Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/Eespn0ONZvdIdIbLBT_LyyKhbBI.roa
File: Eespn0ONZvdIdIbLBT_LyyKhbBI.roa (raw, json)
Hash identifier: s3Jif4zEt+QGEl/cxAXCJ4rvllInVycFUnRvQ8HsCrI=
Subject key identifier: 11:EB:29:9F:43:8D:66:F7:48:74:86:CB:05:3F:CB:CB:22:A1:6C:12
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1571
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Eespn0ONZvdIdIbLBT_LyyKhbBI.roa
Signing time: Tue 11 Feb 2025 23:44:39 +0000
ROA not before: Tue 11 Feb 2025 23:44:39 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 203.69.47.224/27 maxlen: 27
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5489 (0x1571)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:39 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=11EB299F438D66F7487486CB053FCBCB22A16C12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:ee:2a:e5:c9:69:bc:00:7f:b8:99:b4:21:24:
06:31:b1:77:32:7c:91:56:6b:6f:18:19:1a:e3:a5:
22:de:87:bf:85:3d:d2:a1:66:8f:06:5f:9c:dc:50:
93:95:52:2d:d4:ef:af:9d:c9:87:55:03:e8:98:21:
40:5a:14:bc:db:3d:a6:18:bd:e1:f3:a8:5f:17:69:
e6:e3:d9:81:f8:71:6b:e2:6f:4c:40:95:ef:7d:9e:
1a:58:77:49:4b:e7:45:46:11:29:ec:47:cf:9b:1b:
d5:fa:47:39:a4:0b:a4:17:be:b3:28:1a:0b:46:4a:
36:28:cb:03:6c:77:8c:4a:d8:45:dc:18:96:32:d1:
e8:ed:ac:12:d7:1c:1e:3d:5d:7e:8e:99:57:58:2d:
46:5c:2b:bc:0b:7a:ac:cd:22:cc:fd:2c:cb:40:7f:
5c:b2:d6:20:3d:ec:56:8b:ca:7c:54:fd:66:4a:3b:
05:c6:ba:c2:e4:48:90:ce:a0:92:a7:bf:78:bd:a4:
da:68:9a:06:41:64:3c:25:91:58:3d:f3:f0:c9:a6:
7b:65:a3:31:ef:52:3b:41:06:c2:d0:08:83:13:49:
e4:1e:04:de:7b:1e:4b:df:39:2a:77:bf:db:f2:e9:
14:15:eb:78:8e:c8:fd:bb:58:dd:a5:0b:c0:4e:39:
a0:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:EB:29:9F:43:8D:66:F7:48:74:86:CB:05:3F:CB:CB:22:A1:6C:12
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Eespn0ONZvdIdIbLBT_LyyKhbBI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.69.47.224/27
Signature Algorithm: sha256WithRSAEncryption
92:8f:36:9f:82:94:dd:19:93:a2:13:d2:d0:d2:c3:84:c4:86:
78:38:89:19:0d:60:84:d7:02:b9:44:80:24:fb:58:f7:1a:62:
c6:36:d5:fc:1e:76:bf:30:98:9f:00:c3:d3:f5:65:4a:aa:1f:
d3:a7:f1:4c:39:1c:95:74:7a:f6:61:df:a0:61:f1:23:6c:f9:
56:13:05:02:79:a7:e7:f2:04:bc:0a:8e:eb:93:9c:5c:c1:0b:
32:e4:07:76:c3:0e:15:8e:63:48:4f:6a:81:cb:c2:05:b8:0f:
f4:f9:dd:59:2b:e0:96:e0:de:f6:e9:82:a6:69:8b:25:f9:8a:
3a:1b:71:df:63:e3:f1:4a:77:50:a9:9d:28:ff:80:2c:57:14:
94:06:52:9c:0d:3f:d5:e4:d4:78:3d:0a:90:87:8f:50:6f:d7:
8b:2f:ae:8c:c6:24:36:db:04:55:51:bd:67:25:fc:75:19:47:
f1:c1:46:2d:e0:22:e1:9e:b0:a9:1f:e8:78:44:67:19:af:05:
2f:19:d6:b5:1b:be:a8:ca:bb:fb:15:2f:0b:a7:f0:93:c7:88:
83:e1:f4:47:68:0b:71:8d:5e:6d:33:f9:4b:a2:dc:b0:31:48:
a5:fe:5e:bb:73:30:3a:cf:79:08:34:a7:58:60:21:a1:72:d6:
a8:97:4a:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:35:44 2025 by rpki-client