Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/0IGKCXD3ZlJVKEAlH2Gu16Zzw2g.roa
File: 0IGKCXD3ZlJVKEAlH2Gu16Zzw2g.roa (raw, json)
Hash identifier: fly1vqwiMGElrFweU9fzJ/Wfqkg1GHj0PbHh6gNhuhA=
Subject key identifier: D0:81:8A:09:70:F7:66:52:55:28:40:25:1F:61:AE:D7:A6:73:C3:68
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1199
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/0IGKCXD3ZlJVKEAlH2Gu16Zzw2g.roa
Signing time: Mon 26 Aug 2024 05:17:42 +0000
ROA not before: Mon 26 Aug 2024 05:17:42 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17714
IP address blocks: 203.78.190.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:35:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4505 (0x1199)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 26 05:17:42 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=D0818A0970F76652552840251F61AED7A673C368
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:49:8d:b5:74:a0:bb:3a:5f:ab:f8:32:29:ff:
1c:8a:f7:a1:b5:f3:9c:a5:d7:aa:6e:12:4b:b8:c1:
8c:70:03:59:6a:5c:b2:1d:0e:0c:11:a5:17:a8:70:
9d:56:95:47:81:be:0e:81:8d:80:93:bb:c2:0f:ee:
61:6e:08:23:e1:fa:0c:ae:38:6f:84:94:c1:ac:75:
bf:75:39:9c:d6:ca:ca:8a:9d:9d:27:21:b4:e8:84:
c0:5a:e0:13:4a:f1:3b:55:33:15:2f:2c:0b:fe:86:
4a:4c:0f:56:86:c3:8a:de:5a:8a:51:6c:ec:e4:76:
2c:49:1c:d6:7e:52:2f:ae:6f:a5:45:88:77:a8:dd:
e0:e6:98:24:bc:59:3d:40:ca:2c:7b:25:42:6d:6f:
4c:ef:b0:f0:3d:02:c8:93:33:f5:0b:bb:72:fd:76:
ed:0d:87:09:02:bd:23:a3:05:f8:fb:41:cc:8a:9a:
bd:e9:81:49:43:18:8e:4f:e7:83:82:95:ee:81:98:
ce:96:33:7c:d7:fb:92:6d:42:12:1e:c5:94:2d:96:
4b:9b:5a:a8:c7:f5:ed:36:e5:54:b4:05:05:af:40:
46:6b:50:6c:a2:bc:f3:69:4b:b7:90:ab:35:98:fb:
97:33:6f:ab:bb:d0:cf:8f:57:6f:be:45:6c:a8:08:
c5:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:81:8A:09:70:F7:66:52:55:28:40:25:1F:61:AE:D7:A6:73:C3:68
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/0IGKCXD3ZlJVKEAlH2Gu16Zzw2g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.78.190.0/24
Signature Algorithm: sha256WithRSAEncryption
85:1c:26:76:ea:9d:6d:f8:ca:98:52:f1:8c:b6:bf:d7:f0:54:
91:e1:f8:7a:66:cb:65:a8:35:14:cc:47:e3:3a:f3:66:3b:6b:
0d:14:07:9b:0e:c3:cf:d0:48:12:a8:de:e5:8a:50:56:93:d1:
a6:e2:9f:ea:62:3b:bc:6c:6a:d5:84:e6:64:00:d8:c5:43:f1:
39:f1:8d:3e:c7:9b:6d:ae:85:28:7c:8d:b0:2b:f2:31:1f:67:
c9:ae:ea:60:b6:ae:07:95:88:05:da:f4:1f:b0:25:a0:e4:aa:
9e:71:c8:11:35:0f:87:92:a4:09:1e:a6:52:0f:c2:cc:4c:d6:
ee:0f:86:dc:99:9c:94:76:41:22:e1:d2:a2:5f:0a:7b:eb:12:
72:3d:ad:1f:9b:ba:bd:28:e7:11:b8:17:4f:e0:2c:e1:a8:76:
19:d6:6e:2e:55:d0:b8:3b:5b:a1:f0:cc:1e:01:10:91:4f:ab:
de:a6:e6:5d:e1:cd:cc:f8:cd:b5:05:64:87:e1:09:1c:0e:a3:
cc:fd:a9:ae:d1:b4:a4:fc:c1:40:76:57:f1:d9:f8:0a:c5:88:
1f:36:19:b0:2b:6b:2f:5b:8a:ec:68:86:c8:95:33:66:ee:d5:
9a:89:d1:64:41:b2:5a:e6:77:d2:13:cf:5a:b9:e0:10:e3:35:
ea:6f:7f:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:24:02 2025 by rpki-client