Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/Jel012MtCyYFO605ScHZHn4R0Y8.roa
File: Jel012MtCyYFO605ScHZHn4R0Y8.roa (raw, json)
Hash identifier: TfIcZRkCgoG0l5KaI4l8kDsmDJgJ9VQZfj0oSOl7eXU=
Subject key identifier: 25:E9:74:D7:63:2D:0B:26:05:3B:AD:39:49:C1:D9:1E:7E:11:D1:8F
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 149B
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Jel012MtCyYFO605ScHZHn4R0Y8.roa
Signing time: Mon 10 Feb 2025 14:35:05 +0000
ROA not before: Mon 10 Feb 2025 14:35:05 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 122.118.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Feb 2025 23:44:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5275 (0x149b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:35:05 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=25E974D7632D0B26053BAD3949C1D91E7E11D18F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:79:76:f6:63:ee:8d:1f:c4:d2:ee:f1:da:25:
be:00:6c:47:3c:64:e0:63:01:e8:a0:26:be:3a:b3:
29:47:f7:0c:1d:33:ec:35:d2:1b:0e:32:49:35:6e:
92:c8:36:5c:0d:08:ca:f0:7e:63:d6:38:88:90:95:
d4:f2:95:2d:3f:68:c6:56:42:90:ee:b0:29:b4:b0:
45:52:1a:88:bd:37:4b:8e:12:7b:df:df:21:4b:42:
ed:0a:b8:4a:13:52:7a:30:61:53:6e:fb:86:16:6a:
55:28:d0:15:4f:67:52:f4:56:54:fc:c1:5e:80:55:
bb:be:91:2d:9e:eb:e4:9d:c3:59:91:ef:89:52:39:
3c:f1:35:c5:86:fd:18:b0:23:4b:85:ab:6f:9b:f4:
d9:f8:32:ba:4b:65:62:02:ef:b3:20:c4:a5:f2:48:
45:0e:67:c8:e3:99:d4:08:15:34:d7:6d:6b:d7:03:
fb:b0:96:af:10:ba:33:db:69:b1:fd:5c:c6:5d:da:
6a:49:ad:63:54:ad:ea:68:26:a6:b0:9b:8c:12:e6:
6e:c8:84:f6:35:c4:9f:bc:72:f1:80:c4:62:0c:2c:
8c:a8:cb:7b:9f:1c:a3:32:26:02:1d:be:a8:a1:ee:
62:33:35:7d:2f:9f:16:63:53:23:f5:b6:aa:c5:85:
bc:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:E9:74:D7:63:2D:0B:26:05:3B:AD:39:49:C1:D9:1E:7E:11:D1:8F
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Jel012MtCyYFO605ScHZHn4R0Y8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.118.0.0/16
Signature Algorithm: sha256WithRSAEncryption
35:7b:57:9e:5f:63:db:f7:06:04:28:b2:54:35:fd:a5:06:a3:
8c:bb:d1:f7:a5:10:29:d6:45:20:e4:97:ca:38:39:78:dc:ce:
9a:9a:1e:39:2b:27:d8:b1:0f:22:12:8f:eb:9c:87:ea:1d:28:
5e:d8:cc:43:ae:26:51:30:cb:fd:45:dc:5c:fe:8d:b3:88:c6:
37:57:7a:3b:de:99:05:49:c3:99:85:8e:ca:99:79:75:04:e5:
9a:5f:bb:26:ad:6f:a0:b4:ee:f0:97:6a:1e:9a:ac:58:4b:3e:
57:6c:d1:e0:78:e5:c9:4e:8e:dc:86:f6:e7:01:86:e1:b3:59:
ab:68:b4:e8:5a:cb:df:57:36:ef:59:44:c1:81:22:05:50:30:
e8:68:51:62:43:8c:4d:46:d0:a4:53:94:ef:14:a6:59:87:82:
61:48:f8:d4:fe:01:eb:96:32:2e:fe:f2:95:61:7b:1d:01:41:
83:87:f4:10:1f:d1:60:77:eb:20:d4:4f:37:a8:7a:26:f7:90:
af:93:65:a8:08:9d:49:a2:34:c9:51:3d:d5:5f:77:16:bf:3a:
44:f8:33:c3:a5:99:b9:c5:ac:e1:c1:cd:f1:bc:f0:18:bd:85:
b3:1a:bc:4c:ce:75:30:d5:ad:7a:3f:ef:c3:41:33:2a:c0:f7:
33:8b:52:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 16:29:54 2025 by rpki-client