Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/Cl9nZdPZ2lpdV1pIbF_Wkn9HRCM.roa
File: Cl9nZdPZ2lpdV1pIbF_Wkn9HRCM.roa (raw, json)
Hash identifier: IGKiGU2gmTpdGF4i8CzdxQOej6lKkVDMLY4Sa+9h+ck=
Subject key identifier: 0A:5F:67:65:D3:D9:DA:5A:5D:57:5A:48:6C:5F:D6:92:7F:47:44:23
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1458
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Cl9nZdPZ2lpdV1pIbF_Wkn9HRCM.roa
Signing time: Mon 10 Feb 2025 14:34:49 +0000
ROA not before: Mon 10 Feb 2025 14:34:49 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131660
IP address blocks: 2001:b000:59c::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 11 Feb 2025 23:44:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5208 (0x1458)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:34:49 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=0A5F6765D3D9DA5A5D575A486C5FD6927F474423
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:a2:eb:51:7a:2d:8f:2e:98:c2:e9:1c:02:3e:
2f:9f:b8:4a:98:48:5d:8f:e3:3b:3d:47:a5:f9:1a:
7d:3f:5b:82:9e:44:07:95:8b:3f:5b:5a:01:7e:37:
eb:cd:1c:bd:dd:5c:42:80:a6:b0:30:8b:c0:d9:c0:
a2:8e:14:48:6c:33:fe:44:92:54:08:68:e7:ef:03:
2f:e6:33:13:63:0e:a8:e1:97:6f:da:4c:bf:0f:a0:
a5:b8:39:db:f6:7d:0e:58:b9:61:8c:b2:ee:f1:d9:
8a:e6:ea:62:ad:6e:2c:bd:76:47:97:99:1f:6e:4f:
ad:ba:5d:3c:49:8e:d4:77:c2:a7:5f:1d:2f:3d:cb:
fc:a2:37:d3:80:8d:1e:c8:bd:d2:a5:15:69:71:55:
db:03:7c:98:1d:17:45:3f:0d:c0:9e:a4:29:f0:55:
a0:82:fb:b1:32:49:54:c0:39:d5:28:f6:80:33:5a:
7b:ae:30:9a:73:d7:1a:61:86:e2:ec:9d:2f:35:9d:
74:49:3a:7f:70:79:c5:03:a6:a5:7e:7e:20:e4:a3:
b4:64:40:ce:47:1a:4d:20:b0:89:ba:05:3e:d5:db:
0e:fe:c9:f4:61:75:f9:34:ec:c7:61:4f:25:99:6d:
27:83:da:00:9e:dc:16:ff:5e:e2:f4:58:21:12:f0:
54:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:5F:67:65:D3:D9:DA:5A:5D:57:5A:48:6C:5F:D6:92:7F:47:44:23
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Cl9nZdPZ2lpdV1pIbF_Wkn9HRCM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b000:59c::/48
Signature Algorithm: sha256WithRSAEncryption
0a:c2:71:82:30:98:52:df:a1:7c:bb:20:f7:2a:4f:e0:31:fe:
aa:04:25:12:d2:e7:d0:58:7f:f4:c0:3f:e5:a9:9a:35:99:80:
46:63:f7:67:ca:56:3d:b4:4e:06:58:a4:eb:6e:34:4e:5a:6b:
27:9a:73:f2:87:c4:d6:4c:91:5d:22:07:ed:7f:e7:bc:25:86:
bf:90:9a:cb:d1:d3:06:ef:cd:15:56:f3:26:d8:55:66:b5:04:
a0:a4:5a:bb:f6:11:29:ee:a4:e1:d0:e3:a1:fe:96:bb:a0:75:
74:43:ad:27:ed:82:be:8e:27:12:37:a3:d6:7e:57:54:1e:7c:
62:02:d8:87:ca:2d:f0:c3:ea:66:8b:f9:b4:36:12:83:6c:ee:
4b:db:29:5e:ba:8f:57:d7:cb:72:43:c3:06:39:ec:c5:29:8d:
0f:71:e1:65:65:09:9b:43:08:d3:18:10:25:a0:31:3c:8d:90:
4c:5d:2a:83:80:ee:f8:3a:b6:33:fa:c2:81:4f:d0:6a:fc:fa:
95:08:af:ec:fa:47:fa:f9:9e:22:a2:fd:a0:4a:db:17:cb:5d:
52:e6:2a:9b:fd:8c:ef:e0:a5:40:5c:60:66:04:20:27:42:9c:
7b:0a:19:38:93:16:9a:25:02:f0:6f:b1:51:f5:89:48:73:5b:
ab:df:2e:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 17:21:46 2025 by rpki-client