Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/SBJCxFUCVL9zof9UWf7rcyEHIAY.roa
File: SBJCxFUCVL9zof9UWf7rcyEHIAY.roa (raw, json)
Hash identifier: B2nVTz56QjQvAhS9CU0Zz9H7/N1iWc8uCCNrqEoYmwE=
Subject key identifier: 48:12:42:C4:55:02:54:BF:73:A1:FF:54:59:FE:EB:73:21:07:20:06
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 12D6
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/SBJCxFUCVL9zof9UWf7rcyEHIAY.roa
Signing time: Mon 26 Aug 2024 05:32:36 +0000
ROA not before: Mon 26 Aug 2024 05:32:36 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 16509
IP address blocks: 2001:dc1::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:03:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4822 (0x12d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Aug 26 05:32:36 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=481242C4550254BF73A1FF5459FEEB7321072006
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:db:92:7f:c2:e9:f1:42:55:19:38:e3:f9:46:
f1:4c:e4:1f:08:93:63:49:6b:fa:93:6d:64:10:03:
f5:a7:d5:c2:4d:17:10:c9:5e:3e:c2:7b:58:c3:df:
d8:c5:62:b8:de:67:16:3c:f8:b0:9c:7a:72:a3:c3:
11:07:47:ec:d4:a0:27:6a:3d:0d:69:ee:77:52:f0:
1e:31:10:11:b3:6b:cd:72:2e:be:bf:a2:13:b9:21:
b3:fa:7f:f4:8b:73:8f:7c:db:86:ca:77:84:95:ca:
d8:9c:cb:9d:ee:5c:15:d1:0a:5d:15:4b:7b:04:72:
76:26:a7:ea:4f:57:79:bf:61:39:ff:49:5d:a3:29:
04:85:df:1e:4c:55:16:f2:90:52:f7:53:05:42:b3:
1b:7e:97:ce:70:fe:2d:9c:4d:ba:a1:aa:80:26:c7:
31:91:93:9f:c5:f8:cc:9e:37:7e:ae:9b:a2:5b:4d:
aa:c8:59:40:19:33:18:ff:9e:38:23:e0:23:77:dc:
52:77:30:e1:4e:1c:dc:9a:1e:ad:8c:08:97:5a:24:
01:53:06:d5:6b:25:ff:b8:02:89:6d:dd:dc:34:d8:
eb:9b:d6:b9:9d:0a:0c:d6:ea:b3:09:47:e4:6c:c0:
8a:58:4a:e6:a5:31:8f:28:10:7d:c6:50:9e:fb:2c:
94:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:12:42:C4:55:02:54:BF:73:A1:FF:54:59:FE:EB:73:21:07:20:06
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/SBJCxFUCVL9zof9UWf7rcyEHIAY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:dc1::/48
Signature Algorithm: sha256WithRSAEncryption
11:25:e7:3a:fb:27:f7:ab:4c:a2:97:f3:3e:4a:94:a5:3f:e0:
12:41:58:fe:8f:22:9c:32:9c:b0:9c:7e:23:65:fd:a5:25:66:
9e:d1:7e:b7:b0:17:fd:87:17:cd:36:97:fc:f1:6c:ae:e2:4c:
d0:82:28:73:94:44:f1:6a:25:be:6a:ae:19:58:a7:b7:c6:0c:
46:7f:c0:31:f7:a7:27:57:a7:57:82:a2:fc:48:9e:b6:06:39:
03:ed:7f:2a:08:ea:49:dd:06:73:a0:75:6d:0c:96:9b:d3:30:
b5:6e:d4:3c:f1:fe:06:75:af:70:0e:65:09:b4:4b:28:8b:8d:
07:fd:92:70:c4:9e:79:cb:39:75:78:cc:0e:f3:2a:01:df:68:
45:b8:bc:89:7b:45:09:27:62:ec:dc:7d:79:a2:81:1b:1f:03:
c2:e5:1d:b3:45:29:8e:d1:ce:3f:16:69:ce:98:3c:a2:18:fe:
b9:43:2c:63:22:c7:ca:3d:f8:ff:e4:2a:a5:5e:0c:ab:5b:49:
22:8e:71:10:a1:cc:be:3a:bd:66:90:5b:44:ee:ca:12:2a:32:
0d:af:94:a9:3c:e9:b5:91:06:ae:46:5c:98:f1:ed:a2:2c:79:
0b:ea:de:ad:14:2d:ab:dc:00:e4:6d:1b:31:34:e2:79:44:d7:
24:ff:0f:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:04:19 2025 by rpki-client