2mU6esb4mo.roa
Signing time: Mon 26 Aug 2024 05:27:40 +0000
ROA not before: Mon 26 Aug 2024 05:27:40 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131590
IP address blocks: 2400:c780:fffe:1d03::/64 maxlen: 64
Validation: Failed, certificate revoked on Wed 08 Jan 2025 01:20:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3161 (0xc59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BF82A3AC11455030743C0A743711F8A0D8EBAE28
Validity
Not Before: Aug 26 05:27:40 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5F0A0B80D62F2693B5AEDC12176994E9EB1BE26A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:de:b4:bf:70:c2:b5:d6:fa:39:45:1d:ec:f8:
be:b3:19:b0:33:c0:e3:17:56:9f:bd:78:ef:fa:e3:
0d:dd:6b:70:59:d4:b9:46:c7:7f:7a:90:d5:52:fd:
84:23:bf:12:07:20:16:0b:0a:29:73:2a:13:4a:03:
aa:8f:38:56:08:8b:f8:6f:91:25:9f:44:3f:cc:b8:
85:f4:5c:cd:89:00:5a:5a:d1:97:8e:e7:59:e1:9e:
70:c5:9e:32:9a:5a:67:e7:a6:8f:0f:b7:54:44:32:
6f:b8:56:cc:66:5a:40:5a:91:22:03:9b:a1:db:e3:
ed:dd:2c:49:6c:12:26:bd:d2:7f:4c:4e:58:b4:70:
8a:e8:ef:e9:4e:60:59:b7:2a:ae:b9:ce:0a:f3:bf:
a2:27:7b:7b:ba:73:39:36:0b:80:a7:9b:72:ed:fb:
26:5d:83:da:df:e5:6d:b6:4e:d2:ee:4d:69:29:a2:
ad:dc:96:8d:e5:e1:8f:c2:14:9e:e9:8f:fd:e9:9c:
11:ee:13:d7:b8:85:52:00:b0:33:78:7c:ac:9e:73:
e9:39:9b:78:42:c6:cb:af:c5:9a:60:05:f6:80:a6:
12:fb:b7:e5:4b:5d:9f:b1:43:ca:7d:5a:40:07:01:
fe:0a:e0:c6:8b:8e:de:76:f4:1d:b9:bf:23:6a:1f:
03:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:0A:0B:80:D6:2F:26:93:B5:AE:DC:12:17:69:94:E9:EB:1B:E2:6A
X509v3 Authority Key Identifier:
keyid:BF:82:A3:AC:11:45:50:30:74:3C:0A:74:37:11:F8:A0:D8:EB:AE:28
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/v4KjrBFFUDB0PAp0NxH4oNjrrig.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/v4KjrBFFUDB0PAp0NxH4oNjrrig.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/XwoLgNYvJpO1rtwSF2mU6esb4mo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:c780:fffe:1d03::/64
Signature Algorithm: sha256WithRSAEncryption
3c:c7:ff:b3:8f:8b:79:63:ce:28:e7:79:0d:ad:0d:60:9e:28:
b6:16:27:09:39:1a:26:72:85:76:02:6f:7b:ed:4b:34:9d:13:
28:b1:f1:c5:cc:1f:e6:4e:6b:ad:41:a2:b8:27:23:93:24:52:
db:8c:9a:13:3d:64:ed:90:a4:cc:b8:9a:dc:25:9a:51:24:c3:
7f:fd:c5:ea:5f:ea:1f:e7:30:1b:a9:47:41:0c:90:e2:98:44:
37:7f:4c:57:e1:a6:bb:c5:af:b7:d5:b3:a4:2c:83:b9:4c:df:
5b:03:ba:bf:db:e1:44:b8:bd:b0:73:28:18:1a:7c:ae:a8:05:
b8:42:ba:af:02:c8:4e:5a:f5:af:c1:3f:49:47:55:29:0e:49:
9c:27:1b:5e:4c:4f:3c:49:9d:50:2e:c1:0b:a0:db:98:06:d3:
e4:a0:33:0b:bc:ae:85:a0:46:0b:c9:bb:7e:8d:b3:a3:99:fb:
5a:9b:8b:6e:6c:0d:c9:e7:18:b4:41:29:aa:09:99:71:2c:09:
8d:00:79:c3:98:95:6a:61:ae:9c:2b:33:4a:e8:25:a0:14:d3:
1e:83:8c:31:91:22:7a:43:de:6c:c1:71:2d:eb:26:92:16:58:
88:0e:c1:0e:51:6f:ff:d6:3e:e5:06:8c:e9:90:13:eb:c3:41:
1e:7e:07:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:29:35 2025 by rpki-client