Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/78lgoDtz3iHo_IPNE0rImI9HQrE.roa
File: 78lgoDtz3iHo_IPNE0rImI9HQrE.roa (raw, json)
Hash identifier: IQg2/YQYOgWYp5Xf+Jh23jCwbXIzNEWQzWf5/yDzstA=
Subject key identifier: EF:C9:60:A0:3B:73:DE:21:E8:FC:83:CD:13:4A:C8:98:8F:47:42:B1
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1524
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/78lgoDtz3iHo_IPNE0rImI9HQrE.roa
Signing time: Tue 11 Feb 2025 23:44:22 +0000
ROA not before: Tue 11 Feb 2025 23:44:22 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 10126
IP address blocks: 175.111.192.0/18 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5412 (0x1524)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:22 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=EFC960A03B73DE21E8FC83CD134AC8988F4742B1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:5a:83:f8:a5:af:85:21:1a:24:44:8c:66:d4:
5d:dc:33:d0:dc:88:5e:e2:25:66:70:f5:e2:f3:16:
8a:ea:e0:bf:87:a4:d1:a9:4d:4d:70:12:de:6d:80:
0c:5c:c1:6d:75:28:93:90:ae:e8:df:fd:33:1e:ec:
cd:60:91:c9:1a:2a:44:b3:e7:eb:fb:7a:91:f3:8a:
49:46:fc:b7:7c:3c:f7:28:00:e6:dd:99:69:d4:78:
f1:51:ec:14:cf:3b:c4:b3:66:93:f0:92:9b:db:c1:
72:d2:38:ca:a2:1b:01:64:53:89:50:4b:a1:9a:4f:
37:f4:69:5c:85:26:98:5b:17:11:39:e5:93:e8:d0:
41:ec:df:bc:c8:2a:83:38:ee:3b:8a:2e:ed:c8:0b:
ac:e9:11:a0:51:20:c9:45:60:79:d0:ed:62:94:77:
e5:b1:08:63:d3:47:b5:a0:28:ee:62:57:2f:79:94:
9e:01:9f:ef:c3:da:3c:af:ee:f8:f4:36:93:35:8e:
11:de:87:6e:c0:10:02:67:75:dc:70:f9:15:53:76:
cd:dc:47:e1:5f:1b:b9:e0:e1:41:90:a6:c8:c0:0b:
d1:b1:ab:16:4c:3c:77:66:89:c8:40:ac:0a:f9:25:
41:cf:51:2b:8d:41:5e:64:5a:67:31:14:c9:a2:15:
b2:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:C9:60:A0:3B:73:DE:21:E8:FC:83:CD:13:4A:C8:98:8F:47:42:B1
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/78lgoDtz3iHo_IPNE0rImI9HQrE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.111.192.0/18
Signature Algorithm: sha256WithRSAEncryption
41:9b:41:2e:6c:59:b3:a9:90:20:93:da:e2:e0:00:77:39:a9:
e9:91:28:06:03:b3:98:74:fb:40:3a:e8:f3:4e:c4:7c:b1:fc:
dc:70:32:ee:0c:14:50:f9:b1:ce:e8:de:a7:f4:e7:1a:a1:48:
c3:13:50:a9:6b:a7:e0:f1:d0:25:31:a6:19:a0:a0:dc:b2:51:
5e:99:58:db:e5:36:d5:ae:3b:8e:73:ec:91:bf:93:90:d7:40:
b2:9f:ec:11:15:bb:8d:2b:e7:2e:b1:98:f4:b2:99:02:a8:75:
80:10:1f:2e:a1:71:79:f6:a5:3c:0a:04:28:74:87:e3:76:09:
46:37:e8:f0:e8:d6:b6:88:2e:53:b2:8e:12:14:a3:33:e2:92:
b6:c9:74:ba:4b:15:13:ac:1e:e8:c4:4e:43:19:1a:18:d9:96:
df:b7:da:88:27:7e:8e:7e:09:fd:ba:75:bd:3e:83:f4:3f:ed:
5d:7f:d6:fa:30:0a:35:26:fa:02:cc:ba:cf:de:3b:f2:7a:aa:
cd:87:2f:5e:e7:fa:f9:97:0f:77:68:7b:e1:a4:42:b3:30:4f:
68:08:b4:65:8f:73:32:03:41:a3:d3:f4:ba:de:f9:3e:a0:84:
b2:0c:5c:04:b1:ed:3c:4a:b6:6b:88:98:e5:61:05:9d:df:40:
43:40:e9:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:40:53 2025 by rpki-client