Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/74bRyN2jD7bKaTZT8qlxfcQucA8.roa
File: 74bRyN2jD7bKaTZT8qlxfcQucA8.roa (raw, json)
Hash identifier: BUjsR8dXd1txOxJ51Saj/GhtNeskw73p6UPOdTh3/GA=
Subject key identifier: EF:86:D1:C8:DD:A3:0F:B6:CA:69:36:53:F2:A9:71:7D:C4:2E:70:0F
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1487
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/74bRyN2jD7bKaTZT8qlxfcQucA8.roa
Signing time: Mon 10 Feb 2025 14:35:00 +0000
ROA not before: Mon 10 Feb 2025 14:35:00 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 198949
IP address blocks: 203.75.255.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Feb 2025 23:44:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5255 (0x1487)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:35:00 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=EF86D1C8DDA30FB6CA693653F2A9717DC42E700F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:be:0e:39:e0:79:ab:c5:78:14:40:43:cf:61:
3c:28:b0:f6:d3:25:f3:0f:9b:34:57:0e:ac:3e:0e:
8e:fb:9f:88:4a:1d:50:23:a1:18:8b:3a:58:7e:c6:
22:a0:ae:2d:d3:82:5a:d1:f8:6b:03:d1:ff:85:e0:
f7:5e:d2:36:a8:a5:28:2b:f3:d2:b7:b1:18:0f:07:
4a:01:7a:55:27:ef:fc:2e:38:bf:bc:a1:31:dc:1b:
3e:31:48:a2:e6:ed:b1:b3:c0:68:e7:c8:e8:d4:d8:
d8:53:05:ed:4a:61:af:04:7d:75:5a:c0:5b:74:db:
2b:47:89:52:71:39:2c:8e:3e:72:02:90:43:09:e1:
6e:28:39:72:85:53:ab:5f:c6:ca:a2:77:09:46:47:
ef:fc:b6:9c:b6:6a:fb:b7:b5:09:34:8d:fc:a4:27:
f3:f3:59:85:34:82:e7:47:8f:aa:88:66:ee:26:b8:
ea:c0:1c:0d:71:3f:63:d6:46:fc:69:8d:19:bc:a6:
a0:8b:0b:7e:2f:e3:b1:e3:96:34:13:4b:ba:f4:4d:
d9:e8:2a:ce:b9:e4:f3:15:16:ef:7f:9b:88:2c:2e:
65:ed:2c:4c:13:7d:4f:af:56:66:95:9c:96:78:e7:
b8:ec:f0:b1:7e:ef:b1:bc:c8:33:57:f0:1e:f7:99:
04:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:86:D1:C8:DD:A3:0F:B6:CA:69:36:53:F2:A9:71:7D:C4:2E:70:0F
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/74bRyN2jD7bKaTZT8qlxfcQucA8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.75.255.0/24
Signature Algorithm: sha256WithRSAEncryption
11:b4:7c:bd:9b:b7:d4:b3:7a:7f:c1:f9:6e:ef:c3:39:d7:09:
19:a5:ab:35:83:2d:a9:93:f7:34:ee:fb:4c:8e:07:f5:8c:21:
d5:24:bf:9d:24:f3:ba:01:06:39:b2:ae:0f:7e:e4:40:6b:24:
6b:a7:fe:c2:67:8a:6c:f7:47:d1:97:c8:c8:ee:8c:32:5c:08:
a3:07:4b:70:d6:db:12:97:5d:5a:05:8f:46:d5:62:e6:6e:6e:
3d:40:5e:fb:1f:b6:c8:7b:51:50:50:a7:6e:36:f5:8a:92:1c:
93:22:39:bd:53:ce:04:ec:19:65:22:76:b9:da:8b:ee:d8:bc:
77:4c:c9:87:c5:7f:05:bf:e4:64:47:09:59:1c:d5:9e:26:e4:
cc:1d:5c:42:9a:2d:21:eb:15:07:30:ef:63:a1:2f:f4:b1:9d:
dc:c9:a3:4d:3d:3d:be:1e:e3:df:ae:9e:fb:7d:8b:7a:d9:84:
46:ed:22:3e:63:41:be:6b:94:fd:51:4c:a7:89:9c:87:ed:6b:
3d:19:5a:b2:37:1d:13:66:70:95:70:2b:5d:d2:be:5d:79:af:
6a:3d:12:a8:13:dd:0a:29:d7:7c:c1:dd:dc:9c:22:b4:54:28:
30:30:e7:4a:99:f7:49:14:27:85:99:a2:97:a2:a5:1b:42:15:
bb:6a:2e:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:30:09 2025 by rpki-client