Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/mbwexmMAf5Vtp7bIMeeJdZ_tRm0.roa
File: mbwexmMAf5Vtp7bIMeeJdZ_tRm0.roa (raw, json)
Hash identifier: zdWdb4tUZuvizCsK1qIB/J2Cu3clzmb2OnrKGl8Qdis=
Subject key identifier: 99:BC:1E:C6:63:00:7F:95:6D:A7:B6:C8:31:E7:89:75:9F:ED:46:6D
Certificate issuer: /CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B
Certificate serial: 0C4C
Authority key identifier: 39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/mbwexmMAf5Vtp7bIMeeJdZ_tRm0.roa
Signing time: Mon 26 Aug 2024 05:34:37 +0000
ROA not before: Mon 26 Aug 2024 05:34:37 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17408
IP address blocks: 2403:ad40::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:15:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3148 (0xc4c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B
Validity
Not Before: Aug 26 05:34:37 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=99BC1EC663007F956DA7B6C831E789759FED466D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:d0:95:92:70:ac:c8:7c:8a:bc:de:9d:f9:d5:
46:94:8b:06:3a:40:4f:a5:7d:5c:a1:f2:18:60:27:
84:0d:f0:c5:39:8c:68:2f:ed:25:56:1b:7d:78:87:
4c:3d:5a:05:88:94:3e:be:b5:04:f6:58:c2:b0:13:
0d:14:7b:8d:7d:54:4b:c0:f2:92:40:d8:4d:4d:6b:
89:71:ad:56:6f:fe:72:dc:04:97:de:4b:a1:4b:a8:
51:3e:a5:14:2e:d1:a9:32:5e:02:f0:2a:bb:fe:9d:
70:39:ec:89:d1:5d:14:3b:55:15:4c:b9:0d:5a:1d:
f2:10:44:cb:84:a7:ab:90:13:0c:af:e3:74:13:87:
90:31:55:ce:f3:3b:b4:f5:ec:93:46:12:12:13:68:
52:0d:60:3a:f3:97:40:e6:88:f4:ef:91:60:d4:73:
62:d6:68:2d:01:58:75:8b:d5:89:aa:fc:6c:2b:3b:
58:71:50:d9:84:56:ec:d4:c7:7a:37:d2:0d:d7:48:
8a:9b:68:f4:b3:34:7e:ee:82:8f:89:5e:d2:8e:d7:
95:6f:c5:79:71:56:58:e0:a4:83:f9:32:51:19:82:
43:bb:e8:74:12:d8:22:8a:c1:6a:b8:da:a3:31:d2:
0c:b5:66:0d:1a:ed:11:dd:ef:51:a9:63:ea:fc:d8:
c6:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:BC:1E:C6:63:00:7F:95:6D:A7:B6:C8:31:E7:89:75:9F:ED:46:6D
X509v3 Authority Key Identifier:
keyid:39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/mbwexmMAf5Vtp7bIMeeJdZ_tRm0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:ad40::/32
Signature Algorithm: sha256WithRSAEncryption
7e:51:4c:ed:39:c3:8f:c9:3a:4d:c0:34:e4:22:02:25:ff:17:
e4:59:c4:50:26:e1:24:ba:dd:c2:ab:f1:7e:0e:05:1e:21:dd:
8c:6e:64:b5:f5:6a:ea:90:9d:be:14:77:28:65:6c:5d:c7:94:
e7:05:f7:c7:bb:d7:23:77:69:48:81:77:c9:19:ce:aa:f3:57:
98:eb:d9:3c:e9:7e:a8:88:0c:6e:2c:e3:b2:59:43:6e:ec:08:
b8:fa:b0:84:f7:97:1c:a4:bf:42:db:0c:af:b2:a4:32:6e:a0:
d6:16:85:6f:01:d7:c8:03:c6:43:de:b4:29:a1:7e:51:27:28:
ae:1c:3f:e2:c9:91:f1:bb:d7:f0:ac:00:e0:a0:66:89:7d:86:
a3:70:fe:5e:6e:71:07:a0:6d:8e:d0:50:b9:6e:c3:13:bc:39:
38:83:2b:10:89:ce:4a:6d:0a:67:f9:f7:c6:7f:ef:b7:c5:ea:
f1:26:f8:f8:d0:77:ea:6e:38:0e:85:41:6b:15:ec:55:89:e5:
33:58:b9:db:c9:64:d4:41:b1:54:15:d0:03:ba:be:92:a0:9a:
56:3b:e0:b3:53:88:24:ad:2b:b5:38:63:c5:8a:df:52:51:63:
a5:18:7a:0b:0f:e6:f2:53:87:d2:ab:55:65:0f:97:b3:13:15:
78:c8:e6:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:32:51 2025 by rpki-client