Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/6GPVO5zJJdUsLX0T9fqhmaqR76g.roa
File: 6GPVO5zJJdUsLX0T9fqhmaqR76g.roa (raw, json)
Hash identifier: bTFmIdCNQ3nw102f0sOOOu6dNdf7JZ7DqhrPE7A5D30=
Subject key identifier: E8:63:D5:3B:9C:C9:25:D5:2C:2D:7D:13:F5:FA:A1:99:AA:91:EF:A8
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1201
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/6GPVO5zJJdUsLX0T9fqhmaqR76g.roa
Signing time: Mon 26 Aug 2024 05:18:09 +0000
ROA not before: Mon 26 Aug 2024 05:18:09 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 59.120.0.0/14 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:36:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4609 (0x1201)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 26 05:18:09 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=E863D53B9CC925D52C2D7D13F5FAA199AA91EFA8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:12:98:a9:eb:1b:ea:29:c3:f4:bb:42:d5:ea:
10:7c:cb:db:c4:e6:70:5f:7d:36:6c:5b:a6:ad:2d:
26:9a:30:bf:ab:3f:64:09:6d:0c:c2:58:00:c6:40:
35:7a:9c:68:e2:ea:5f:91:9b:4f:3e:2d:e9:b7:76:
af:07:64:c3:89:b7:02:03:dd:fb:9c:01:68:63:ef:
f3:b7:84:1a:fd:40:ca:75:df:3b:0e:c5:23:66:61:
2c:19:f2:a4:43:43:80:7b:3d:66:b2:37:70:c8:3e:
30:f6:9f:5c:9f:df:92:ce:ca:ae:c8:c5:3c:a3:07:
b6:8e:72:e2:dc:bf:fb:36:30:63:86:75:09:27:a1:
08:96:ca:2c:77:b2:69:b5:1f:82:6d:35:7e:9c:40:
21:f5:ab:3c:c6:f7:ee:3a:d5:63:2a:57:ea:f8:82:
ac:12:4e:87:b1:65:8d:81:20:b4:ab:34:87:4f:24:
41:f5:01:63:8c:b0:89:2a:2f:b4:7c:47:4e:74:3a:
8e:e1:b7:2c:e5:26:9c:2d:2a:0b:d6:9f:26:56:2f:
50:3a:3c:c8:1c:c3:6d:0b:94:12:e7:0d:12:c1:1e:
28:b4:34:76:57:1d:f5:dc:8f:1d:9e:f3:2f:e1:8f:
fc:25:92:0a:d7:f1:1e:f2:33:34:6d:57:b3:d6:ba:
59:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:63:D5:3B:9C:C9:25:D5:2C:2D:7D:13:F5:FA:A1:99:AA:91:EF:A8
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/6GPVO5zJJdUsLX0T9fqhmaqR76g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
59.120.0.0/14
Signature Algorithm: sha256WithRSAEncryption
27:95:3b:ec:4c:4f:d9:e2:eb:aa:ea:25:ba:a9:10:ae:f2:1d:
5c:78:20:72:1e:ae:9f:16:0c:9e:10:d5:63:3f:85:b7:15:fb:
c1:48:98:f8:3f:22:e6:20:2e:0f:42:1d:4e:0a:82:ef:dc:af:
2c:aa:aa:1a:14:a4:05:f6:cd:e6:d0:c3:1b:8c:e7:4f:8c:2e:
90:ac:d5:bf:6f:4a:8f:07:f7:28:fa:62:86:b1:47:e2:96:95:
19:99:09:cd:f6:11:bf:5c:55:57:c3:e0:32:d8:d7:d3:d2:21:
d8:36:09:d3:28:d0:e1:de:25:30:07:ec:6a:7c:24:9d:33:e6:
db:f7:db:94:9f:e4:54:41:d6:d9:c7:6c:b3:40:e6:14:b0:dc:
f4:f0:b4:5a:0f:e1:1c:51:87:10:d9:d4:35:67:6e:c8:89:e8:
ce:0b:af:9a:98:f1:64:75:9a:b3:16:f5:7b:de:6d:11:fd:a8:
c2:6b:36:72:27:4d:44:b2:2a:a9:22:4d:b8:52:4b:b2:6b:ad:
7d:56:1c:2f:2f:cc:e1:0c:5c:bf:42:66:54:b2:c6:67:0e:12:
93:35:e0:5e:41:3b:05:05:17:43:3a:73:89:13:25:b9:78:94:
e5:6d:00:34:df:45:a7:7a:e7:01:88:91:c9:cf:04:37:7f:01:
17:36:e5:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:17:45 2025 by rpki-client