Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/yHjGzGgmm5n5ZY06xfGHrNjX3Mg.roa
File: yHjGzGgmm5n5ZY06xfGHrNjX3Mg.roa (raw, json)
Hash identifier: V7MsPyC/QHUhpBLRUsWPPBPZfu4045EZ9xHMdQ6ppUQ=
Subject key identifier: C8:78:C6:CC:68:26:9B:99:F9:65:8D:3A:C5:F1:87:AC:D8:D7:DC:C8
Certificate issuer: /CN=1F7D627FE36A2EBF69809BC847B5433BF43E37E8
Certificate serial: AF
Authority key identifier: 1F:7D:62:7F:E3:6A:2E:BF:69:80:9B:C8:47:B5:43:3B:F4:3E:37:E8
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/H31if-NqLr9pgJvIR7VDO_Q-N-g.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/yHjGzGgmm5n5ZY06xfGHrNjX3Mg.roa
Signing time: Tue 04 Feb 2025 05:57:16 +0000
ROA not before: Tue 04 Feb 2025 05:57:16 +0000
ROA not after: Fri 26 Dec 2025 15:30:27 +0000
asID: 152619
IP address blocks: 2401:e3e0:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:22:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 175 (0xaf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1F7D627FE36A2EBF69809BC847B5433BF43E37E8
Validity
Not Before: Feb 4 05:57:16 2025 GMT
Not After : Dec 26 15:30:27 2025 GMT
Subject: CN=C878C6CC68269B99F9658D3AC5F187ACD8D7DCC8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:6b:f8:52:f4:65:5f:d0:64:61:98:1f:0f:99:
13:c9:fc:01:9d:4d:91:e3:fd:01:c2:3d:68:73:94:
49:8f:7b:cf:d7:00:6c:ac:32:aa:7a:a4:6f:bc:22:
05:59:76:fc:cc:6d:19:37:7e:99:02:d9:52:55:01:
9b:8f:5d:9f:8d:ae:9c:d9:5f:e9:de:44:20:c0:fa:
f3:d5:05:44:b9:fd:84:d5:f6:6e:1b:00:cd:c2:37:
e7:6d:97:a5:41:f1:fd:4f:c9:a2:4c:d6:f1:b5:59:
12:5c:c8:78:a3:9f:fd:c8:16:91:35:f0:00:38:02:
39:af:6f:dd:df:c3:5a:e3:6c:17:a8:6f:27:fa:15:
fa:65:58:9c:e3:68:10:e3:a5:6d:d6:93:e1:c8:7a:
b1:46:e2:89:b8:c9:eb:c1:fa:85:e3:2f:35:87:a5:
aa:69:9d:f8:85:47:da:53:d8:c0:bf:fe:9e:cf:10:
13:93:d8:9b:d9:fe:dd:25:49:59:21:b2:b3:52:5b:
06:33:a8:3e:11:75:82:12:92:6a:53:8e:46:70:ea:
8e:72:e2:cb:f4:68:98:0a:1b:bc:c3:14:4c:b3:a8:
e2:d6:1d:ff:db:f2:71:51:fe:b1:b4:b6:7a:66:f6:
20:4e:17:a4:f5:7f:b0:66:aa:b5:10:dd:78:90:7c:
57:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:78:C6:CC:68:26:9B:99:F9:65:8D:3A:C5:F1:87:AC:D8:D7:DC:C8
X509v3 Authority Key Identifier:
keyid:1F:7D:62:7F:E3:6A:2E:BF:69:80:9B:C8:47:B5:43:3B:F4:3E:37:E8
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/H31if-NqLr9pgJvIR7VDO_Q-N-g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/H31if-NqLr9pgJvIR7VDO_Q-N-g.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/yHjGzGgmm5n5ZY06xfGHrNjX3Mg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:e3e0:1::/48
Signature Algorithm: sha256WithRSAEncryption
34:1f:21:7b:a1:1d:4d:d4:76:2b:fb:7f:6b:cb:38:42:02:25:
55:11:03:00:2c:b5:1f:a8:5b:24:41:10:3d:3c:17:bd:d0:08:
61:7c:1c:62:0e:5d:89:4d:7c:88:59:a1:49:e6:68:0a:42:17:
07:67:45:db:1e:06:ec:08:e7:51:a0:b6:a1:94:c7:98:9f:7a:
85:c3:61:7d:08:cc:cf:54:4b:79:b8:53:fc:fa:ab:cb:06:3c:
39:e6:b8:45:02:75:06:76:03:aa:30:da:3b:17:db:d2:43:ac:
86:5b:c6:7e:f5:b7:86:4f:33:2f:35:b0:1a:96:3a:8f:58:a2:
6d:e8:e8:f9:99:8f:d3:6f:bd:8b:03:43:27:22:c0:b6:d1:1c:
e5:b5:b5:66:e5:55:9a:ef:17:ec:bb:62:b9:5c:7a:49:33:9b:
b6:41:6d:59:68:f3:e3:00:de:42:74:0a:46:97:fe:fa:ba:86:
1b:aa:c7:12:ba:14:10:60:cd:fd:07:21:90:61:d8:b2:a0:0b:
27:5d:c9:38:99:5f:bd:c9:36:e9:bd:f3:a0:1d:f0:7b:9a:3f:
69:85:14:05:d0:ce:42:a1:67:b4:31:ae:2c:6b:98:79:58:b0:
1f:06:2f:25:45:c4:dc:be:a1:94:6b:0b:00:e3:ff:c5:22:9c:
aa:5f:41:ef
-----BEGIN CERTIFICATE-----
MIIE2TCCA8GgAwIBAgICAK8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUY3
RDYyN0ZFMzZBMkVCRjY5ODA5QkM4NDdCNTQzM0JGNDNFMzdFODAeFw0yNTAyMDQw
NTU3MTZaFw0yNTEyMjYxNTMwMjdaMDMxMTAvBgNVBAMTKEM4NzhDNkNDNjgyNjlC
OTlGOTY1OEQzQUM1RjE4N0FDRDhEN0RDQzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDza/hS9GVf0GRhmB8PmRPJ/AGdTZHj/QHCPWhzlEmPe8/XAGys
Mqp6pG+8IgVZdvzMbRk3fpkC2VJVAZuPXZ+NrpzZX+neRCDA+vPVBUS5/YTV9m4b
AM3CN+dtl6VB8f1PyaJM1vG1WRJcyHijn/3IFpE18AA4Ajmvb93fw1rjbBeobyf6
FfplWJzjaBDjpW3Wk+HIerFG4om4yevB+oXjLzWHpappnfiFR9pT2MC//p7PEBOT
2JvZ/t0lSVkhsrNSWwYzqD4RdYISkmpTjkZw6o5y4sv0aJgKG7zDFEyzqOLWHf/b
8nFR/rG0tnpm9iBOF6T1f7BmqrUQ3XiQfFctAgMBAAGjggH1MIIB8TAdBgNVHQ4E
FgQUyHjGzGgmm5n5ZY06xfGHrNjX3MgwHwYDVR0jBBgwFoAUH31if+NqLr9pgJvI
R7VDO/Q+N+gwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVkVSWUZB
U1QvSDMxaWYtTnFMcjlwZ0p2SVI3VkRPX1EtTi1nLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9IMzFpZi1OcUxyOXBnSnZJUjdWRE9fUS1OLWcuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9WRVJZRkFTVC95SGpHekdnbW01bjVa
WTA2eGZHSHJOalgzTWcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJ
AwcAJAHj4AABMA0GCSqGSIb3DQEBCwUAA4IBAQA0HyF7oR1N1HYr+39ryzhCAiVV
EQMALLUfqFskQRA9PBe90AhhfBxiDl2JTXyIWaFJ5mgKQhcHZ0XbHgbsCOdRoLah
lMeYn3qFw2F9CMzPVEt5uFP8+qvLBjw55rhFAnUGdgOqMNo7F9vSQ6yGW8Z+9beG
TzMvNbAaljqPWKJt6Oj5mY/Tb72LA0MnIsC20RzltbVm5VWa7xfsu2K5XHpJM5u2
QW1ZaPPjAN5CdApGl/76uoYbqscSuhQQYM39ByGQYdiyoAsnXck4mV+9yTbpvfOg
HfB7mj9phRQF0M5CoWe0Ma4sa5h5WLAfBi8lRcTcvqGUawsA4//FIpyqX0Hv
-----END CERTIFICATE-----
Generated at Wed Apr 16 05:51:20 2025 by rpki-client