Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/I3uPBf2OuYEr-eMp9abjj-XgqWs.roa
File: I3uPBf2OuYEr-eMp9abjj-XgqWs.roa (raw, json)
Hash identifier: srTfKbGbJ3SgSA5xI37fAZFA0zZRfrkP/b1Xt88WunI=
Subject key identifier: 23:7B:8F:05:FD:8E:B9:81:2B:F9:E3:29:F5:A6:E3:8F:E5:E0:A9:6B
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 12CE
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/I3uPBf2OuYEr-eMp9abjj-XgqWs.roa
Signing time: Mon 26 Aug 2024 05:32:34 +0000
ROA not before: Mon 26 Aug 2024 05:32:34 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131621
IP address blocks: 2001:dc1::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:03:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4814 (0x12ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Aug 26 05:32:34 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=237B8F05FD8EB9812BF9E329F5A6E38FE5E0A96B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:39:12:b9:c4:92:19:ec:53:3b:40:f3:b3:72:
59:b3:ab:43:d6:32:01:ef:43:25:f3:42:62:1d:34:
18:d6:af:76:fd:26:14:89:a7:51:74:7d:3d:d4:4d:
ef:b8:97:7a:bc:a4:10:1c:76:b4:ce:16:88:6e:d1:
1d:82:15:dd:1f:6a:54:2d:0d:db:01:30:a8:65:c6:
3a:01:1f:4e:42:89:dd:c6:a2:43:df:44:5e:74:b5:
20:7f:dd:90:af:83:22:be:f0:0e:2e:83:cc:26:e4:
fd:73:5e:0c:a3:6e:6a:aa:07:16:86:f8:21:a5:82:
8c:6a:68:46:e6:84:07:4d:2b:1a:93:7a:3c:ae:76:
f0:ba:60:f7:3b:9e:95:fb:e1:bf:6a:f9:49:f2:8a:
2d:d4:33:38:85:83:f9:53:31:ec:3c:6b:68:07:e7:
0a:17:39:45:9a:52:4f:02:03:c6:b9:46:93:ec:75:
2f:16:9a:2c:ac:cf:bb:13:c2:f9:bc:cb:c1:3d:3d:
98:34:ac:92:76:50:20:ed:b2:d6:9f:bb:c3:20:62:
ca:16:8d:ba:0b:d5:24:1d:6a:f1:8c:c4:83:ef:74:
2d:53:a6:db:8e:dd:1c:a4:f2:82:62:55:2f:41:22:
a5:b4:75:6c:75:57:7a:ae:ef:fd:15:4d:11:88:e3:
47:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:7B:8F:05:FD:8E:B9:81:2B:F9:E3:29:F5:A6:E3:8F:E5:E0:A9:6B
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/I3uPBf2OuYEr-eMp9abjj-XgqWs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:dc1::/32
Signature Algorithm: sha256WithRSAEncryption
8d:e4:e6:62:ed:ac:ac:82:d8:24:24:eb:31:b8:48:c5:34:82:
cc:c8:a6:8f:56:b0:33:f0:e6:f4:b7:e6:96:d9:79:70:93:e6:
bb:01:e9:86:9c:97:da:b2:54:89:fb:39:fc:01:fb:53:c5:c6:
60:01:d3:da:34:48:c0:bf:d0:cc:5c:c8:f9:80:7f:9c:14:27:
11:9c:c1:a9:ab:97:34:ff:ae:9f:06:85:df:62:02:b6:d8:31:
a6:f7:91:d8:91:b9:11:0f:53:66:42:a4:33:bf:a6:0c:e2:28:
e1:14:6f:9b:cf:6e:63:44:78:0f:dd:49:2f:5f:26:e4:ae:c3:
cc:8f:aa:71:79:80:06:80:a9:a2:ce:47:60:69:73:2f:35:f2:
4e:9d:be:77:ed:74:61:dc:0a:88:45:e0:4f:04:7c:1a:4f:62:
0d:f6:50:2a:ac:7d:89:eb:8b:89:c3:6d:ea:e8:0c:fe:bc:33:
a5:7b:6d:b3:d3:0b:5e:a6:e9:a4:36:b7:92:da:48:07:ed:be:
97:70:f1:24:c1:c4:9d:42:11:00:5e:ce:38:7e:96:a8:f2:8a:
6d:14:b8:bc:4c:d3:ae:76:00:61:3c:c8:29:8b:49:1d:b5:3e:
f2:ad:81:f0:64:25:12:60:63:c7:19:ac:f7:40:ca:32:57:b4:
06:67:ed:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:42:22 2025 by rpki-client