Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/-fRLk_OhGAyHc7Idhu5Z7awO5A4.roa
File: -fRLk_OhGAyHc7Idhu5Z7awO5A4.roa (raw, json)
Hash identifier: YjegI8rGZTLm7JL8soV33tw7yegVFTVVujxF3gqY1DU=
Subject key identifier: F9:F4:4B:93:F3:A1:18:0C:87:73:B2:1D:86:EE:59:ED:AC:0E:E4:0E
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1221
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/-fRLk_OhGAyHc7Idhu5Z7awO5A4.roa
Signing time: Mon 26 Aug 2024 05:18:16 +0000
ROA not before: Mon 26 Aug 2024 05:18:16 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 1.160.0.0/12 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 12:51:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4641 (0x1221)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 26 05:18:16 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F9F44B93F3A1180C8773B21D86EE59EDAC0EE40E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:8f:3a:cd:87:2e:6c:0f:d7:b2:08:34:f6:f5:
cf:f1:c2:35:b8:ea:69:10:a7:3b:cb:ad:d0:83:83:
76:4e:03:d6:dd:7f:e6:9e:38:37:b4:4f:c3:34:3f:
48:45:c7:36:40:95:64:05:0f:9e:40:11:3c:f1:53:
e1:c2:2c:b5:09:b8:4f:15:8d:86:46:c6:b7:39:1a:
4c:9b:40:c3:22:60:5c:75:d6:2f:28:9f:ca:ba:24:
2e:32:c6:58:40:d9:23:43:01:b6:f5:44:fd:9f:0a:
f7:92:38:cb:ec:28:70:f2:8c:e3:08:d4:b6:e3:a5:
c7:c1:90:36:0a:8b:72:df:3f:c1:f6:43:0f:8e:5b:
9d:ae:0c:3a:3c:58:6d:7c:41:f6:75:67:e6:98:15:
13:c6:85:9a:6b:f9:c1:74:6b:e8:3d:8e:05:20:f9:
01:d6:a5:78:a1:a8:18:75:b2:c0:07:c4:f7:fa:8f:
a8:01:b3:84:f7:aa:0a:59:a2:a0:44:1c:99:1b:59:
5a:19:d4:c7:66:ef:57:e2:a5:7c:82:c6:b9:46:86:
be:ac:30:c5:e2:8c:99:19:2d:87:6e:28:3f:2d:89:
e6:1f:72:8b:d1:f3:83:9e:42:a5:a2:a0:e0:ed:64:
4c:be:3e:92:4d:c9:b0:d4:13:b7:85:77:b0:b2:4c:
ab:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:F4:4B:93:F3:A1:18:0C:87:73:B2:1D:86:EE:59:ED:AC:0E:E4:0E
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/-fRLk_OhGAyHc7Idhu5Z7awO5A4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
1.160.0.0/12
Signature Algorithm: sha256WithRSAEncryption
22:35:03:81:19:d7:75:2f:b5:2e:7b:b1:97:cf:11:50:6e:bf:
3a:21:af:cb:65:3c:92:75:4f:64:20:92:77:b4:41:97:75:94:
64:e0:50:16:ef:4f:ce:e3:63:26:fb:d3:5b:1f:f7:fb:59:5e:
fe:2e:a0:aa:f4:64:a3:0d:79:50:17:a1:bd:a7:5f:e6:1f:6f:
51:38:0d:4b:e4:1f:de:3f:6d:56:7e:df:bb:e5:e4:8d:6d:bc:
df:9b:6a:e3:f6:c2:f4:59:d4:ab:ba:5d:c7:45:91:59:b9:80:
15:70:77:8a:bd:3e:4e:82:e1:f4:c0:e0:74:d8:12:84:28:5b:
7c:5d:c4:eb:35:e8:5c:c2:83:26:25:8f:18:80:8e:99:76:dd:
7e:13:f3:03:70:46:3a:33:34:70:df:ce:ae:2a:e7:1d:c8:e3:
0d:5a:52:e7:6c:8f:3d:68:a7:ab:b4:28:8f:a5:03:e3:99:a7:
4a:58:01:1f:15:87:81:6a:7d:33:56:8a:bf:c5:c2:aa:20:50:
b2:61:ae:6b:56:d5:3a:be:95:9d:c0:8e:20:68:a4:92:92:20:
99:cb:aa:f6:24:68:08:83:6f:b4:6e:ba:51:fb:4a:bb:d4:07:
ff:8d:d6:9f:fb:57:3f:8a:6c:12:f7:ab:cc:4d:a0:be:af:71:
48:2b:0e:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:32:34 2025 by rpki-client