Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/ARQZJ2i9sdCX-_QOx7MjTXDLrn4.roa
File: ARQZJ2i9sdCX-_QOx7MjTXDLrn4.roa (raw, json)
Hash identifier: vv1u/Y7gNXwatQGJyGETv/h90BSJBziSKiZ3RnPbhRc=
Subject key identifier: 01:14:19:27:68:BD:B1:D0:97:FB:F4:0E:C7:B3:23:4D:70:CB:AE:7E
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 14ED
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ARQZJ2i9sdCX-_QOx7MjTXDLrn4.roa
Signing time: Tue 11 Feb 2025 23:44:10 +0000
ROA not before: Tue 11 Feb 2025 23:44:10 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131660
IP address blocks: 114.25.250.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5357 (0x14ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:10 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=0114192768BDB1D097FBF40EC7B3234D70CBAE7E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:88:7b:5b:68:ae:d0:98:b7:df:8d:b0:c7:b6:
74:22:23:86:4a:bd:3e:15:cf:50:41:e1:b5:9e:6f:
78:9d:ce:84:95:cb:70:25:a8:66:a0:c3:c1:18:42:
6a:c9:fb:e3:90:ee:01:39:46:26:3c:f8:12:cf:1a:
b4:74:a0:0f:39:34:2c:c4:1c:28:03:d0:0e:7f:cc:
73:18:d4:8e:4d:4e:61:2e:71:de:ac:28:33:9c:15:
2b:43:0d:c3:90:9a:59:89:e1:2b:a6:89:7e:5c:44:
76:db:67:a0:06:cf:0a:6a:e1:ea:9a:9f:63:d6:e2:
99:6f:9b:ed:26:c7:cd:d3:ac:d2:16:89:e2:b7:0a:
74:d3:49:96:6a:3b:7f:f6:a9:7d:d6:0a:dc:5b:7e:
fd:9e:fe:55:df:ba:85:a2:39:12:f7:3e:25:54:7d:
f4:da:5d:4b:02:63:b2:35:96:38:b4:ab:76:17:8e:
0f:55:9a:23:cc:90:5f:20:ca:d7:ae:97:5a:13:29:
ef:73:92:04:58:96:0e:49:8f:ed:d3:3f:01:73:a6:
00:29:ba:6c:73:3f:29:f5:6b:0b:13:a0:7d:45:00:
ad:5b:7e:9f:d3:82:83:70:96:6d:63:2c:ca:5a:1b:
b4:84:83:a0:25:42:3c:5a:32:bd:0a:e6:de:e5:fc:
4e:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:14:19:27:68:BD:B1:D0:97:FB:F4:0E:C7:B3:23:4D:70:CB:AE:7E
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ARQZJ2i9sdCX-_QOx7MjTXDLrn4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.25.250.0/24
Signature Algorithm: sha256WithRSAEncryption
41:6b:83:3c:68:f6:01:bf:68:93:67:b2:12:09:26:c1:07:72:
82:08:c3:89:6b:db:52:46:51:5d:b7:f9:b9:e1:ac:e2:32:14:
bb:8e:48:5e:68:84:00:92:cd:1c:23:32:15:62:46:92:12:5e:
a5:5f:72:f9:39:f2:6a:98:11:29:cb:6e:7a:9d:e9:17:19:61:
f8:d1:13:95:24:91:d6:3f:f0:51:25:a6:35:5b:65:72:7e:6d:
7a:da:b3:2e:c5:86:4d:41:bc:54:ed:f9:70:24:b3:3c:95:2c:
a6:0a:4f:50:be:5a:56:51:ab:73:98:50:06:cf:c5:7b:41:e0:
87:a5:d2:24:76:ca:0a:49:6d:13:af:7e:97:a8:2f:b6:aa:8b:
d7:6d:8a:3e:89:ac:35:6c:5d:ac:54:6e:9d:05:ff:77:8d:86:
7c:a1:f3:4e:cb:b5:c9:45:33:01:c8:af:5d:36:48:1e:e3:0c:
6f:9e:bb:1a:07:3e:f3:8e:7c:f2:7b:a3:a7:cd:f0:d7:79:95:
2d:bd:8b:52:c3:98:cf:1f:a9:ea:bd:65:9f:79:9b:32:32:82:
ae:33:1b:a2:d6:ec:b6:d6:73:7a:50:d4:68:27:c3:45:77:67:
b0:90:94:96:8c:15:e6:4b:a5:84:9f:a4:c3:07:eb:dc:7c:7b:
5b:49:df:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:30:41 2025 by rpki-client