Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/7SNT6xbOsxMt972AYW82MGQsGs4.roa
File: 7SNT6xbOsxMt972AYW82MGQsGs4.roa (raw, json)
Hash identifier: pU0GKlNDrDcoK79rVg2ewNblgeZ603j181YOIJ8LACM=
Subject key identifier: ED:23:53:EB:16:CE:B3:13:2D:F7:BD:80:61:6F:36:30:64:2C:1A:CE
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1565
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/7SNT6xbOsxMt972AYW82MGQsGs4.roa
Signing time: Tue 11 Feb 2025 23:44:36 +0000
ROA not before: Tue 11 Feb 2025 23:44:36 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9680
IP address blocks: 2001:b000:92::/48 maxlen: 64
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5477 (0x1565)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:36 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=ED2353EB16CEB3132DF7BD80616F3630642C1ACE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:79:98:6e:22:62:40:d0:b1:20:b6:9b:b8:3a:
c6:ac:b1:f2:c9:96:61:5e:ac:92:c2:93:84:42:03:
ab:37:ba:cf:f1:0f:c0:44:43:a9:b8:f9:c9:b7:8b:
16:a0:b6:1b:fe:cd:18:d7:c1:ee:e6:63:ba:54:11:
2f:ad:12:f3:7a:13:66:7d:d4:6b:ba:87:1f:31:8f:
ce:66:0f:f3:8d:31:68:89:f7:15:b1:88:eb:16:fb:
b1:bf:01:5a:c3:6b:eb:e8:63:3c:32:14:fe:80:dd:
70:5e:23:34:1a:6b:ae:20:7a:3e:83:09:ee:e8:12:
f1:d9:4a:4f:d6:7d:8f:39:a4:f3:54:a7:d8:d3:b9:
74:29:fb:92:86:90:52:87:4a:42:60:58:c0:79:62:
a0:2f:54:f3:cd:ab:23:1b:f6:98:5d:38:ea:e2:b3:
5f:41:05:85:84:75:f4:8b:5e:58:9e:e0:dc:8c:1d:
a9:22:52:58:fb:7f:8d:e0:42:02:c0:e5:89:a5:e5:
68:31:ee:c5:56:72:37:bd:63:d4:65:c9:b0:ca:20:
18:fc:28:11:ef:da:38:42:3f:01:8f:43:92:1d:57:
3f:18:d7:a6:be:39:24:4a:c8:77:1b:04:7b:61:66:
04:3d:6a:b2:84:f5:00:94:aa:42:87:9a:9f:3f:0a:
1b:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:23:53:EB:16:CE:B3:13:2D:F7:BD:80:61:6F:36:30:64:2C:1A:CE
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/7SNT6xbOsxMt972AYW82MGQsGs4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b000:92::/48
Signature Algorithm: sha256WithRSAEncryption
8f:52:0a:38:70:32:b9:33:56:a4:7e:fb:2e:1d:d1:61:bf:e8:
a9:7a:e9:ad:5e:49:52:af:da:74:74:53:ee:d1:2c:ac:0e:7d:
10:d5:5d:fb:da:d2:74:b8:8f:cd:87:16:b1:a0:d8:b2:ee:53:
0a:8c:1b:31:db:82:e3:00:d3:e7:d9:4a:60:91:8b:be:dc:3e:
99:b5:13:76:67:aa:b9:82:0e:00:8e:56:39:b7:04:17:2f:a1:
f2:3c:61:92:b6:a1:46:4f:ea:42:0d:99:74:27:97:28:4d:57:
41:c6:3c:5b:e1:39:f1:45:92:88:2f:cf:49:3a:b6:f4:ec:9a:
40:3e:b4:e5:32:e9:52:75:c7:26:da:65:1a:86:7a:42:b9:2c:
93:5c:4d:af:c8:c3:2d:67:39:3d:93:c3:36:d1:6a:63:31:96:
52:87:41:61:2a:32:03:bf:01:78:e4:ab:f7:5f:2f:05:1d:d1:
62:de:3f:71:65:d5:e9:33:dd:88:f9:29:ba:c7:ad:f4:5a:3f:
96:88:ea:7e:a5:ad:dd:ad:e4:c2:03:f9:e4:b8:c9:40:50:cc:
2e:2f:e1:f0:0b:7f:47:b8:00:7e:a5:d3:01:23:38:60:8a:63:
fb:21:58:b8:8b:5d:6e:4d:db:4e:38:0a:5b:08:74:80:66:54:
13:53:ae:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:45:33 2025 by rpki-client