Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/2YOWM7wZ1GgMlW8e6TaYnSxVMN8.roa
File: 2YOWM7wZ1GgMlW8e6TaYnSxVMN8.roa (raw, json)
Hash identifier: zxbNt+r1cpJ+qrzVu5xtUrcEHD3TRF0FYHeHYVtqOAw=
Subject key identifier: D9:83:96:33:BC:19:D4:68:0C:95:6F:1E:E9:36:98:9D:2C:55:30:DF
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 11FF
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/2YOWM7wZ1GgMlW8e6TaYnSxVMN8.roa
Signing time: Mon 26 Aug 2024 05:18:09 +0000
ROA not before: Mon 26 Aug 2024 05:18:09 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 142005
IP address blocks: 210.61.3.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:36:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4607 (0x11ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 26 05:18:09 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=D9839633BC19D4680C956F1EE936989D2C5530DF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:1e:dc:0e:5c:27:f4:3b:a5:df:cc:4e:b5:b0:
d7:53:cf:36:5a:52:7e:17:12:21:59:d8:97:65:37:
77:21:f3:c5:ec:94:cd:67:12:88:49:ff:a0:2f:08:
9a:96:49:7b:a2:a9:5f:4a:a6:64:34:aa:04:95:ea:
6c:e7:cd:03:48:fb:a2:94:ea:17:99:bd:bb:97:82:
ca:fa:12:ee:69:74:22:67:55:58:90:d4:96:22:f7:
31:43:fa:5e:9f:ea:77:34:53:9e:a3:26:17:36:77:
b6:67:4f:4c:b0:25:20:9e:8f:7f:03:5a:84:85:45:
14:fb:62:71:6a:23:03:d3:b6:78:cf:c4:5e:ed:58:
c4:d5:15:1e:e6:fe:30:3e:cd:8e:0d:ce:13:9b:72:
9b:62:2c:56:3f:ca:54:03:6f:cb:ee:42:e7:71:a5:
83:4a:93:e6:33:53:12:41:15:d3:d0:35:7b:86:46:
6b:c8:b6:96:a7:2b:59:1b:0c:81:43:90:89:ca:84:
9f:9a:13:7f:2e:14:2e:a7:8c:25:7c:d6:5d:be:0a:
e2:07:af:59:1e:df:16:1c:9c:a4:76:b3:1b:7e:76:
96:8d:63:83:27:b7:4e:f6:25:a3:60:09:bb:b4:51:
8c:d3:82:6b:41:2c:b5:4c:15:41:9c:42:fc:66:5e:
e3:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:83:96:33:BC:19:D4:68:0C:95:6F:1E:E9:36:98:9D:2C:55:30:DF
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/2YOWM7wZ1GgMlW8e6TaYnSxVMN8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.61.3.0/24
Signature Algorithm: sha256WithRSAEncryption
72:cf:2b:b0:f1:42:fc:77:4b:04:ab:d1:11:01:41:27:64:fc:
b1:24:0c:d5:8e:eb:7b:f7:ae:ab:b4:0a:8b:e5:a4:46:9e:9f:
7e:ba:48:99:f3:48:05:c1:fe:d7:ac:2b:8c:00:53:a6:8e:2a:
2a:2d:b2:f8:88:8c:3e:9a:89:81:aa:4c:ea:09:4f:5c:96:5b:
d5:c6:72:e4:d3:af:3e:8a:7a:46:01:1f:d5:96:64:56:70:85:
d9:a2:e9:bc:6b:40:d0:f5:d3:39:fd:8f:85:e9:c3:eb:ba:a8:
6d:90:1e:33:ae:40:ab:0d:a9:d8:26:77:40:6d:68:12:af:ee:
76:b9:dc:b1:9c:91:a4:d3:c6:66:a4:df:80:d4:63:26:cb:35:
a4:d1:06:0d:1f:d7:64:eb:39:ba:63:a1:97:b5:e7:e1:ea:05:
2b:52:59:ce:e4:0f:14:19:ca:c1:d6:08:30:98:67:27:43:ef:
15:5f:40:fb:1b:b7:2e:aa:bf:d6:bb:7f:9d:88:1c:62:30:e5:
c0:32:51:c9:94:d6:62:14:f0:44:32:6d:f7:80:bd:22:13:9a:
02:c6:24:f6:8f:15:0a:81:1c:b1:64:fd:ca:55:45:4c:cd:32:
fa:6d:dc:a4:47:dc:28:a0:b8:ec:cc:8c:f9:e5:ed:16:98:b0:
50:45:38:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:35:56 2025 by rpki-client