Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/27mSkB9DhM4laCmtEOct_yuIg1E.roa
File: 27mSkB9DhM4laCmtEOct_yuIg1E.roa (raw, json)
Hash identifier: 8sJv+LiVOFe1Q70DX7x/2o848ae/eu0/Had37Eka1a8=
Subject key identifier: DB:B9:92:90:1F:43:84:CE:25:68:29:AD:10:E7:2D:FF:2B:88:83:51
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 146F
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/27mSkB9DhM4laCmtEOct_yuIg1E.roa
Signing time: Mon 10 Feb 2025 14:34:54 +0000
ROA not before: Mon 10 Feb 2025 14:34:54 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131660
IP address blocks: 2001:b000:590::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 11 Feb 2025 23:44:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5231 (0x146f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:34:54 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=DBB992901F4384CE256829AD10E72DFF2B888351
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:68:e2:c5:8c:a9:bb:f5:1b:ec:32:3f:f9:e3:
49:da:bb:ee:f1:90:83:8f:23:20:8d:5e:b6:d9:ab:
52:4a:9b:5a:26:41:1f:b7:34:26:20:ce:be:34:6e:
71:db:8e:ab:84:a6:5b:df:2b:ee:52:aa:df:b7:28:
bf:a4:dc:74:91:ae:8f:8e:10:1b:61:93:ee:2a:30:
20:17:86:96:25:e0:42:b6:24:c9:45:a0:1f:84:b2:
4a:42:eb:31:a4:29:de:a4:8d:79:df:39:55:2c:93:
34:c9:1c:44:49:78:1f:21:9c:12:af:8d:9a:7e:99:
18:b7:a4:2f:f3:ed:bb:78:0b:c1:a0:69:04:e7:07:
ee:40:cb:c6:cb:b0:66:74:20:24:76:3a:f6:98:ba:
d8:b6:d1:3c:a6:f8:6e:b9:b5:4f:b3:fd:b5:d2:da:
92:33:cc:6a:55:14:a1:19:01:45:94:86:84:9d:bf:
b1:6a:a0:c4:92:54:52:80:02:fc:ee:0c:87:20:53:
4d:aa:11:0c:df:61:be:08:65:2e:e1:46:38:62:46:
e6:13:36:62:fb:ca:ea:cc:9f:7e:f1:de:6d:8b:32:
41:02:80:e9:e9:7d:7c:76:df:8e:31:56:7b:4b:c0:
53:d8:90:25:62:eb:fb:e8:22:fc:81:26:ba:b8:95:
00:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:B9:92:90:1F:43:84:CE:25:68:29:AD:10:E7:2D:FF:2B:88:83:51
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/27mSkB9DhM4laCmtEOct_yuIg1E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b000:590::/48
Signature Algorithm: sha256WithRSAEncryption
72:05:53:ca:63:c3:b6:ac:5d:e0:ea:8d:02:e1:12:2e:fd:e9:
4d:c1:c9:88:23:bf:8a:71:21:fa:18:f1:fd:84:ae:a9:93:71:
31:b8:83:bf:fc:b3:e3:25:ef:70:d8:cf:f2:59:e3:84:52:24:
db:92:f6:27:8e:af:3e:45:a7:67:21:05:dc:7a:67:26:e7:a7:
ec:78:f3:d6:2f:ce:38:e4:98:63:b1:92:5e:b1:9c:2d:88:c4:
67:ab:b6:8a:d3:0d:b7:09:f4:40:78:5f:8d:48:e4:5f:bb:f8:
41:7a:52:ba:7d:fd:86:18:52:fb:0e:f8:d5:e5:1e:ae:8e:cf:
31:02:03:67:ce:29:ea:3b:5c:bd:2a:02:6e:6a:af:3b:f2:12:
25:bf:c4:25:51:24:3b:12:c0:23:9b:a7:81:c4:b8:e5:d2:78:
c1:9d:0f:53:14:fe:29:f5:a1:61:99:66:39:3c:be:36:87:4e:
b5:ae:10:65:58:8b:e5:73:40:40:75:56:86:c3:91:64:1d:8b:
16:65:80:1c:e8:1d:d9:d4:74:a3:bc:f6:81:3c:0a:cb:12:29:
6d:9c:1d:6f:07:95:d3:f0:65:30:80:d2:b0:05:3e:24:4b:01:
0c:51:ae:f3:13:1c:8f:52:d7:32:ad:e4:38:0f:2b:d1:8b:4d:
9a:b9:f1:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:19:03 2025 by rpki-client