Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/9qyw7huy26FjBjTkLrdU7GtJpvw.roa
File: 9qyw7huy26FjBjTkLrdU7GtJpvw.roa (raw, json)
Hash identifier: gcX1iXtFaEFz5DWUR5Vh0qlYkSGKPIEMa92xWeTuAD4=
Subject key identifier: F6:AC:B0:EE:1B:B2:DB:A1:63:06:34:E4:2E:B7:54:EC:6B:49:A6:FC
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1558
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/9qyw7huy26FjBjTkLrdU7GtJpvw.roa
Signing time: Tue 11 Feb 2025 23:44:33 +0000
ROA not before: Tue 11 Feb 2025 23:44:33 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 202.39.128.0/17 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5464 (0x1558)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:33 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F6ACB0EE1BB2DBA1630634E42EB754EC6B49A6FC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:20:da:e3:01:c9:0a:35:53:7f:e0:38:75:45:
c4:df:e6:56:79:1a:38:b3:d3:54:50:5d:d1:4d:23:
76:2e:a7:a4:eb:61:4f:af:97:4b:44:da:89:30:3b:
80:12:3f:c4:a3:ff:f6:ba:9c:4d:8f:eb:03:f1:2f:
fe:5a:4e:73:a1:86:2d:37:7b:35:61:cb:cf:c5:fa:
8d:ef:b9:cc:5d:12:32:be:22:8d:92:f1:e3:1d:79:
77:00:9a:19:d8:88:10:bb:f7:38:7b:7c:11:b7:bc:
ba:b3:e6:3a:52:5e:f4:e6:40:5c:02:be:39:9e:63:
de:3f:cc:2e:a1:e9:d9:57:01:c7:11:a6:40:ff:2a:
1c:34:c5:a6:d8:c3:6d:85:87:cb:72:3b:a0:e2:5d:
69:4c:c8:1f:61:8b:2a:4c:82:82:31:6f:48:da:9c:
9d:73:4f:de:da:42:96:77:a7:26:f6:fc:73:2b:80:
93:58:91:b4:ab:b3:28:24:a3:62:2f:8d:f2:dd:14:
20:bc:93:0b:cf:2e:3e:df:66:9b:7d:5f:e6:01:4f:
db:9c:3c:56:a0:d4:3d:48:9a:af:ff:cf:cf:af:b8:
19:3f:28:b4:47:df:27:c5:91:4e:22:f8:ed:ba:98:
fa:c2:55:e8:72:6a:39:61:1b:47:1a:90:4d:bc:d8:
4a:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:AC:B0:EE:1B:B2:DB:A1:63:06:34:E4:2E:B7:54:EC:6B:49:A6:FC
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/9qyw7huy26FjBjTkLrdU7GtJpvw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.39.128.0/17
Signature Algorithm: sha256WithRSAEncryption
90:8c:72:61:5b:09:20:0b:64:08:19:43:53:b6:aa:ce:c0:90:
b7:71:8f:b6:f0:e6:f2:07:fd:85:ce:31:04:85:00:e0:fc:e5:
50:52:55:59:08:ed:a5:5a:cf:6a:3f:a4:04:35:66:77:8d:cc:
3c:0b:75:c5:75:06:d9:bd:ab:d1:9b:99:a4:de:17:2e:0d:7b:
f4:bd:40:45:17:9a:b0:4e:27:a9:4e:ae:44:22:ee:31:9f:43:
cc:64:b4:6f:c6:ff:22:cb:4e:f0:c6:3f:cc:37:5e:cf:e3:3b:
f2:cb:b1:4e:d7:d5:49:f9:df:6d:70:96:44:80:ad:b6:b6:e4:
1e:ce:e1:93:f0:09:e5:e1:76:0c:39:ed:4f:d1:a2:62:4e:62:
20:e6:12:37:ee:64:36:49:08:05:d9:6a:43:be:01:ce:62:34:
65:af:6f:fe:17:c5:30:b7:19:44:ba:0c:82:84:bb:1e:f5:04:
9e:2a:67:c6:8a:07:0f:a9:5b:f0:0e:17:ef:54:36:99:b0:45:
ef:1a:16:36:c3:0e:81:12:8d:c1:53:5b:89:e8:88:4f:31:a2:
de:3a:a5:43:8e:e2:33:00:3b:c3:93:93:9a:23:0d:02:85:3a:
30:c5:12:17:83:2e:02:9a:38:b4:9f:f7:e3:43:0f:c4:5e:ac:
29:02:f8:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:36:08 2025 by rpki-client