Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/9ZuGiYKAAno84jPVc_pnge9EaE0.roa
File: 9ZuGiYKAAno84jPVc_pnge9EaE0.roa (raw, json)
Hash identifier: OEurTh3TkCS4liEoV1wWdKrYSmPqNEmjFIJ60NFCEvU=
Subject key identifier: F5:9B:86:89:82:80:02:7A:3C:E2:33:D5:73:FA:67:81:EF:44:68:4D
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 11D5
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/9ZuGiYKAAno84jPVc_pnge9EaE0.roa
Signing time: Mon 26 Aug 2024 05:17:59 +0000
ROA not before: Mon 26 Aug 2024 05:17:59 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 2001:b000::/21 maxlen: 48
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:35:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4565 (0x11d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 26 05:17:59 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F59B86898280027A3CE233D573FA6781EF44684D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:74:5b:f6:06:48:21:fe:e7:1f:a1:3a:6c:96:
84:cc:ee:6c:9e:21:b9:ce:5f:d9:be:35:1d:7c:7b:
77:48:f9:24:9c:5c:85:5d:8c:1e:86:09:55:b9:8a:
97:17:1a:dc:08:c4:30:7a:26:e4:59:5f:63:a1:29:
42:c0:ee:22:c9:12:3f:62:ea:1a:43:e6:98:d2:2f:
cd:7c:c7:13:10:b4:6f:c3:20:65:8f:0f:fc:66:b2:
64:96:b5:29:bf:16:32:3e:fe:57:3a:5c:c9:be:d4:
a5:93:2e:9b:7a:d4:4e:b5:0a:df:8a:6a:b1:c7:7c:
7b:90:c5:4d:15:21:19:ff:5b:29:9d:3b:a4:b9:58:
0d:fe:2a:37:61:d3:27:c8:49:aa:5c:67:db:e4:8f:
35:53:06:52:68:f0:2c:3e:30:7e:68:7c:e2:b5:bc:
3d:5e:d6:fa:01:3a:80:6c:7a:27:18:b8:71:59:4b:
39:10:e1:0e:ac:6a:e9:b1:d9:b6:37:9b:11:7a:67:
08:34:e7:f9:d1:a1:19:cf:04:c0:0a:0f:2e:27:a8:
ed:7c:cf:57:ae:21:f9:87:84:d2:9b:52:0d:f1:a1:
14:92:b1:59:a8:44:e1:c8:d3:72:c8:d8:12:a5:36:
39:1e:d2:ec:fa:e8:02:78:f5:d7:67:07:7f:7b:18:
1f:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:9B:86:89:82:80:02:7A:3C:E2:33:D5:73:FA:67:81:EF:44:68:4D
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/9ZuGiYKAAno84jPVc_pnge9EaE0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b000::/21
Signature Algorithm: sha256WithRSAEncryption
12:f7:aa:3b:84:a8:37:37:70:50:1c:ca:ce:33:9f:cd:7c:2f:
81:7b:61:9f:9e:a1:f8:32:b4:8d:61:00:24:e0:54:58:0b:b2:
50:85:61:ff:e7:48:0a:b3:a2:0b:68:a4:06:97:0b:a9:f8:d3:
1b:93:af:e2:d9:d0:af:d7:64:c7:dc:a0:bb:49:8f:e7:8a:ee:
67:72:c5:b0:e4:94:c4:09:d6:25:1b:74:e2:69:1e:dd:67:bf:
68:8b:6e:08:3c:00:a6:c7:fb:a0:bf:1c:24:0d:38:f3:2a:47:
15:3b:8f:51:04:c1:ee:bf:7f:32:ee:8a:dc:45:91:a2:4b:a7:
c1:13:8c:06:b7:61:71:7d:79:f8:87:e9:75:6f:0e:de:2c:f8:
16:1e:b7:52:e8:21:83:81:3a:d8:30:ae:58:1f:49:36:2a:27:
e2:62:09:c5:2a:0a:a8:25:cf:4f:75:5b:6c:e4:84:ce:1e:94:
5b:33:2d:b8:dd:b4:86:13:ac:9b:49:06:96:1e:4d:8a:23:e7:
a2:7f:3a:0a:e6:d1:33:0b:0c:c0:24:ae:02:22:da:12:80:1d:
83:dd:67:bb:be:66:cb:34:3d:2b:1c:ab:3f:f9:ec:89:e6:aa:
c8:c5:a1:c7:4f:ea:c1:53:03:f4:72:65:46:8b:43:02:c3:b0:
20:0c:21:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:28:09 2025 by rpki-client