Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/GyCgapsM3n90gGRZWL11djb45gg.roa
File: GyCgapsM3n90gGRZWL11djb45gg.roa (raw, json)
Hash identifier: FNsFrgwYCW7Q4UroR2fUDjPPooN0R8Jz7tXbNoqFfU0=
Subject key identifier: 1B:20:A0:6A:9B:0C:DE:7F:74:80:64:59:58:BD:75:76:36:F8:E6:08
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 14A5
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/GyCgapsM3n90gGRZWL11djb45gg.roa
Signing time: Mon 10 Feb 2025 14:35:07 +0000
ROA not before: Mon 10 Feb 2025 14:35:07 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 198949
IP address blocks: 210.242.186.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Feb 2025 23:44:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5285 (0x14a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:35:07 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=1B20A06A9B0CDE7F7480645958BD757636F8E608
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:0f:0c:e4:b7:59:6a:2e:04:c4:01:f0:40:d4:
ba:32:48:ef:16:f7:a0:22:90:53:3c:e8:6f:5c:de:
39:b6:bb:4a:34:1e:00:5e:f6:48:be:5d:a9:9b:96:
d0:6e:c6:b2:9c:50:5c:1d:27:52:54:e6:59:bf:d7:
52:a7:79:09:5e:a3:af:c6:8d:62:36:a3:f2:b5:91:
0c:85:44:18:ba:f8:6c:ca:25:90:d7:67:7b:7d:d7:
4e:26:6d:c5:83:75:a5:96:c8:24:db:80:82:60:94:
4e:f6:e4:68:35:19:85:fd:21:94:1e:4e:f8:77:c5:
b8:40:02:20:8b:81:f2:14:51:fb:a5:a8:3b:c6:73:
1c:ce:37:8f:b9:b5:06:5c:65:10:57:09:99:63:af:
12:e3:4e:b1:b6:7d:10:07:2f:8b:31:d9:ce:8b:97:
ad:b2:f5:0d:43:dd:3c:85:90:d4:c6:eb:21:91:72:
ae:95:6c:57:6e:95:72:9a:de:8e:b2:db:42:69:3e:
af:5e:be:4d:05:a7:a0:6f:8b:02:0a:72:95:c5:41:
6b:b5:d5:84:87:61:42:cf:25:90:4c:f4:c3:14:3f:
f8:03:26:b3:13:c8:d6:6c:4f:4b:3b:4d:b5:e9:41:
dc:a3:3c:41:81:a2:bf:11:fc:5e:63:28:34:5d:50:
df:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:20:A0:6A:9B:0C:DE:7F:74:80:64:59:58:BD:75:76:36:F8:E6:08
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/GyCgapsM3n90gGRZWL11djb45gg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.242.186.0/24
Signature Algorithm: sha256WithRSAEncryption
66:02:64:9c:76:76:56:5a:cb:48:b7:53:d7:21:cc:41:4a:7f:
e2:5f:92:86:9d:53:c1:73:0f:0d:51:ea:ca:a9:23:2f:2a:3d:
57:d4:f2:63:e8:5f:58:f4:a6:e5:ea:08:b2:ff:11:92:56:3a:
4b:8f:f0:13:36:f4:13:0c:2a:f4:ba:2a:e0:d1:ae:79:28:cf:
60:87:06:46:66:8d:7e:f3:e6:31:f4:97:86:54:c8:2e:d1:47:
15:02:d0:95:5c:c7:70:eb:e0:c1:98:0d:72:bb:8d:2d:2f:a3:
bc:0e:5b:7e:af:fd:82:9e:19:86:27:fc:4e:da:58:9f:c1:69:
e5:59:87:1c:49:d7:c5:e4:84:9b:00:be:3f:99:3b:17:82:5c:
37:5d:e9:eb:68:98:b7:8c:83:ab:57:97:44:a0:4f:09:46:09:
d8:29:3d:6b:ed:d0:89:6b:3f:b1:37:bd:3a:ed:d2:34:0d:4e:
3c:40:2f:d2:80:b7:eb:34:37:54:f4:bf:92:d4:18:a0:4d:10:
9a:85:49:9c:ed:d8:d5:8c:91:c8:9b:4a:79:23:d0:43:09:da:
dc:da:72:18:5c:7b:f4:21:3f:77:9c:31:98:f5:15:74:10:cc:
68:65:cd:91:67:af:f7:49:bc:f7:2e:0b:3c:0d:46:9c:df:8d:
74:e3:2a:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 17:20:06 2025 by rpki-client