Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TDC/M6O_e1guJQxenv66_1k4c4Fdj0k.roa
File: M6O_e1guJQxenv66_1k4c4Fdj0k.roa (raw, json)
Hash identifier: mtJ9xXfDaZLoMV9kXp5IxO5439BtGbA/4RXpsCDyUE4=
Subject key identifier: 33:A3:BF:7B:58:2E:25:0C:5E:9E:FE:BA:FF:59:38:73:81:5D:8F:49
Certificate issuer: /CN=063F818DACB171B835415ABD278993922F3CDC5D
Certificate serial: 0133
Authority key identifier: 06:3F:81:8D:AC:B1:71:B8:35:41:5A:BD:27:89:93:92:2F:3C:DC:5D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Bj-Bjayxcbg1QVq9J4mTki883F0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TDC/M6O_e1guJQxenv66_1k4c4Fdj0k.roa
Signing time: Mon 26 Aug 2024 05:27:44 +0000
ROA not before: Mon 26 Aug 2024 05:27:44 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18041
IP address blocks: 2401:a60::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:30:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 307 (0x133)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=063F818DACB171B835415ABD278993922F3CDC5D
Validity
Not Before: Aug 26 05:27:44 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=33A3BF7B582E250C5E9EFEBAFF593873815D8F49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:49:e5:99:93:80:63:21:72:ff:1d:4a:f8:6d:
f7:45:b8:4a:6a:02:7e:eb:4b:44:16:61:34:ac:04:
0a:00:f1:68:55:3c:a8:56:86:17:f1:c4:d4:4b:4f:
7c:b3:ce:9c:90:1b:ab:d9:af:13:e7:58:50:4d:ec:
24:ad:d8:5a:17:81:da:42:b1:cf:11:d2:1e:1e:db:
09:29:e1:77:25:14:28:4d:f0:08:22:a5:27:81:c2:
58:14:fd:45:54:02:37:72:10:81:26:a4:db:2a:25:
8c:ed:27:60:7b:b2:49:88:37:a4:d2:06:45:84:25:
f0:0a:60:71:e2:54:82:b2:46:b6:aa:16:1e:17:4d:
3d:89:50:28:c2:da:00:fb:86:b8:42:a0:dc:a0:2a:
01:8c:14:59:e4:b5:cb:25:f6:e2:88:12:85:dd:db:
be:96:86:2c:b3:2e:7d:a9:c0:48:ce:0c:81:62:ac:
fb:f7:7b:6b:ee:a6:05:c6:24:df:ce:4e:ae:f1:e4:
83:86:86:c2:10:45:41:ec:b3:7b:57:de:9b:71:e6:
5b:d1:1c:6e:e4:5d:bf:12:ba:26:05:84:8c:4c:11:
e4:91:72:9e:b0:84:7e:2a:38:4e:85:1b:53:ed:aa:
21:09:e3:9f:4b:c7:b1:69:f5:1e:3e:47:24:c4:90:
fa:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:A3:BF:7B:58:2E:25:0C:5E:9E:FE:BA:FF:59:38:73:81:5D:8F:49
X509v3 Authority Key Identifier:
keyid:06:3F:81:8D:AC:B1:71:B8:35:41:5A:BD:27:89:93:92:2F:3C:DC:5D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TDC/Bj-Bjayxcbg1QVq9J4mTki883F0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Bj-Bjayxcbg1QVq9J4mTki883F0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TDC/M6O_e1guJQxenv66_1k4c4Fdj0k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:a60::/32
Signature Algorithm: sha256WithRSAEncryption
6f:f0:1d:22:6c:ff:16:07:b7:7d:a7:cd:08:3d:d9:38:55:35:
5d:2e:13:dc:8a:b1:a3:e3:bb:28:c8:2d:55:c2:d9:0c:aa:2e:
cb:6d:f5:1f:c9:98:ea:06:98:a9:74:44:af:03:c7:3a:24:0e:
aa:94:bd:47:8c:1d:47:81:fe:33:36:95:d0:b9:ff:10:a7:3b:
70:90:29:be:e2:36:d5:5f:c4:05:82:7d:dd:66:6b:67:04:0a:
b1:9c:74:01:6f:5d:bb:4a:b1:77:5f:42:66:3b:78:85:25:b7:
d2:51:6b:0b:eb:d6:8d:2e:cf:81:ed:7f:ba:2b:5e:d8:c7:ed:
06:54:b4:d9:b9:2c:01:68:2f:a2:ee:7f:af:7f:c5:19:72:4f:
01:62:a3:c6:a4:90:69:f0:cf:e4:42:03:a9:31:8a:43:ad:63:
f9:ed:56:e3:e2:9d:b6:17:5c:6b:77:76:af:46:a5:80:f5:26:
7c:2d:02:eb:5d:cf:82:76:fe:9b:53:8f:7c:6b:2f:0e:07:22:
bd:74:75:19:81:c3:f4:aa:84:c8:21:84:a4:90:87:f7:9d:35:
0b:3a:4c:53:f8:f8:8b:3a:20:9f:9c:7c:45:50:de:d8:bd:2a:
44:88:df:dc:f7:aa:a8:ed:19:54:83:87:18:0d:06:97:01:3d:
af:1b:3d:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 13:07:57 2025 by rpki-client