Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/gFoqvNB7FB8jD7xuorXgbEdpW5I.roa
File: gFoqvNB7FB8jD7xuorXgbEdpW5I.roa (raw, json)
Hash identifier: Sxba8dU376y4GWbDl8+TD3avjg9r+hoH22ny2RSPBoU=
Subject key identifier: 80:5A:2A:BC:D0:7B:14:1F:23:0F:BC:6E:A2:B5:E0:6C:47:69:5B:92
Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial: 3169
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/gFoqvNB7FB8jD7xuorXgbEdpW5I.roa
Signing time: Mon 26 Aug 2024 05:30:26 +0000
ROA not before: Mon 26 Aug 2024 05:30:26 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 38841
IP address blocks: 2407:4d00:ff0a::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:52:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12649 (0x3169)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
Validity
Not Before: Aug 26 05:30:26 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=805A2ABCD07B141F230FBC6EA2B5E06C47695B92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:db:90:48:c2:95:c6:7f:56:2f:97:e5:c9:bf:
99:2e:6b:8e:69:49:90:e9:89:0a:6b:f9:d1:8d:a0:
ad:13:d0:af:50:65:74:6d:39:26:e6:10:dc:4d:3e:
7b:25:de:c8:1f:ac:f4:91:74:eb:5b:a5:e7:cb:77:
90:06:07:5c:77:9c:7d:80:1e:2f:7b:24:05:b8:52:
06:09:8c:52:96:15:61:15:8d:0c:d8:7b:8b:06:fc:
9e:5e:23:78:0a:a6:df:1d:78:ab:c6:78:7f:2a:76:
60:13:f3:b5:83:57:78:45:e9:d8:c5:2e:13:35:e4:
fc:b4:98:98:bf:b2:38:1f:42:25:4c:d4:ee:b5:97:
e6:f3:65:f9:5f:88:36:92:f8:49:d0:79:03:cb:bd:
7d:eb:90:d3:b0:bd:11:b6:75:a0:43:32:3d:d1:36:
10:f4:4e:c8:b3:a2:8c:f0:c3:db:d5:bb:43:a1:5b:
7f:2c:8a:eb:7c:a0:ff:3d:ad:bd:d8:ea:f5:8a:26:
8a:3b:53:5e:e1:ed:d3:58:b8:70:94:5a:1e:4e:5d:
27:c6:70:04:19:75:1b:f0:a2:a5:c1:09:d6:9b:c0:
91:5d:d3:a5:a0:d6:bf:b4:c8:d9:14:c9:e3:59:7b:
ae:a3:d1:b4:d0:46:06:70:d3:3e:57:65:bf:5e:0d:
7d:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:5A:2A:BC:D0:7B:14:1F:23:0F:BC:6E:A2:B5:E0:6C:47:69:5B:92
X509v3 Authority Key Identifier:
keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/gFoqvNB7FB8jD7xuorXgbEdpW5I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2407:4d00:ff0a::/48
Signature Algorithm: sha256WithRSAEncryption
b9:84:6e:f4:67:1f:6f:f8:b3:25:08:b2:13:0a:98:0d:4f:95:
b3:61:36:29:bb:d0:3b:48:b2:b0:f2:5b:38:13:9a:86:d6:77:
e6:50:c5:5d:76:e5:74:ce:6e:fc:9c:21:0f:21:fe:ba:d6:19:
58:73:65:4c:ce:20:95:11:de:f3:7c:e6:39:d7:c6:c9:0a:43:
75:99:4c:65:28:b8:c7:aa:f6:d9:64:33:4a:22:70:bf:f0:c0:
3c:c0:7d:9c:02:c0:9e:fa:58:5e:9e:dc:4f:f9:03:81:6c:b0:
d7:e6:7a:1b:d6:cf:54:16:e0:6e:67:73:31:72:6f:ed:7a:7e:
90:ee:f7:81:e3:6b:ab:56:cc:2a:94:7b:78:6e:43:90:90:e6:
f1:d6:b4:a0:10:72:1d:c0:8f:28:15:6f:0e:50:83:b1:ed:4e:
92:a6:5e:16:4e:cd:6f:b1:cb:70:2d:24:d4:13:18:86:48:5f:
76:93:2d:0a:8d:19:47:d5:c2:af:b4:ba:57:81:e0:aa:7e:40:
42:8c:53:5a:30:b0:af:d4:4b:01:f8:ea:06:d7:43:74:a0:11:
00:76:a6:70:23:fe:ad:ff:7a:ff:a2:1f:54:24:ab:3d:b2:3b:
5f:a2:d1:b4:40:d5:7c:ae:ae:0d:0e:3f:c7:74:89:1f:a7:55:
4c:6b:5f:99
-----BEGIN CERTIFICATE-----
MIIE1TCCA72gAwIBAgICMWkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw
NTMwMjZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDgwNUEyQUJDRDA3QjE0
MUYyMzBGQkM2RUEyQjVFMDZDNDc2OTVCOTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDN25BIwpXGf1Yvl+XJv5kua45pSZDpiQpr+dGNoK0T0K9QZXRt
OSbmENxNPnsl3sgfrPSRdOtbpefLd5AGB1x3nH2AHi97JAW4UgYJjFKWFWEVjQzY
e4sG/J5eI3gKpt8deKvGeH8qdmAT87WDV3hF6djFLhM15Py0mJi/sjgfQiVM1O61
l+bzZflfiDaS+EnQeQPLvX3rkNOwvRG2daBDMj3RNhD0Tsizoozww9vVu0OhW38s
iut8oP89rb3Y6vWKJoo7U17h7dNYuHCUWh5OXSfGcAQZdRvwoqXBCdabwJFd06Wg
1r+0yNkUyeNZe66j0bTQRgZw0z5XZb9eDX0tAgMBAAGjggHxMIIB7TAdBgNVHQ4E
FgQUgFoqvNB7FB8jD7xuorXgbEdpW5IwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2dGb3F2TkI3RkI4akQ3eHVv
clhnYkVkcFc1SS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk
B00A/wowDQYJKoZIhvcNAQELBQADggEBALmEbvRnH2/4syUIshMKmA1PlbNhNim7
0DtIsrDyWzgTmobWd+ZQxV125XTObvycIQ8h/rrWGVhzZUzOIJUR3vN85jnXxskK
Q3WZTGUouMeq9tlkM0oicL/wwDzAfZwCwJ76WF6e3E/5A4FssNfmehvWz1QW4G5n
czFyb+16fpDu94Hja6tWzCqUe3huQ5CQ5vHWtKAQch3AjygVbw5Qg7HtTpKmXhZO
zW+xy3AtJNQTGIZIX3aTLQqNGUfVwq+0uleB4Kp+QEKMU1owsK/USwH46gbXQ3Sg
EQB2pnAj/q3/ev+iH1Qkqz2yO1+i0bRA1Xyurg0OP8d0iR+nVUxrX5k=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:35:41 2025 by rpki-client