Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PEICHANG/p8gyGCLIG47MNNIsm3_HehXXvZo.roa
File: p8gyGCLIG47MNNIsm3_HehXXvZo.roa (raw, json)
Hash identifier: uBIGnRSEZDkvJM+PqAFupYeEZaxspVGkyRgq+2bR9sE=
Subject key identifier: A7:C8:32:18:22:C8:1B:8E:CC:34:D2:2C:9B:7F:C7:7A:15:D7:BD:9A
Certificate issuer: /CN=53AB025E558614A6AC89DCA0302DD23BD596A256
Certificate serial: 0103
Authority key identifier: 53:AB:02:5E:55:86:14:A6:AC:89:DC:A0:30:2D:D2:3B:D5:96:A2:56
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/U6sCXlWGFKasidygMC3SO9WWolY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PEICHANG/p8gyGCLIG47MNNIsm3_HehXXvZo.roa
Signing time: Mon 23 Sep 2024 05:15:57 +0000
ROA not before: Mon 23 Sep 2024 05:15:57 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131642
IP address blocks: 2401:3960::/32 maxlen: 64
Validation: Failed, certificate revoked on Thu 09 Jan 2025 02:52:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 259 (0x103)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53AB025E558614A6AC89DCA0302DD23BD596A256
Validity
Not Before: Sep 23 05:15:57 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=A7C8321822C81B8ECC34D22C9B7FC77A15D7BD9A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:1c:49:12:4c:35:be:05:dc:a1:f1:d3:9c:53:
a4:97:61:89:54:e6:18:e6:4c:a2:cd:f5:40:ea:ad:
fc:23:2d:da:27:85:80:8b:7a:b0:c9:13:f7:b3:ff:
5c:d2:c5:09:06:84:3b:dd:bc:e9:b0:ae:8f:09:d7:
03:f2:3e:ee:ba:81:12:11:3b:41:be:1d:72:c0:9f:
b8:a6:72:f9:1c:ec:b8:47:8f:cf:4f:2a:0b:20:5e:
7b:47:08:88:8f:43:30:1f:3f:ff:74:a9:74:68:ac:
47:c2:34:d5:fe:08:3e:3c:9f:47:ce:dd:ff:d6:9d:
b9:31:b7:aa:95:34:b8:5f:43:ba:8d:b6:21:02:6c:
5c:aa:b1:4b:e8:f6:fb:ec:46:57:e7:d4:11:ed:a4:
93:79:e9:f5:5d:38:8f:4f:9e:b2:4b:c8:f0:d9:a3:
4b:05:ff:7b:0c:03:72:e3:84:ba:ef:92:2a:bc:ad:
3a:6a:39:96:09:0e:84:a7:15:9a:1c:bc:26:a2:c5:
29:1c:aa:e6:e0:68:c4:c4:49:2b:15:15:e7:c4:07:
bc:50:a7:2b:ae:0e:af:31:17:c3:4f:3b:7c:52:39:
f4:2b:3c:d3:10:84:28:d6:2a:ec:81:03:f4:7d:54:
9c:43:d3:e1:33:4e:99:c0:8d:3d:71:f3:4f:b7:b7:
0c:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:C8:32:18:22:C8:1B:8E:CC:34:D2:2C:9B:7F:C7:7A:15:D7:BD:9A
X509v3 Authority Key Identifier:
keyid:53:AB:02:5E:55:86:14:A6:AC:89:DC:A0:30:2D:D2:3B:D5:96:A2:56
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEICHANG/U6sCXlWGFKasidygMC3SO9WWolY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/U6sCXlWGFKasidygMC3SO9WWolY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEICHANG/p8gyGCLIG47MNNIsm3_HehXXvZo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:3960::/32
Signature Algorithm: sha256WithRSAEncryption
42:50:dd:68:55:e7:e8:54:d4:24:20:4e:62:b3:f8:49:ce:f0:
36:91:4d:60:0f:85:5d:50:e5:81:99:02:b5:eb:91:6b:90:d2:
bb:a8:8d:06:21:1b:4a:e2:31:99:9a:29:15:4b:70:05:bd:43:
8c:f7:e0:1c:40:71:c7:71:48:f9:2d:e7:19:eb:b0:d5:c8:00:
23:fd:b4:d3:86:8e:76:23:6d:b8:68:c9:40:17:67:5c:49:e5:
cf:15:a3:84:15:12:90:c3:1f:58:1f:e7:94:52:dd:a4:b8:89:
92:b5:ec:41:df:34:c7:b8:20:ae:2c:8c:4f:4f:8b:30:16:26:
a2:dc:8c:5b:a2:0a:68:c0:73:ed:98:fe:c9:a3:73:c8:34:dc:
50:1d:c1:31:09:da:f2:42:03:be:2a:8e:30:17:05:82:24:c7:
26:d5:36:01:4a:15:79:35:bf:30:e1:df:f2:b0:ff:19:3c:a5:
90:53:42:a1:a1:11:68:b6:01:25:c2:70:44:6b:68:4c:7b:79:
a5:62:75:d2:77:1d:a7:37:59:9e:61:b3:69:fc:eb:95:0a:a8:
3b:3a:97:5d:a3:26:05:00:25:6e:48:84:08:5f:b0:62:62:46:
ca:75:55:70:9a:df:1e:b4:40:80:bd:c1:24:2f:a7:3c:b5:13:
82:40:f8:16
-----BEGIN CERTIFICATE-----
MIIE1zCCA7+gAwIBAgICAQMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTNB
QjAyNUU1NTg2MTRBNkFDODlEQ0EwMzAyREQyM0JENTk2QTI1NjAeFw0yNDA5MjMw
NTE1NTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE3QzgzMjE4MjJDODFC
OEVDQzM0RDIyQzlCN0ZDNzdBMTVEN0JEOUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC9HEkSTDW+Bdyh8dOcU6SXYYlU5hjmTKLN9UDqrfwjLdonhYCL
erDJE/ez/1zSxQkGhDvdvOmwro8J1wPyPu66gRIRO0G+HXLAn7imcvkc7LhHj89P
KgsgXntHCIiPQzAfP/90qXRorEfCNNX+CD48n0fO3f/Wnbkxt6qVNLhfQ7qNtiEC
bFyqsUvo9vvsRlfn1BHtpJN56fVdOI9PnrJLyPDZo0sF/3sMA3LjhLrvkiq8rTpq
OZYJDoSnFZocvCaixSkcqubgaMTESSsVFefEB7xQpyuuDq8xF8NPO3xSOfQrPNMQ
hCjWKuyBA/R9VJxD0+EzTpnAjT1x80+3twzJAgMBAAGjggHzMIIB7zAdBgNVHQ4E
FgQUp8gyGCLIG47MNNIsm3/HehXXvZowHwYDVR0jBBgwFoAUU6sCXlWGFKasidyg
MC3SO9WWolYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEVJQ0hB
TkcvVTZzQ1hsV0dGS2FzaWR5Z01DM1NPOVdXb2xZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9VNnNDWGxXR0ZLYXNpZHlnTUMzU085V1dvbFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QRUlDSEFORy9wOGd5R0NMSUc0N01O
TklzbTNfSGVoWFh2Wm8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAH
AwUAJAE5YDANBgkqhkiG9w0BAQsFAAOCAQEAQlDdaFXn6FTUJCBOYrP4Sc7wNpFN
YA+FXVDlgZkCteuRa5DSu6iNBiEbSuIxmZopFUtwBb1DjPfgHEBxx3FI+S3nGeuw
1cgAI/2004aOdiNtuGjJQBdnXEnlzxWjhBUSkMMfWB/nlFLdpLiJkrXsQd80x7gg
riyMT0+LMBYmotyMW6IKaMBz7Zj+yaNzyDTcUB3BMQna8kIDviqOMBcFgiTHJtU2
AUoVeTW/MOHf8rD/GTylkFNCoaERaLYBJcJwRGtoTHt5pWJ10ncdpzdZnmGzafzr
lQqoOzqXXaMmBQAlbkiECF+wYmJGynVVcJrfHrRAgL3BJC+nPLUTgkD4Fg==
-----END CERTIFICATE-----
Generated at Thu Jan 9 09:19:11 2025 by rpki-client on console.sobornost.net