Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/FI8t432h7e4plJzhYhC5KUpWzDI.roa
File: FI8t432h7e4plJzhYhC5KUpWzDI.roa (raw, json)
Hash identifier: o2gLJZcfC7pLqVO/5f/dE6r2/2kMWs+IQDO+yqpWTXs=
Subject key identifier: 14:8F:2D:E3:7D:A1:ED:EE:29:94:9C:E1:62:10:B9:29:4A:56:CC:32
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 14D3
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/FI8t432h7e4plJzhYhC5KUpWzDI.roa
Signing time: Mon 10 Feb 2025 14:35:18 +0000
ROA not before: Mon 10 Feb 2025 14:35:18 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 23675
IP address blocks: 203.66.245.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Feb 2025 23:44:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5331 (0x14d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:35:18 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=148F2DE37DA1EDEE29949CE16210B9294A56CC32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:69:78:4c:8f:74:a4:71:b5:74:9b:32:a4:75:
59:03:55:e1:71:72:ee:01:03:2c:21:38:48:c5:b8:
ed:06:03:ea:d0:0e:aa:9f:40:92:9a:55:51:ed:eb:
7f:1f:46:68:7f:df:97:45:c6:3e:a0:77:ea:a6:56:
30:67:6a:a3:77:2f:44:58:0e:16:21:fb:78:2d:bf:
a9:c6:79:e5:28:81:48:62:b2:11:91:ac:12:95:ab:
d8:e0:04:aa:23:dd:0c:da:ab:b4:8a:bb:b7:00:b4:
c5:cd:95:27:46:e2:10:de:a7:e6:08:6b:1b:64:14:
5c:0c:67:be:df:13:27:70:79:50:50:41:28:4b:5c:
78:d2:e3:30:35:da:59:df:b5:4c:4f:fb:ce:9d:21:
94:c8:1b:4f:f9:75:4d:b5:ae:5e:5a:82:ed:2d:1c:
57:fc:00:ba:8c:a3:3e:3a:31:0a:62:cf:b5:a3:f2:
ed:97:f6:ef:09:1b:79:b6:a1:2b:ea:83:de:38:66:
7a:9c:80:03:6f:e6:e5:ae:41:71:a1:8d:11:75:83:
c9:1f:c4:ac:33:5c:a0:44:f4:7f:d1:94:51:3b:b9:
d4:ae:30:6e:d3:98:96:3a:87:78:a7:cb:c6:d9:66:
45:0b:b2:a3:c1:71:e1:8e:6f:57:a6:16:e6:8a:2c:
94:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:8F:2D:E3:7D:A1:ED:EE:29:94:9C:E1:62:10:B9:29:4A:56:CC:32
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/FI8t432h7e4plJzhYhC5KUpWzDI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.66.245.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:ec:d4:14:43:fc:12:69:6e:b7:e2:62:f3:97:ba:86:0f:7d:
bc:d2:d3:50:b5:f6:20:a5:7e:47:0f:45:43:07:21:43:15:f1:
29:d2:eb:f6:5f:ca:39:9b:82:14:fd:ed:af:0a:2d:55:75:c9:
dc:ed:44:56:95:e3:92:a2:14:99:8f:70:8e:57:76:a4:e6:a5:
5c:14:cb:6f:c9:31:fc:ad:4d:54:e5:bd:b4:a1:af:6e:4a:ea:
a9:86:98:6b:c8:22:19:9c:0c:2c:a3:60:c8:e7:f9:7e:e5:c3:
53:dd:9e:1b:d7:b4:f2:ee:c7:22:d5:e9:3d:1e:bf:51:72:71:
06:a7:d6:d9:2b:f3:01:55:14:cd:60:cc:2d:ec:40:cb:c1:2e:
cd:9d:6d:19:85:c6:e9:3a:61:76:aa:f8:ea:a6:d6:f1:f0:99:
7a:c8:1a:86:36:48:fe:1f:e5:a3:41:1f:0d:40:d9:71:74:1b:
2b:4b:9d:d4:cd:43:48:68:e7:d2:66:9b:39:42:8a:cf:a8:6f:
45:2f:31:6b:46:7b:5c:f0:b1:51:1f:bb:7c:d5:8d:93:48:fc:
1f:0d:42:14:32:c6:8d:71:87:59:fa:1f:f1:58:54:c3:8a:94:
8d:51:eb:42:88:62:f0:75:c3:df:54:38:44:b2:c4:70:41:47:
50:1a:64:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:40:35 2025 by rpki-client