Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/-wGGgji8i7Tc0Pf-HFjRI8PAnE0.roa
File: -wGGgji8i7Tc0Pf-HFjRI8PAnE0.roa (raw, json)
Hash identifier: DN8KBicDYSGDpEcv9QXqW7KhhbkXF7JAxcQN/9csBUQ=
Subject key identifier: FB:01:86:82:38:BC:8B:B4:DC:D0:F7:FE:1C:58:D1:23:C3:C0:9C:4D
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 151C
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/-wGGgji8i7Tc0Pf-HFjRI8PAnE0.roa
Signing time: Tue 11 Feb 2025 23:44:20 +0000
ROA not before: Tue 11 Feb 2025 23:44:20 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 218.166.0.0/15 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5404 (0x151c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:20 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=FB01868238BC8BB4DCD0F7FE1C58D123C3C09C4D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:28:e2:65:5a:9c:be:3d:1b:2b:a7:1a:7f:77:
f3:fb:b9:df:ea:74:ec:fa:5f:38:fe:3b:87:da:5f:
93:fd:4b:fd:82:37:b3:40:68:ee:0d:05:c6:f2:c3:
81:c8:de:5e:e3:79:95:62:4c:fb:69:86:75:53:53:
ad:c8:c0:5f:a7:c1:57:5a:80:a8:38:8a:34:ba:98:
c2:36:dc:bc:b4:c7:ab:10:ce:72:b2:3c:6c:44:db:
dd:2d:18:d7:61:72:12:84:5f:fb:10:7b:53:7a:ac:
ac:ae:df:44:d7:c3:dd:be:59:20:18:87:b6:9b:97:
ed:8d:79:af:31:86:d4:41:53:08:d3:c1:7a:2a:64:
4a:05:8b:32:e4:ce:d9:52:d1:6f:d9:5c:0a:d5:c2:
db:0e:42:a8:86:a9:30:40:64:29:f3:fe:ff:c2:70:
83:dc:ba:a0:a1:c5:11:72:47:de:14:72:61:a9:36:
67:47:9a:a7:a0:e7:bc:a2:a7:e6:24:af:72:07:e5:
33:50:de:21:c3:f1:1c:45:20:eb:d8:e7:97:c5:78:
2f:cf:fa:6a:d0:34:47:7d:b9:41:4d:1a:97:5b:7d:
b3:14:20:10:45:ea:de:95:4c:a3:02:3b:50:d4:18:
1a:fa:53:ac:be:d8:06:d9:82:a3:14:02:93:2a:7f:
ed:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:01:86:82:38:BC:8B:B4:DC:D0:F7:FE:1C:58:D1:23:C3:C0:9C:4D
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/-wGGgji8i7Tc0Pf-HFjRI8PAnE0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.166.0.0/15
Signature Algorithm: sha256WithRSAEncryption
1c:22:71:2b:78:66:bd:0f:45:29:42:a9:08:f8:db:6f:6f:09:
3d:10:03:c0:1a:14:fe:f7:ac:97:93:f7:85:a6:8b:ca:ef:d5:
bc:af:8a:c6:8d:03:59:1f:cb:25:28:08:b4:4b:53:f4:92:20:
e4:00:be:66:a7:f0:76:86:58:fd:29:8e:fd:3f:55:c3:ee:ab:
3b:f8:d1:dc:38:4e:d7:00:b1:04:82:7a:29:14:5a:a7:4b:2f:
2c:8f:0b:04:f8:77:2d:c0:99:24:e4:85:48:38:56:33:6b:44:
4f:d0:22:d2:da:ee:8a:8e:82:08:da:27:bb:fe:ed:db:57:13:
04:63:27:ba:d5:8b:01:a4:3c:2b:4c:c5:b8:bc:0e:3f:ad:80:
8f:f7:8f:e0:71:e1:40:3e:92:9b:bf:ba:38:23:55:85:4c:f5:
25:8c:2d:4b:6d:3f:46:da:ef:9c:cb:93:ad:48:0e:59:92:70:
b4:b7:0a:be:9b:2e:5b:bc:63:bb:be:f6:8c:4d:94:2d:6c:80:
7b:5a:51:f3:5d:e4:eb:c4:72:65:f3:3f:f4:f3:ec:a8:9d:34:
29:b5:0f:b0:3c:09:64:4f:76:e2:21:77:fd:78:e3:b7:dd:82:
48:98:a1:ad:f3:99:d9:db:e9:97:4d:e2:8a:1c:14:d2:4a:37:
d0:6e:32:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:43:34 2025 by rpki-client