Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/5tlnoogghFec4qgKJ2kikxMBHlM.roa
File: 5tlnoogghFec4qgKJ2kikxMBHlM.roa (raw, json)
Hash identifier: zv/GiwblICRsOkNcp3vI0oFFwpoq2Rv4woxAP+MPL3w=
Subject key identifier: E6:D9:67:A2:88:20:84:57:9C:E2:A8:0A:27:69:22:93:13:01:1E:53
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 14C1
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/5tlnoogghFec4qgKJ2kikxMBHlM.roa
Signing time: Mon 10 Feb 2025 14:35:15 +0000
ROA not before: Mon 10 Feb 2025 14:35:15 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 10126
IP address blocks: 203.160.240.0/20 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Feb 2025 23:44:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5313 (0x14c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:35:15 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=E6D967A2882084579CE2A80A2769229313011E53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:66:c8:4e:4a:4b:9d:96:98:68:98:f0:86:b6:
0b:7f:84:e0:3a:0b:6e:06:ba:6e:b0:bc:43:ba:f7:
3a:1f:54:8e:0a:d0:a3:76:d1:84:e2:a2:af:b6:42:
a4:e5:f4:8d:7a:fd:8a:d3:60:da:43:ad:fa:73:e0:
f1:96:ae:66:a2:1b:97:97:45:6e:50:5c:ce:31:2c:
77:b1:3a:b9:13:9f:fe:ca:e7:0d:af:e2:36:58:aa:
ca:91:33:3d:78:93:92:d5:41:56:f8:16:48:f8:b7:
91:1d:65:00:e8:fd:06:f9:43:c7:5d:24:cc:b5:26:
b3:88:9f:2b:d7:74:51:73:05:64:af:da:03:06:0e:
30:05:89:06:29:22:5a:c2:85:1a:2a:f4:9e:3f:34:
62:4e:af:a4:27:68:c7:c2:b0:df:17:1f:d8:b3:d0:
2f:18:17:ea:19:94:c6:3d:14:37:12:59:c8:47:37:
34:f7:43:db:d4:a9:22:b0:c8:12:32:ca:3c:90:df:
1d:3c:03:4c:f0:8b:06:92:ce:36:dd:01:e3:11:6c:
00:9d:be:1a:b4:8c:7b:96:05:b4:98:ab:3e:84:aa:
32:8b:b0:a8:f3:a5:51:71:07:6a:0c:83:ff:a4:70:
48:de:5a:d9:89:ad:0c:9d:cf:69:32:82:f9:37:4e:
5c:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:D9:67:A2:88:20:84:57:9C:E2:A8:0A:27:69:22:93:13:01:1E:53
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/5tlnoogghFec4qgKJ2kikxMBHlM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.160.240.0/20
Signature Algorithm: sha256WithRSAEncryption
40:0f:08:af:6d:6d:70:d1:a5:45:05:f5:da:6d:01:01:12:6a:
7e:2d:b9:46:d2:3a:67:a3:77:39:53:67:f5:ab:8a:24:0e:30:
9c:bd:03:7c:83:c4:24:33:ba:77:cd:68:be:fd:26:a9:6d:e9:
3d:b9:ab:2c:81:99:0c:2f:af:4b:09:7a:92:9d:43:2c:e5:de:
69:35:a4:50:1d:c4:c0:08:c5:b0:5f:44:53:a7:57:9b:05:29:
2c:a2:52:7c:c9:b3:f1:a0:dc:e1:cd:82:8f:f0:8f:76:f1:a0:
b3:92:6d:ed:26:8e:33:36:10:54:8a:7c:8c:0a:06:3a:a5:d9:
fd:a7:07:3c:12:71:14:c5:9f:e1:77:a3:91:f5:f4:87:8b:10:
73:1c:04:a6:5e:c4:8a:70:5a:f1:82:3a:c0:e6:03:9a:ac:eb:
33:98:ea:57:91:7d:28:c7:dc:a0:1b:86:dc:78:65:88:3f:c1:
39:08:e0:bd:4a:da:10:87:28:4f:4f:fb:78:79:ec:51:21:88:
c9:d7:45:e6:76:d5:ee:ba:f4:0c:14:c6:a5:c3:8d:31:c8:33:
bd:84:ab:73:7e:b3:8b:03:48:2a:d9:7b:2f:f3:ee:e7:e5:5b:
00:35:36:a7:b5:26:4d:fa:bf:7a:e8:ce:4c:4e:0f:7e:9a:12:
c9:b0:71:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:41:06 2025 by rpki-client