Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/FpeJDxui6j2NV8q6c5GqS2C8HXM.roa
File: FpeJDxui6j2NV8q6c5GqS2C8HXM.roa (raw, json)
Hash identifier: 33MwUep024uqZ27843GMN+1gNp6QnS2bdOzCT8ZGSGk=
Subject key identifier: 16:97:89:0F:1B:A2:EA:3D:8D:57:CA:BA:73:91:AA:4B:60:BC:1D:73
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 146B
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/FpeJDxui6j2NV8q6c5GqS2C8HXM.roa
Signing time: Mon 10 Feb 2025 14:34:54 +0000
ROA not before: Mon 10 Feb 2025 14:34:54 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 137280
IP address blocks: 203.69.19.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Feb 2025 23:44:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5227 (0x146b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:34:54 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=1697890F1BA2EA3D8D57CABA7391AA4B60BC1D73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:51:d4:d3:9d:0f:45:3d:62:24:f2:1e:2c:92:
08:45:39:13:69:17:76:5f:8e:19:18:fb:15:c9:3b:
f1:41:6a:1c:4f:3d:21:a3:64:af:5e:0b:2e:68:47:
09:45:65:22:ef:42:ca:c6:c2:f0:42:9b:0d:1e:12:
d6:a0:b5:2e:17:74:d1:a8:45:84:2f:c2:a5:8f:1e:
3e:bc:40:e2:70:d5:30:2e:08:06:69:44:c6:2a:c1:
f5:28:99:aa:ef:6e:48:fb:c3:aa:2c:bd:9c:15:ad:
a6:c5:76:db:4f:65:cc:00:7c:99:a2:0b:8e:55:80:
d2:55:54:ce:e2:7e:10:19:0e:34:76:be:b0:00:37:
d1:6f:b4:59:7b:cd:44:1d:78:08:1e:87:35:bb:02:
42:db:f1:f3:95:5d:73:0a:9c:8d:86:80:b2:f6:9a:
c9:41:e8:f9:bf:91:70:c9:5a:88:41:f9:fd:31:a6:
c3:c3:9b:ac:16:1f:b9:5f:4a:dd:15:22:80:d5:d3:
34:86:d8:22:7e:f8:50:5b:f4:11:88:de:4e:9a:70:
a2:bb:d5:f5:62:a8:0d:f0:bc:88:d4:f4:4f:a2:54:
a7:ed:f0:f7:81:ed:23:68:ab:b4:41:7a:f7:5f:6c:
af:55:32:61:47:fc:8d:58:20:1c:1e:08:1d:98:d6:
4b:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:97:89:0F:1B:A2:EA:3D:8D:57:CA:BA:73:91:AA:4B:60:BC:1D:73
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/FpeJDxui6j2NV8q6c5GqS2C8HXM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.69.19.0/24
Signature Algorithm: sha256WithRSAEncryption
73:29:86:93:e7:2a:a0:39:91:a8:0a:d0:b4:9a:1c:1a:bc:0d:
d8:1c:44:96:71:89:b1:9f:97:37:f8:d1:60:cb:97:fe:62:44:
08:9d:91:45:1c:0c:42:b7:46:72:09:7d:d1:a8:a7:47:c7:dc:
3e:72:95:c9:a5:7c:c8:cf:fc:b3:6c:13:d4:1e:4f:27:2e:95:
18:8a:9e:4c:f9:30:9c:f2:85:55:35:46:af:6a:e7:28:19:50:
32:a4:c1:24:df:77:bc:25:0c:82:68:90:61:73:9f:36:a2:eb:
c6:d1:a9:f9:e9:7f:08:66:6a:26:c3:68:d2:44:1c:64:ea:a1:
7a:e1:b5:08:64:8b:0f:31:34:33:92:85:89:cf:fe:a7:f7:83:
7f:a5:81:a7:93:0f:de:4b:07:b0:20:aa:c2:c1:da:2b:d3:c3:
73:08:d2:69:36:f8:88:1a:b5:7e:f6:f8:c8:f4:86:3a:9f:ce:
b3:a8:2c:1d:33:cc:3e:55:5a:ee:89:26:57:18:ef:02:34:35:
42:b1:cb:5b:0f:4d:c6:44:89:ae:cd:fe:ab:14:d8:fb:5d:06:
b2:c1:7f:61:a3:0f:f4:13:8e:f0:15:dd:f8:13:26:71:b6:09:
3e:ac:5b:54:15:fd:91:23:82:72:bf:4b:88:16:73:09:61:e0:
a5:52:55:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:21:21 2025 by rpki-client