Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/58zj-BuQpksGOsm8pFH-AczMgyM.roa
File: 58zj-BuQpksGOsm8pFH-AczMgyM.roa (raw, json)
Hash identifier: 0u1uaMRDEyuJQe0jJ1h6upAnp5zalHDuVPXNZawdVgs=
Subject key identifier: E7:CC:E3:F8:1B:90:A6:4B:06:3A:C9:BC:A4:51:FE:01:CC:CC:83:23
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 14C0
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/58zj-BuQpksGOsm8pFH-AczMgyM.roa
Signing time: Mon 10 Feb 2025 14:35:15 +0000
ROA not before: Mon 10 Feb 2025 14:35:15 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 125.232.0.0/15 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Feb 2025 23:44:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5312 (0x14c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:35:15 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=E7CCE3F81B90A64B063AC9BCA451FE01CCCC8323
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:31:ca:23:98:24:c5:f3:06:46:c6:1b:8f:01:
9e:c7:74:e2:d0:ae:a7:88:2c:3d:96:a1:4d:a0:dc:
67:32:77:82:8d:67:9c:74:82:92:7d:83:be:26:47:
ab:85:54:7e:01:66:dc:67:00:06:44:c3:43:db:2d:
b9:37:09:c7:09:a0:97:b7:0e:dd:df:d9:b3:94:cf:
e0:0e:94:b9:01:d0:f8:35:6f:38:81:7b:d2:fc:bc:
50:1d:b7:79:86:d1:2d:db:51:3b:64:99:7e:a3:ef:
2c:af:78:45:9f:b6:db:4d:56:0e:02:55:3c:ef:f4:
48:8f:8e:97:47:a4:4c:14:ec:42:df:0e:e8:ea:70:
0e:5d:e4:41:dc:64:db:eb:8b:92:a9:45:29:73:1f:
f1:82:03:cb:63:94:75:dd:8a:6b:bc:fa:bf:34:b0:
37:4c:db:c2:a1:c0:77:eb:50:4d:a7:4e:0c:af:05:
4e:39:3f:5d:97:a0:2e:8a:66:20:31:16:75:1e:88:
08:cd:ae:65:fc:21:36:1c:4a:ef:8d:26:41:56:d8:
6f:91:13:81:68:99:2b:b3:5e:78:d9:75:1f:a9:af:
63:ac:4a:d4:19:cb:d2:98:55:e2:aa:2b:55:56:92:
0a:4e:cf:84:e6:53:89:48:30:c5:2b:dc:50:9e:84:
cf:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:CC:E3:F8:1B:90:A6:4B:06:3A:C9:BC:A4:51:FE:01:CC:CC:83:23
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/58zj-BuQpksGOsm8pFH-AczMgyM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
125.232.0.0/15
Signature Algorithm: sha256WithRSAEncryption
c3:40:5c:e8:78:c0:21:c0:7b:8a:f9:bc:f8:bb:e5:1e:72:0b:
84:fe:2f:3d:0a:42:54:bb:0f:fd:e8:78:8e:c0:5e:4a:aa:83:
e0:de:3e:2a:01:76:a6:20:d0:c6:72:8a:5a:88:f3:67:6f:75:
a3:ad:69:63:e5:6c:72:8f:71:59:e2:30:e3:f4:83:01:d6:df:
3c:27:8f:cb:1c:ce:13:90:f0:76:7a:f6:b0:83:4f:b5:e8:f2:
41:d5:0f:84:be:dd:a2:f8:d7:1d:ed:cf:78:39:eb:5a:fb:4c:
52:cc:8d:a7:37:67:34:15:3b:3a:2d:6e:a8:9c:44:a5:09:6c:
2c:23:10:2d:55:ba:69:86:77:39:fa:58:4e:7d:d7:1c:a6:7f:
2d:a1:ba:a5:a9:44:81:e2:6c:8b:1e:c9:a7:30:73:94:f5:74:
67:d0:0e:73:fc:ea:4b:9a:65:cf:78:bb:8d:99:c6:3d:88:3e:
ea:06:53:5c:06:1c:42:e5:ac:37:11:f5:26:2b:43:93:36:df:
3d:3a:3f:e4:5a:49:9e:25:1c:7e:f8:8d:36:f3:2c:d4:28:2f:
d2:c7:a7:f7:a7:9c:fd:ad:e6:37:26:c1:26:e0:98:32:cb:4e:
dc:d4:33:17:4a:2c:dc:d1:cf:a3:ea:4b:95:ad:c9:c3:85:69:
3a:68:26:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:45:31 2025 by rpki-client