Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/D72bT2s73juZumR8r0ifMQQ2phM.roa
File: D72bT2s73juZumR8r0ifMQQ2phM.roa (raw, json)
Hash identifier: ynfyj5D2xJMfbDmSqQTS2hTCY6Ve0olKPjAEZct514Q=
Subject key identifier: 0F:BD:9B:4F:6B:3B:DE:3B:99:BA:64:7C:AF:48:9F:31:04:36:A6:13
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1528
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/D72bT2s73juZumR8r0ifMQQ2phM.roa
Signing time: Tue 11 Feb 2025 23:44:22 +0000
ROA not before: Tue 11 Feb 2025 23:44:22 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131621
IP address blocks: 2001:b032:103::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5416 (0x1528)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:22 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=0FBD9B4F6B3BDE3B99BA647CAF489F310436A613
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:5b:74:6b:81:15:09:7c:7a:8b:1a:d8:7b:db:
59:50:a9:20:3a:b3:fd:86:f8:48:6a:fa:e1:03:11:
03:b8:2c:c7:1f:5b:28:8c:d6:10:14:92:cf:64:cb:
3a:4d:6c:ea:f9:fa:73:d7:c9:74:e6:ad:21:94:e2:
bc:44:4e:46:4c:30:65:90:f3:20:33:78:93:88:1e:
9d:79:52:b8:89:bf:08:46:ae:40:19:c7:eb:4c:39:
0a:45:91:78:5b:55:4a:bd:59:f5:cb:c4:4a:dc:62:
a1:c6:7f:c5:db:7f:0f:d2:25:c8:72:28:96:1e:34:
32:96:e1:45:67:cc:3a:b9:bb:e6:6f:3c:95:f4:a4:
34:1c:c9:c9:3d:92:55:9c:f9:8f:48:93:f2:18:4d:
11:53:c0:bf:6d:c4:50:5e:2f:84:1a:d2:3b:b0:41:
92:69:c7:b5:90:3d:df:65:ba:1c:5a:e1:8b:35:d1:
89:78:da:00:0a:f3:a7:03:70:9c:dc:38:a6:3c:05:
a4:84:44:78:dd:30:d1:34:08:3d:76:09:69:ce:44:
c9:6e:ef:e1:28:05:cc:45:3d:62:54:69:96:fa:db:
1a:08:ed:33:eb:91:b9:b3:25:5d:0d:f8:f2:be:17:
c5:d0:05:98:06:c6:58:50:02:55:4f:76:2b:49:77:
7d:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:BD:9B:4F:6B:3B:DE:3B:99:BA:64:7C:AF:48:9F:31:04:36:A6:13
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/D72bT2s73juZumR8r0ifMQQ2phM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b032:103::/48
Signature Algorithm: sha256WithRSAEncryption
42:46:78:01:cc:bb:7a:6f:5d:c0:b8:c8:8d:e6:49:66:40:34:
3a:ff:25:7c:91:4a:c0:b4:c6:88:be:43:01:68:5f:de:ee:04:
e2:d7:5b:25:1b:f4:df:c0:f7:37:12:20:f0:6d:5a:97:ca:1d:
6a:51:e0:fd:ad:32:4d:35:e7:97:9d:f3:ab:75:90:12:b1:7a:
d2:e1:0c:23:54:4b:46:ce:60:4d:4c:0a:a1:71:19:0b:b4:c5:
c0:e8:98:3d:c5:e8:7e:4f:9d:c5:5e:da:c4:f6:38:8c:f1:72:
c3:bd:94:dc:2a:74:f5:ae:14:63:e0:8d:b7:9a:d6:74:37:cc:
2c:f3:3e:9f:4a:79:71:f1:6e:01:a8:28:9e:bd:6d:06:7d:13:
c3:c4:13:9d:61:ab:20:d0:a4:9e:76:79:f2:35:32:85:5c:49:
67:f6:f8:e9:af:68:0e:90:0b:0c:ed:e2:36:e6:21:29:41:86:
6b:f2:57:82:9d:e7:bc:b9:93:8d:6c:f6:71:29:ce:62:b1:be:
c3:c2:62:6d:c5:61:50:50:86:32:48:ec:e8:ad:e1:10:54:cd:
83:e0:fb:a1:15:05:83:bd:76:13:d7:30:3f:5a:c6:a0:95:35:
6b:13:e5:60:9a:b5:f9:b7:30:67:0c:a1:47:ec:e9:4c:d7:15:
d7:6b:c4:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:27:15 2025 by rpki-client