Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/B66R6jsEuiYjexojfwnhBeEVVyo.roa
File: B66R6jsEuiYjexojfwnhBeEVVyo.roa (raw, json)
Hash identifier: fX7AzCwlHBU4FXEJyIbejo8OSWnWGUnC95CO/+vyPBQ=
Subject key identifier: 07:AE:91:EA:3B:04:BA:26:23:7B:1A:23:7F:09:E1:05:E1:15:57:2A
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1184
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/B66R6jsEuiYjexojfwnhBeEVVyo.roa
Signing time: Mon 26 Aug 2024 05:17:37 +0000
ROA not before: Mon 26 Aug 2024 05:17:37 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 61.224.0.0/14 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:35:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4484 (0x1184)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 26 05:17:37 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=07AE91EA3B04BA26237B1A237F09E105E115572A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:99:03:64:1c:1e:72:16:30:17:84:34:5b:e1:
d4:06:ad:e4:f0:4a:4a:d6:6d:ac:ac:c2:52:a0:7d:
5a:2c:c7:0f:b4:e8:01:7c:de:50:14:71:40:35:e4:
9a:0c:47:b8:12:89:ff:69:3e:d4:e5:3f:78:50:d4:
17:4e:f3:a8:bf:ca:8e:b8:2e:f0:5b:ed:d4:b0:8f:
44:c6:63:32:76:64:01:97:0b:cd:f7:06:e0:8a:1b:
49:d9:80:08:d9:fa:ed:41:54:09:fc:51:94:ad:8c:
99:b8:5b:08:95:e4:89:01:2e:43:25:32:79:ff:54:
8b:0c:d8:e0:bc:1a:e8:2b:32:03:cf:4c:b6:23:a7:
a5:31:00:89:6e:19:54:64:62:e3:14:f9:3a:1c:c6:
3b:1a:0f:97:70:5b:c1:ef:1d:ca:5f:d4:f2:48:8d:
6f:9a:c9:58:55:50:60:18:23:d9:61:44:da:7b:e1:
7b:d4:9e:d8:88:5f:b5:39:22:77:c0:8b:81:b0:e8:
b5:07:e8:7d:40:db:70:c3:ad:15:c0:aa:79:ed:58:
a7:4c:04:b4:cc:97:a8:c5:2e:42:47:bf:6b:66:65:
52:31:40:86:9d:9f:a3:90:2e:3a:fd:d6:d8:f3:93:
2d:b3:62:05:02:6a:c8:e4:a9:f1:43:e4:21:71:56:
f0:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:AE:91:EA:3B:04:BA:26:23:7B:1A:23:7F:09:E1:05:E1:15:57:2A
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/B66R6jsEuiYjexojfwnhBeEVVyo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.224.0.0/14
Signature Algorithm: sha256WithRSAEncryption
61:c9:36:64:aa:70:2e:59:d3:60:01:7d:7e:f4:4c:be:e5:03:
51:df:c1:9b:06:ea:c4:33:32:ef:e7:f4:ec:f5:5e:bb:f8:be:
d4:b1:a8:63:8f:19:5a:3d:e8:a9:1c:81:45:ee:a3:84:d3:6d:
cd:a1:5f:c7:f9:96:32:7f:85:3b:45:e3:52:ab:3b:13:48:f9:
59:d9:b7:84:24:d6:48:e4:53:45:04:83:97:06:3b:09:77:c4:
a2:61:81:d3:72:50:80:8e:97:eb:e0:f7:b2:d0:5e:3b:c1:65:
17:35:8c:1b:66:83:10:82:e6:08:cb:f6:ba:08:97:e3:f0:5f:
b9:13:bc:a5:ab:64:f9:f2:67:d1:2d:d5:0a:20:55:fc:51:d4:
11:10:62:be:29:63:d1:c6:90:84:a3:41:6f:40:94:ca:a4:86:
99:5d:b8:12:01:94:cb:23:bb:41:42:92:b4:c9:f3:3d:5a:98:
d0:c1:35:aa:2f:07:04:11:a3:5c:a5:2b:b2:e9:f9:1e:de:f4:
85:5e:e3:86:4c:85:2a:25:25:69:34:0f:39:de:b9:f2:f8:5d:
d6:96:12:3a:96:d7:97:d7:c4:4d:a3:f8:c7:4e:36:34:ce:d0:
25:2b:7d:2e:89:7f:f1:e8:b5:61:b7:9c:42:af:c6:29:b7:77:
ce:cb:9e:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:31:14 2025 by rpki-client