Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/7ClP3dzKEDZbAZfHpnM9-VWDO3s.roa
File: 7ClP3dzKEDZbAZfHpnM9-VWDO3s.roa (raw, json)
Hash identifier: L7x7PODEv4WawJQ80p2/fREV4pBVMrH86tswjhNrQIs=
Subject key identifier: EC:29:4F:DD:DC:CA:10:36:5B:01:97:C7:A6:73:3D:F9:55:83:3B:7B
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1597
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/7ClP3dzKEDZbAZfHpnM9-VWDO3s.roa
Signing time: Tue 11 Feb 2025 23:44:46 +0000
ROA not before: Tue 11 Feb 2025 23:44:46 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 61.220.0.0/14 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:23:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5527 (0x1597)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:46 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=EC294FDDDCCA10365B0197C7A6733DF955833B7B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:b0:5e:e1:58:63:40:ce:31:e7:e4:1f:af:53:
7a:8f:29:e9:22:c4:a8:74:d6:12:0b:75:55:a5:04:
8c:37:c8:33:01:44:99:1e:ec:a2:3f:92:6f:4f:f2:
93:34:69:18:7f:7c:3b:06:b8:14:ec:b5:63:fc:80:
5a:19:34:07:15:41:da:14:80:74:14:e7:87:51:ea:
bc:36:45:ab:76:a4:1e:6a:f7:bc:97:47:61:c9:79:
9b:3a:58:3d:9c:9e:ea:88:f1:a2:23:f8:76:cd:15:
69:be:c5:68:47:f4:3f:be:15:d2:16:4f:2d:09:b0:
57:1b:b6:b9:d4:ec:fb:b8:5f:06:bd:f3:5f:1b:a9:
33:fa:c9:c0:70:b7:f5:1f:e2:b9:91:04:3b:ab:ea:
fa:6b:10:c7:3f:81:ac:09:f3:94:92:a3:6b:f1:94:
01:64:07:dd:49:63:14:27:f8:02:b2:81:00:21:6e:
9a:8c:4a:f4:22:85:7a:89:c4:65:ed:40:54:d5:13:
ab:8f:ba:46:72:a8:df:75:ba:98:e4:a2:71:f9:03:
ff:45:94:f6:3b:74:6f:c6:34:53:d8:65:52:5e:e1:
8f:04:86:38:01:85:e0:49:a1:12:e7:3c:1f:59:7a:
b4:dd:52:55:a5:4c:94:ca:35:09:0f:db:3d:dd:9e:
0c:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:29:4F:DD:DC:CA:10:36:5B:01:97:C7:A6:73:3D:F9:55:83:3B:7B
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/7ClP3dzKEDZbAZfHpnM9-VWDO3s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.220.0.0/14
Signature Algorithm: sha256WithRSAEncryption
79:f3:b7:40:b7:e0:b3:6a:94:00:04:b4:c1:98:07:fe:b1:76:
f4:1d:65:25:d6:0d:ac:0c:b8:bf:30:2c:a3:23:33:f5:81:4c:
5a:e0:97:f2:34:ba:31:31:90:af:91:3b:d9:8d:3f:6b:7d:d9:
b9:ad:0a:e4:85:2e:7d:c0:4b:a4:74:c6:21:d2:ac:d7:63:18:
5a:e7:dd:cb:a5:96:df:4c:06:04:70:62:0e:5d:4a:82:82:1a:
4d:66:b8:48:e6:41:e3:18:ff:ab:32:99:ce:76:02:26:a5:e5:
a6:2d:1e:f1:67:7d:c7:87:04:e9:39:cf:14:81:32:c3:45:1e:
ee:2c:a7:25:b4:5d:89:76:f6:d7:39:b0:23:bc:7c:a3:f8:4f:
ec:95:a9:ba:ff:69:25:68:5c:8c:07:75:d8:74:73:1b:91:02:
21:04:8c:0c:9a:94:75:fb:1e:f3:b3:da:2d:b0:10:60:54:54:
ff:0a:59:57:87:3c:b2:37:51:ca:95:fa:d4:03:ce:2f:86:58:
aa:1a:b8:2a:50:49:01:05:cf:9d:c2:9d:10:b8:6d:b4:cd:4e:
81:ee:6d:a1:c3:b0:9d:2e:6f:6a:5d:eb:22:53:ca:4a:c7:c3:
4a:61:f1:1a:85:98:01:de:41:38:66:38:2c:80:28:df:5d:8d:
67:17:82:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:26:21 2025 by rpki-client