Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/KssOv4ZF0appc3HaMjMQaWotUGY.roa
File: KssOv4ZF0appc3HaMjMQaWotUGY.roa (raw, json)
Hash identifier: 0g+X966CNMnccvlvjBeUJLj+1kLj9u4CXf4XeZ4VRTw=
Subject key identifier: 2A:CB:0E:BF:86:45:D1:AA:69:73:71:DA:32:33:10:69:6A:2D:50:66
Certificate issuer: /CN=1F7D627FE36A2EBF69809BC847B5433BF43E37E8
Certificate serial: 08
Authority key identifier: 1F:7D:62:7F:E3:6A:2E:BF:69:80:9B:C8:47:B5:43:3B:F4:3E:37:E8
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/H31if-NqLr9pgJvIR7VDO_Q-N-g.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/KssOv4ZF0appc3HaMjMQaWotUGY.roa
Signing time: Fri 03 Jan 2025 08:16:02 +0000
ROA not before: Fri 03 Jan 2025 08:16:02 +0000
ROA not after: Fri 26 Dec 2025 15:30:27 +0000
asID: 152619
IP address blocks: 2401:e3e0::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:22:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8 (0x8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1F7D627FE36A2EBF69809BC847B5433BF43E37E8
Validity
Not Before: Jan 3 08:16:02 2025 GMT
Not After : Dec 26 15:30:27 2025 GMT
Subject: CN=2ACB0EBF8645D1AA697371DA323310696A2D5066
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:7d:fe:71:b6:93:2c:dc:bb:8d:19:72:22:07:
3f:01:28:d1:e1:89:d3:7a:a2:9f:f4:5e:5f:cd:8b:
33:86:a3:2a:5f:f0:31:8d:a1:fc:c0:5c:15:22:4b:
42:f3:00:f0:8e:4a:d9:4d:f2:22:90:53:d6:c1:cd:
cf:b2:6e:a6:74:61:d8:d5:5d:dc:98:01:cc:bc:23:
5c:53:93:41:22:a2:a9:49:f7:df:bc:5e:a0:e8:d7:
fc:a0:fd:13:28:d8:1e:c7:43:ba:13:9c:63:b1:44:
aa:3a:ed:b0:a6:c9:9f:4a:ed:05:7e:6c:db:9a:9d:
1b:e3:07:aa:ab:23:8a:a1:8d:7b:87:cb:7e:55:92:
92:e2:28:e0:ad:37:d8:4d:cb:ea:41:9a:04:c9:37:
f5:27:de:59:46:de:47:ee:2c:de:61:9a:07:47:45:
42:12:57:26:df:6f:c7:27:0e:ab:86:c5:44:e3:96:
e3:13:87:7c:05:1b:cc:1e:d8:41:1d:18:1e:b5:b1:
90:bc:24:4a:28:90:4e:ad:35:ff:a6:01:d4:0b:14:
ac:dd:56:67:ba:74:f3:c6:cb:0b:75:00:87:bf:c4:
66:64:af:a8:c8:56:8e:80:a2:cb:93:22:21:bb:42:
76:c6:63:fe:bd:84:15:d1:f6:e5:ae:a7:9c:89:75:
75:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:CB:0E:BF:86:45:D1:AA:69:73:71:DA:32:33:10:69:6A:2D:50:66
X509v3 Authority Key Identifier:
keyid:1F:7D:62:7F:E3:6A:2E:BF:69:80:9B:C8:47:B5:43:3B:F4:3E:37:E8
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/H31if-NqLr9pgJvIR7VDO_Q-N-g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/H31if-NqLr9pgJvIR7VDO_Q-N-g.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/KssOv4ZF0appc3HaMjMQaWotUGY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:e3e0::/32
Signature Algorithm: sha256WithRSAEncryption
09:8b:1d:91:61:2e:f3:80:02:9c:23:82:5b:c9:7e:bc:82:9f:
39:1f:f9:c3:b0:57:1c:2d:5f:47:a8:41:1b:62:26:da:5c:91:
3f:7d:dd:96:a7:92:35:b4:00:4f:e1:c3:bb:c7:64:e2:ad:e0:
dc:df:fd:aa:3b:0c:18:ca:74:4f:12:12:30:e3:d2:c3:34:61:
94:90:74:68:f2:17:fa:e0:0d:41:37:bc:30:ff:67:0f:fe:e4:
2d:fb:2a:a4:3e:8d:b7:25:59:53:33:48:84:ce:9a:86:fc:91:
1b:31:7c:d5:b5:a5:e3:79:0a:c4:f7:07:84:1d:20:cd:d1:4c:
96:a1:80:c4:c5:ce:42:78:9e:43:23:0f:c6:0a:c3:33:0f:b7:
68:ae:cd:cc:83:86:38:7c:76:ef:a1:e4:84:27:76:61:ad:f1:
38:50:4d:da:23:46:3c:41:ad:1b:2a:0b:fa:ae:93:dc:06:b0:
46:f1:af:3a:c6:72:60:8a:41:e6:7c:8b:3e:38:3f:f2:6d:e0:
07:ef:5c:f8:47:8f:28:de:38:9e:a0:77:94:13:bb:fa:ef:5e:
de:b7:21:84:cd:a1:1a:04:c5:ab:90:9c:96:f6:14:bf:cf:8e:
6f:8e:04:cc:48:14:97:76:fa:95:71:a6:3f:15:7c:3b:3f:cf:
6a:22:b6:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 14:32:50 2025 by rpki-client