Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/fgY6tHXrOKynLda-USQJsUbw5yg.roa
File: fgY6tHXrOKynLda-USQJsUbw5yg.roa (raw, json)
Hash identifier: DjIFopNAPCN5dEBE6ZP1D1R5l4mU34Y3L03RFiILfcU=
Subject key identifier: 7E:06:3A:B4:75:EB:38:AC:A7:2D:D6:BE:51:24:09:B1:46:F0:E7:28
Certificate issuer: /CN=6602965A7D3F7FFBF3B51EDF14E3BBCC2DF3B69A
Certificate serial: 0B
Authority key identifier: 66:02:96:5A:7D:3F:7F:FB:F3:B5:1E:DF:14:E3:BB:CC:2D:F3:B6:9A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZgKWWn0_f_vztR7fFOO7zC3ztpo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/fgY6tHXrOKynLda-USQJsUbw5yg.roa
Signing time: Fri 03 Jan 2025 08:15:30 +0000
ROA not before: Fri 03 Jan 2025 08:15:30 +0000
ROA not after: Fri 26 Dec 2025 15:30:27 +0000
asID: 152619
IP address blocks: 161.248.44.0/23 maxlen: 32
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:22:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11 (0xb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6602965A7D3F7FFBF3B51EDF14E3BBCC2DF3B69A
Validity
Not Before: Jan 3 08:15:30 2025 GMT
Not After : Dec 26 15:30:27 2025 GMT
Subject: CN=7E063AB475EB38ACA72DD6BE512409B146F0E728
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:e7:93:c8:40:1e:af:20:d3:4c:b1:37:91:b9:
80:7b:9b:6f:44:84:bb:02:29:49:36:3f:20:cb:50:
93:f8:c5:8d:11:70:92:e3:07:c6:c7:a3:37:8f:78:
24:fd:22:72:6f:94:29:e7:1b:7d:43:a3:fd:47:c2:
94:3e:01:36:bb:97:ff:11:88:42:1b:63:88:74:0d:
0e:23:41:09:08:98:38:53:b8:fc:c0:ef:e6:e9:27:
cd:79:c1:10:b8:bc:fb:30:47:93:bd:e5:fc:9a:2c:
14:82:30:b2:0c:51:17:60:60:68:0a:1c:c1:2f:c8:
04:66:3c:6c:93:ca:d0:6d:d6:93:85:51:84:0e:bd:
69:14:60:d1:33:1d:28:86:e5:f6:2c:ed:c7:04:57:
27:26:03:f6:eb:5f:c5:0b:6f:64:64:4f:50:1d:a4:
05:3f:54:f8:f0:5a:cf:b9:b5:b5:7e:a8:2d:a1:bd:
84:a0:e4:52:77:2d:b8:b5:d7:95:9a:99:db:80:fa:
87:06:cc:e1:dd:75:df:40:78:68:61:51:c4:61:d0:
3d:69:f9:b5:62:f1:90:45:fa:20:66:d8:23:d4:05:
aa:b5:4b:62:33:2e:d5:eb:04:d7:4d:8f:41:ac:b6:
6d:41:0a:05:f6:78:f1:05:a5:f5:a2:f5:a9:fa:a8:
08:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:06:3A:B4:75:EB:38:AC:A7:2D:D6:BE:51:24:09:B1:46:F0:E7:28
X509v3 Authority Key Identifier:
keyid:66:02:96:5A:7D:3F:7F:FB:F3:B5:1E:DF:14:E3:BB:CC:2D:F3:B6:9A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/ZgKWWn0_f_vztR7fFOO7zC3ztpo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZgKWWn0_f_vztR7fFOO7zC3ztpo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/fgY6tHXrOKynLda-USQJsUbw5yg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
161.248.44.0/23
Signature Algorithm: sha256WithRSAEncryption
67:2f:8f:55:9d:66:9b:29:0a:1d:6c:e5:dc:ad:d4:d1:d3:af:
a2:d6:60:fc:0f:cf:7b:88:6d:c2:9e:c0:50:ac:da:3b:bc:45:
8c:ae:e7:64:0e:4e:86:d6:1a:85:05:2c:e5:5f:28:e7:7e:7a:
08:72:dd:44:9f:d9:02:5a:3a:6e:50:63:b9:5c:f2:2a:ea:e1:
e1:66:f8:21:ec:1c:6d:75:a5:e8:ea:b6:78:93:e8:68:1a:dc:
2e:e0:9e:81:b6:cb:a0:97:3c:0b:3e:99:75:1e:89:60:1c:a0:
85:65:1c:00:1b:f7:d5:92:17:36:15:bb:bd:28:70:19:c0:d4:
3c:67:a8:5a:92:30:12:56:39:c2:db:bf:23:af:96:99:4b:9b:
f0:13:af:6c:57:30:75:9d:d1:ca:90:75:c0:2c:d3:a0:f1:27:
9b:0b:cc:b6:9e:d7:35:7a:3b:0f:35:48:9b:8f:b8:14:89:ea:
fb:37:02:3e:67:eb:7b:7f:00:7a:e3:97:ce:d6:9a:81:c5:15:
e3:15:ff:05:0a:21:c9:94:3a:fa:88:ad:b5:8a:59:34:0d:32:
50:3c:7c:db:11:1a:ea:39:77:11:8b:15:30:3f:8e:ef:8d:b0:
ae:eb:0a:83:82:41:17:3d:cb:20:13:bb:2e:cd:f2:c4:51:76:
d3:99:e6:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 05:48:18 2025 by rpki-client