Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/81MXjrF9OGNpGj20d7IJHnZ7Bbs.roa
File: 81MXjrF9OGNpGj20d7IJHnZ7Bbs.roa (raw, json)
Hash identifier: b8fAaYfNeYixYz4vwQrpjaWwMjCkbEH++JJovOMtFq4=
Subject key identifier: F3:53:17:8E:B1:7D:38:63:69:1A:3D:B4:77:B2:09:1E:76:7B:05:BB
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1222
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/81MXjrF9OGNpGj20d7IJHnZ7Bbs.roa
Signing time: Mon 26 Aug 2024 05:18:17 +0000
ROA not before: Mon 26 Aug 2024 05:18:17 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 118.168.0.0/14 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 12:51:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4642 (0x1222)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 26 05:18:17 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F353178EB17D3863691A3DB477B2091E767B05BB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:5b:f2:7b:de:aa:27:a2:b0:c6:36:93:7a:81:
dc:2f:de:8c:36:49:12:2e:a2:77:f2:6c:d2:15:e2:
ba:28:68:fe:9c:47:c4:25:db:d7:1b:f5:e8:fb:dd:
c4:a4:0c:e0:6c:86:36:c4:09:5d:04:47:5a:2a:43:
7d:8d:11:b2:a8:ab:89:db:12:03:41:f6:2a:af:fe:
ab:9d:5f:b8:35:27:40:53:f9:85:5e:aa:76:6e:46:
7b:a3:f2:24:4b:65:08:51:e5:0c:b3:a8:3f:f4:b5:
be:ef:bf:cd:47:c9:0a:fd:e5:f5:4e:68:ca:9d:21:
d8:f7:82:43:1f:04:1b:af:0e:f7:6d:53:b5:9e:b7:
c7:06:70:67:c8:bd:9d:95:7d:57:1b:b0:03:23:08:
6b:fb:70:fd:ed:cd:c0:29:21:0e:a0:7e:80:c4:53:
64:66:d0:3b:c6:44:95:a1:88:66:37:f5:58:6a:a0:
b6:8a:e2:f1:ea:71:b1:ef:b5:68:73:ef:f0:96:80:
be:6b:56:e6:b5:fb:16:cb:30:5d:52:ea:1e:2c:d9:
fa:f8:2a:4b:85:d2:e8:1b:2e:bc:aa:93:e1:ba:f6:
a9:9e:10:34:4c:99:f8:7a:71:ec:1a:a0:ef:65:40:
3b:e0:12:f6:b6:2e:a9:8e:56:f9:34:cd:bf:68:e4:
f5:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:53:17:8E:B1:7D:38:63:69:1A:3D:B4:77:B2:09:1E:76:7B:05:BB
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/81MXjrF9OGNpGj20d7IJHnZ7Bbs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.168.0.0/14
Signature Algorithm: sha256WithRSAEncryption
22:7c:26:e8:80:d3:5f:5d:9a:5b:29:8c:a2:1c:06:c8:4c:3c:
3e:5a:8c:a4:a3:9c:77:98:da:3d:cc:7e:e1:17:45:22:ea:8b:
06:59:aa:e2:f2:91:c4:1a:3d:c3:1b:fd:5a:40:c4:e2:17:1a:
fd:48:2e:d0:69:8e:d4:61:87:3f:67:45:a7:0b:c7:76:0a:c4:
4a:9f:c3:7e:99:fd:4f:7f:a8:61:38:7e:5b:f6:9e:c1:19:f7:
bf:c8:ca:9e:ba:79:52:76:05:0c:4a:b5:31:07:37:42:26:60:
f9:c7:0e:dc:d0:fc:29:90:50:9b:67:31:5d:99:3b:8f:a0:14:
73:52:be:c0:6b:c2:b4:38:47:55:f2:9b:ed:27:d0:6b:07:d1:
98:71:af:50:d9:9b:a8:ce:d8:9d:00:0c:a5:54:6e:8e:9e:54:
73:62:fe:75:35:56:16:5a:fc:a6:9f:66:d3:37:09:6a:36:f2:
c7:9e:aa:ac:31:b6:d6:44:80:5d:54:53:03:01:ae:99:4a:3b:
cb:8f:c2:dd:6e:4a:5b:cf:13:99:3f:e5:3c:1a:02:6d:6e:46:
3d:35:6b:19:ef:87:3d:39:13:33:e5:69:68:cc:44:97:d3:25:
00:e9:3e:62:43:fb:38:43:7d:ac:a7:31:78:52:46:6b:3c:d1:
36:b3:1c:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:37:19 2025 by rpki-client