Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/71qzqeEcmdnRZ3M3zz-mg_M5nQY.roa
File: 71qzqeEcmdnRZ3M3zz-mg_M5nQY.roa (raw, json)
Hash identifier: fszqVLO0aBOakQi8FP64vlw9VaHH2DrmVdDLCOB+l2w=
Subject key identifier: EF:5A:B3:A9:E1:1C:99:D9:D1:67:73:37:CF:3F:A6:83:F3:39:9D:06
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 147A
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/71qzqeEcmdnRZ3M3zz-mg_M5nQY.roa
Signing time: Mon 10 Feb 2025 14:34:57 +0000
ROA not before: Mon 10 Feb 2025 14:34:57 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17714
IP address blocks: 220.128.48.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Feb 2025 23:44:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5242 (0x147a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:34:57 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=EF5AB3A9E11C99D9D1677337CF3FA683F3399D06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:c0:da:aa:e5:bb:2f:a5:5e:23:55:24:ae:d6:
58:34:2a:38:c3:34:4b:a7:e7:ed:16:72:fb:96:ed:
f1:95:32:fa:87:b0:fa:69:9d:38:d3:a4:f8:bd:a1:
b4:84:38:a6:9c:e6:34:2f:77:b7:5c:52:ca:27:9b:
c4:85:2a:70:41:ac:d5:e5:bd:06:aa:ce:6b:f6:13:
21:ef:93:3b:cc:43:a4:6b:1f:d1:32:f5:51:33:3b:
73:d9:4d:4f:ca:5a:5a:f6:89:b1:a5:72:ce:7b:48:
2f:9b:04:fb:9a:e1:75:13:13:cd:58:bb:62:8f:25:
0a:36:68:b7:32:4f:71:d2:bb:f4:bf:6f:c7:59:77:
61:c1:62:7b:4f:31:c6:ea:ac:0f:f2:a3:90:0a:25:
6f:4c:bb:2f:fe:9e:87:af:24:71:45:fe:3f:b9:05:
ed:e3:c7:5a:dc:79:ef:af:22:4d:fe:da:5b:69:1a:
5b:4e:e1:6f:61:3e:93:46:fe:2d:6e:00:c6:d6:cc:
d6:24:18:27:94:76:cd:4d:0e:82:f4:b0:d0:1f:7e:
4c:39:4c:11:a5:10:3c:8d:01:b5:43:f7:a9:ab:e9:
80:e7:b7:dd:1e:7e:1e:5f:78:80:34:63:66:d9:ed:
d5:15:cb:e7:5b:e9:ce:a1:53:b8:1c:60:a9:77:3b:
e3:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:5A:B3:A9:E1:1C:99:D9:D1:67:73:37:CF:3F:A6:83:F3:39:9D:06
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/71qzqeEcmdnRZ3M3zz-mg_M5nQY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.48.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:b1:3b:81:1e:33:ec:b8:5f:2c:a7:37:7e:a6:47:be:ae:75:
ac:9f:47:a4:61:bc:23:c8:1a:b2:7f:e3:85:4e:0f:12:ef:85:
49:10:bc:2c:92:71:93:4b:7d:c0:0b:d2:04:a4:ba:31:6c:38:
85:1c:45:48:1f:18:54:3f:a9:f6:ba:16:28:15:9c:d2:3e:a7:
2e:1f:ec:2d:a7:2c:54:a6:70:99:7f:91:e1:bb:e5:55:a3:da:
55:15:80:fb:15:5e:ba:8a:48:af:1e:7a:4c:1f:f4:22:e1:73:
7c:bc:6d:29:79:50:0b:c1:5b:27:de:54:28:58:af:be:59:69:
87:94:ea:69:d5:41:f8:33:98:ce:06:b5:94:49:7b:aa:dc:9b:
54:d1:af:02:3f:f6:7b:79:21:8d:f1:af:10:d9:65:ba:af:2d:
cc:85:65:15:fa:87:d4:2b:f7:75:0d:f9:61:7d:d2:45:f1:9e:
fd:06:75:da:ed:d2:ae:e8:1b:41:91:3c:06:99:fc:26:1f:5d:
3a:6a:25:ff:b2:36:d0:ec:d3:78:c1:14:81:a5:25:63:f5:d5:
b9:98:62:e4:99:bb:af:7f:7d:58:c9:7f:a4:69:90:6f:94:7b:
e4:3a:f7:1c:b4:cc:ee:91:07:f3:8c:b0:7f:d9:e8:c0:64:be:
ee:64:49:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:42:54 2025 by rpki-client