Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/XqMovTD1xCJ_9naADALbGjcTUlk.roa
File: XqMovTD1xCJ_9naADALbGjcTUlk.roa (raw, json)
Hash identifier: qdw0SWrQrYyGFCFcat/Ls801O+4iHBT6yGZp1L5hsyM=
Subject key identifier: 5E:A3:28:BD:30:F5:C4:22:7F:F6:76:80:0C:02:DB:1A:37:13:52:59
Certificate issuer: /CN=1F7D627FE36A2EBF69809BC847B5433BF43E37E8
Certificate serial: B3
Authority key identifier: 1F:7D:62:7F:E3:6A:2E:BF:69:80:9B:C8:47:B5:43:3B:F4:3E:37:E8
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/H31if-NqLr9pgJvIR7VDO_Q-N-g.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/XqMovTD1xCJ_9naADALbGjcTUlk.roa
Signing time: Tue 04 Feb 2025 05:58:35 +0000
ROA not before: Tue 04 Feb 2025 05:58:35 +0000
ROA not after: Fri 26 Dec 2025 15:30:27 +0000
asID: 152619
IP address blocks: 2401:e3e0:f::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:22:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 179 (0xb3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1F7D627FE36A2EBF69809BC847B5433BF43E37E8
Validity
Not Before: Feb 4 05:58:35 2025 GMT
Not After : Dec 26 15:30:27 2025 GMT
Subject: CN=5EA328BD30F5C4227FF676800C02DB1A37135259
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d5:69:d3:d7:eb:d1:d6:50:4c:5d:01:6c:00:
60:ad:2d:fa:26:40:7b:f7:d5:36:2e:c0:49:f6:1c:
21:b6:ed:d2:a6:e9:c8:06:6c:bd:32:1b:26:5b:dc:
b7:09:09:87:7b:64:d8:d4:c3:20:0f:ea:1d:29:5d:
d8:e4:41:71:9d:38:40:f5:50:ac:16:20:0f:34:82:
d5:b5:26:06:91:8b:64:54:72:83:11:12:ea:6d:03:
0a:07:e4:df:fd:d4:0a:1a:04:f5:01:d9:5a:df:2a:
a4:a0:17:46:80:71:30:34:ea:60:bc:0e:98:50:99:
9c:19:2e:b2:e1:55:28:6e:f4:4f:0c:64:89:00:48:
3d:82:df:69:f0:d4:72:f3:27:8c:a5:14:28:37:50:
21:b4:97:59:fd:78:84:3f:88:8d:5f:8e:a0:27:a9:
87:c6:12:79:2f:98:60:cc:34:3f:f0:e5:d3:71:81:
25:35:78:f7:55:5c:62:00:70:8f:74:67:ef:3a:34:
69:11:60:16:62:98:64:6c:15:9c:7c:2f:c7:23:5b:
8b:21:07:01:db:30:62:23:bc:a1:65:67:57:9e:98:
fa:63:3c:4f:75:7c:1c:f3:e4:df:be:87:69:9b:2a:
69:4a:ac:16:3d:89:9a:2f:2f:67:9f:04:b3:54:6d:
35:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:A3:28:BD:30:F5:C4:22:7F:F6:76:80:0C:02:DB:1A:37:13:52:59
X509v3 Authority Key Identifier:
keyid:1F:7D:62:7F:E3:6A:2E:BF:69:80:9B:C8:47:B5:43:3B:F4:3E:37:E8
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/H31if-NqLr9pgJvIR7VDO_Q-N-g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/H31if-NqLr9pgJvIR7VDO_Q-N-g.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/XqMovTD1xCJ_9naADALbGjcTUlk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:e3e0:f::/48
Signature Algorithm: sha256WithRSAEncryption
72:15:94:25:b0:62:9d:d7:bb:16:8b:7b:8a:db:90:01:15:e7:
3d:62:95:bd:a5:2e:17:bd:8a:0c:f1:d9:76:86:5d:ba:80:d1:
23:93:27:77:cc:32:57:5b:9d:68:f5:5f:f2:fe:7f:1e:92:79:
fd:5e:23:af:7a:a5:a0:bc:20:bb:fd:ef:1b:f2:57:16:5a:fa:
69:e7:49:c2:d5:a3:6d:b6:fa:5e:4f:f9:b0:80:7e:92:50:c0:
13:e9:88:9b:4f:f3:5c:d2:f4:3d:d4:05:57:92:95:57:b5:2b:
25:eb:8a:b6:c6:5c:55:ed:d0:be:d2:39:0c:ed:d4:77:8c:42:
14:1a:cd:70:9f:05:c2:50:ad:33:e7:e7:6c:d6:94:8d:e4:61:
50:b9:42:f4:53:ea:18:f0:2b:02:30:15:91:26:4d:87:34:be:
76:50:2c:6d:71:a5:cf:2d:21:bf:ab:f5:d7:cc:0c:90:96:40:
18:fc:9a:e0:8a:74:6d:b7:27:e0:82:f9:71:52:8f:34:87:90:
96:9b:8d:5a:c0:23:eb:3f:28:cb:ab:ef:9f:78:f6:7e:e7:9c:
21:01:f7:3a:78:28:26:35:d4:97:5f:e6:15:3a:7f:ac:40:72:
18:0c:16:14:b2:fc:e3:9a:73:30:15:fb:70:9e:65:e6:46:d2:
c7:65:72:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 05:56:15 2025 by rpki-client