Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/7nPeezVXnJuCAAgcahJiCdwUlng.roa
File: 7nPeezVXnJuCAAgcahJiCdwUlng.roa (raw, json)
Hash identifier: +gNtpnl1/T7CdAl3VAeUUfu3ehO0w7ZY9fKfCiM8fqg=
Subject key identifier: EE:73:DE:7B:35:57:9C:9B:82:00:08:1C:6A:12:62:09:DC:14:96:78
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 121D
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/7nPeezVXnJuCAAgcahJiCdwUlng.roa
Signing time: Mon 26 Aug 2024 05:18:16 +0000
ROA not before: Mon 26 Aug 2024 05:18:16 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 203.66.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:36:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4637 (0x121d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 26 05:18:16 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=EE73DE7B35579C9B8200081C6A126209DC149678
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:a5:ff:8b:eb:7c:7c:ad:56:0b:96:64:04:82:
46:5f:22:dc:f5:e8:8d:d3:f4:b5:9e:27:45:43:6b:
68:4a:96:62:ca:dc:70:39:ee:11:6d:e6:13:61:91:
61:f7:83:bd:74:af:c7:71:6d:64:dc:6a:42:99:af:
f1:d5:b5:7c:46:0b:2c:36:5a:7b:bd:93:40:61:89:
4a:11:98:b0:22:3d:71:68:7d:10:ae:63:65:72:ca:
78:71:e3:f1:9f:aa:d5:c4:cf:ad:df:93:d7:5b:0d:
1a:3b:02:70:7c:ae:b7:3d:d3:77:0e:a4:54:f6:4a:
b8:b4:cb:26:3e:97:45:e0:6b:c6:11:fb:f7:d7:88:
57:73:2b:73:0b:cc:13:65:1b:d9:9c:a2:d6:3f:37:
1a:ed:3f:4b:f4:83:01:22:b2:e8:e4:0d:ec:ea:3d:
fd:ff:2c:9f:e8:18:49:6f:19:6a:41:59:9d:22:12:
32:23:01:7c:51:0e:28:e5:8a:bc:19:e6:d7:ae:36:
d1:58:86:c9:1e:50:f6:3d:da:36:c1:e6:0e:22:95:
ff:ce:ab:6b:ed:17:03:b5:45:54:5d:09:24:0e:0f:
de:08:12:a6:c7:22:f5:24:90:ee:b2:21:52:31:91:
7f:90:03:8a:63:c8:16:8f:aa:b8:0f:53:68:d7:7e:
5d:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:73:DE:7B:35:57:9C:9B:82:00:08:1C:6A:12:62:09:DC:14:96:78
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/7nPeezVXnJuCAAgcahJiCdwUlng.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.66.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a5:77:75:9b:93:1b:57:02:f4:73:8e:00:cf:e2:00:b2:b6:d0:
57:c8:80:f1:b6:36:c6:ca:51:e7:9e:25:45:30:cc:ee:24:b5:
e7:b1:32:96:e5:52:20:64:1f:31:c4:4e:55:5e:e9:c6:4d:09:
c1:4e:3f:52:98:d7:a1:4c:5b:ac:74:ec:81:11:16:b0:1f:aa:
94:54:b4:6b:a7:55:94:b8:6d:d3:d9:47:ac:f9:af:21:a2:2d:
af:f5:ac:e0:b5:f0:4a:7d:70:4c:df:18:b3:6e:e4:ac:e8:5e:
8a:85:7f:f0:7c:f4:e7:95:60:2f:ef:2d:78:14:07:4b:8f:0e:
57:9e:b4:49:9d:53:5a:2d:d2:b6:99:c3:2e:1c:02:12:a2:28:
ed:11:c2:02:54:d4:7f:13:50:c3:ed:38:8b:e7:0b:88:7d:e8:
c6:7a:60:a8:43:f5:c7:0d:cb:4a:2f:e8:bb:bf:e1:c0:34:ad:
ac:56:c3:11:d3:95:76:45:5d:42:25:de:07:a2:30:01:1c:1e:
d2:20:33:dd:69:f3:d5:b4:d6:4d:2f:7a:20:e9:e4:2c:5b:63:
9c:68:d8:c9:52:df:05:df:5b:f0:7a:9d:91:2b:c9:e4:ce:c1:
f6:da:51:ac:fe:3d:4e:92:67:2d:f6:95:a3:e9:9b:94:46:66:
7a:04:a1:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:28:28 2025 by rpki-client