Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/Eg3ZEC4T6zLM2cCuzF5TqmeXHis.roa
File: Eg3ZEC4T6zLM2cCuzF5TqmeXHis.roa (raw, json)
Hash identifier: o/Fvfi5od0ATl5BP+RnNaEmdAsO/vT/ACZwe4uFYX6Y=
Subject key identifier: 12:0D:D9:10:2E:13:EB:32:CC:D9:C0:AE:CC:5E:53:AA:67:97:1E:2B
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 14D6
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Eg3ZEC4T6zLM2cCuzF5TqmeXHis.roa
Signing time: Mon 10 Feb 2025 14:35:19 +0000
ROA not before: Mon 10 Feb 2025 14:35:19 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9505
IP address blocks: 175.111.240.0/21 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Feb 2025 23:44:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5334 (0x14d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:35:19 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=120DD9102E13EB32CCD9C0AECC5E53AA67971E2B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:1d:41:57:f5:23:30:51:16:9c:b2:ed:2e:94:
bc:3e:eb:00:e8:7b:c0:76:b5:39:63:c1:2d:2e:d0:
39:32:41:ad:f1:be:2a:fe:0b:7e:cf:2a:61:6f:5b:
85:ac:75:6f:c8:fd:bb:22:ac:f4:49:74:97:1b:64:
9d:22:82:4c:4d:74:eb:b4:87:bf:56:20:7c:f5:7c:
ee:99:c3:ed:ff:a3:2e:33:70:f4:b3:da:cc:88:bc:
50:ff:b1:c6:79:d7:55:20:3e:d5:80:21:bb:6d:7a:
32:e0:91:b5:b9:a4:55:dd:45:5b:7f:02:20:e7:b8:
ce:64:22:89:d5:94:b4:a4:55:ad:2f:f3:1f:64:e9:
94:ed:35:bf:fb:37:2b:c3:11:79:79:8b:13:7e:f3:
c7:a7:b2:5a:78:56:a6:cb:3c:9a:0a:81:5e:1a:03:
7e:5e:91:8b:b8:b1:a7:2a:34:27:21:7e:38:8f:64:
6e:dc:15:8d:c7:fc:cf:6f:42:c3:c7:6e:4a:cd:07:
f7:f0:97:c9:f6:19:14:6e:b4:de:2a:af:df:ae:12:
f6:78:44:40:21:05:f6:bf:7b:11:11:c6:d8:35:de:
d6:74:c6:15:b9:a9:5e:d5:8d:d7:4c:a8:49:ac:0c:
62:78:6e:49:95:c3:6a:6d:f6:9d:cd:b6:a4:74:31:
a0:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:0D:D9:10:2E:13:EB:32:CC:D9:C0:AE:CC:5E:53:AA:67:97:1E:2B
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Eg3ZEC4T6zLM2cCuzF5TqmeXHis.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.111.240.0/21
Signature Algorithm: sha256WithRSAEncryption
4b:a6:03:e7:1a:70:7e:ea:a9:9a:13:31:b9:c9:fb:c9:e0:b7:
09:34:37:98:35:e9:83:e8:83:7a:f2:ed:18:80:b6:7f:b5:42:
ef:39:65:12:42:00:d4:dd:b4:47:d8:cf:ee:e4:a2:3e:a4:28:
68:47:52:2d:b5:79:8a:a0:9c:18:c5:f5:9e:91:40:c3:58:37:
e2:7d:4a:d1:6a:2a:73:c5:14:0f:5c:8d:07:40:e0:43:94:eb:
b7:ac:b6:fc:e7:d6:06:1e:91:be:51:3c:1f:7c:96:95:38:0e:
ad:45:6c:6e:a1:a9:40:67:e1:71:33:47:cb:a5:63:88:8a:d0:
04:bf:47:ef:d8:01:da:10:98:93:d7:9e:0c:3f:1c:6a:c8:7e:
03:40:5a:1a:01:23:c8:b7:38:d9:08:5b:9e:b0:2d:68:41:b3:
ec:c2:16:78:c8:25:a6:ec:3c:91:88:e5:a9:24:c7:33:67:49:
3d:9a:ed:34:d7:58:e6:99:8b:6b:92:4c:3e:01:a7:4d:5d:b5:
48:45:97:14:6b:42:7a:dc:62:8a:3c:fb:94:4f:5b:b5:49:51:
56:79:07:79:23:0b:ae:b4:65:4a:59:e0:0f:7c:a2:b0:1b:6e:
b0:cd:e1:6a:53:5a:5a:c1:b1:d2:e3:89:6c:d8:c7:36:f3:41:
54:f0:34:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:33:34 2025 by rpki-client