Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/24QtKs9d98SxBvEiO4Q4CU5VGjs.roa
File: 24QtKs9d98SxBvEiO4Q4CU5VGjs.roa (raw, json)
Hash identifier: G+apZ7oJDqKR4ehyNKlhSgg7lPyQcmKbPgXpHMTaEyQ=
Subject key identifier: DB:84:2D:2A:CF:5D:F7:C4:B1:06:F1:22:3B:84:38:09:4E:55:1A:3B
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 150C
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/24QtKs9d98SxBvEiO4Q4CU5VGjs.roa
Signing time: Tue 11 Feb 2025 23:44:16 +0000
ROA not before: Tue 11 Feb 2025 23:44:16 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 203.160.242.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5388 (0x150c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:16 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=DB842D2ACF5DF7C4B106F1223B8438094E551A3B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:b2:98:25:b5:8d:52:46:95:ac:74:ee:1a:3e:
a5:48:b9:90:21:1b:28:b4:f5:f8:7c:f8:da:ee:99:
e2:27:b9:1e:45:46:92:ee:65:66:df:b0:b6:ba:7a:
05:00:0b:57:ca:03:6f:46:39:92:37:1a:5b:e3:83:
75:d4:f6:e7:3d:67:c6:fd:2d:d0:48:1e:c9:5a:42:
b4:4d:2f:9b:32:a3:09:94:c3:79:aa:8c:ec:24:0d:
e4:97:c5:c0:ee:df:55:d5:de:aa:37:13:39:18:73:
3b:3c:ff:cb:c0:5d:62:9e:16:9b:31:5c:34:de:a8:
67:72:b3:20:93:91:14:e7:e5:5d:12:7a:e5:ad:e9:
91:d8:66:ae:ce:ac:84:24:22:2c:8e:b5:ad:5a:c0:
68:d5:bf:a9:37:a5:c4:61:3b:c2:bf:12:67:0e:3a:
f8:91:7e:96:9e:5d:4c:a8:b4:1b:d4:f4:8a:80:2b:
d3:f3:ec:b0:37:fb:51:27:96:6e:2e:62:62:60:ae:
24:e8:2c:2f:49:03:02:cb:e1:e2:f5:09:41:30:76:
96:a1:1f:b1:67:41:40:63:af:fc:65:ab:12:de:dc:
72:e6:67:ec:30:2e:aa:0d:ee:98:a8:65:09:78:da:
97:9e:a5:e2:65:2a:98:fd:0e:4d:cf:a2:45:b3:e7:
07:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:84:2D:2A:CF:5D:F7:C4:B1:06:F1:22:3B:84:38:09:4E:55:1A:3B
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/24QtKs9d98SxBvEiO4Q4CU5VGjs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.160.242.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:44:34:eb:70:46:cd:b8:30:56:92:78:19:ca:2f:16:e5:cd:
33:d5:59:ef:d7:a8:d8:5f:4d:03:2f:e0:37:ee:02:67:18:00:
0b:b8:dc:cb:7f:0d:d3:7e:d1:de:c9:2c:8d:42:50:d5:73:b9:
64:3e:ee:2d:2d:ae:33:09:df:37:6d:4d:67:a7:e7:41:8e:5c:
de:19:70:08:59:c5:bc:8d:ae:24:07:3d:c9:d7:c3:28:c7:b2:
c5:05:32:36:ec:78:a0:5d:ea:93:eb:89:9b:a8:91:28:4a:6b:
00:44:ab:fb:e9:86:bb:bf:a9:e7:fc:a9:a8:5a:a0:61:fa:66:
39:2a:a1:bd:43:46:a5:51:4d:83:80:03:3b:e2:25:5d:16:65:
f2:6c:32:fe:95:e4:83:19:38:9e:36:1f:4f:d7:ae:c7:cf:c4:
5c:93:e1:5b:e3:ee:72:69:c2:af:0a:6d:3c:48:55:62:73:de:
87:92:56:c0:7f:2f:1e:04:0d:8d:e7:01:b4:48:b0:4f:ee:a6:
7f:ff:44:3c:34:4e:b2:5f:f2:f3:1e:b7:93:2b:f7:67:be:d8:
56:b4:b2:b1:18:a0:f4:fa:4e:51:b6:39:d6:56:40:57:54:73:
eb:e8:e9:80:a1:85:78:82:51:54:2d:e2:f9:6b:c0:93:01:c6:
8b:dc:30:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 16:28:54 2025 by rpki-client