Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/KM0l5gdpRBS2N_qDWI8UMv1OaXE.roa
File: KM0l5gdpRBS2N_qDWI8UMv1OaXE.roa (raw, json)
Hash identifier: bfI41Y89OYOrFpu8ZwaHu46/bSytpZ1Kq48NMt5YO+I=
Subject key identifier: 28:CD:25:E6:07:69:44:14:B6:37:FA:83:58:8F:14:32:FD:4E:69:71
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1523
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/KM0l5gdpRBS2N_qDWI8UMv1OaXE.roa
Signing time: Tue 11 Feb 2025 23:44:22 +0000
ROA not before: Tue 11 Feb 2025 23:44:22 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 61.216.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5411 (0x1523)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:22 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=28CD25E607694414B637FA83588F1432FD4E6971
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:a2:1d:1d:d9:60:e2:a1:30:2e:61:f0:b8:03:
17:d1:8b:1a:11:f2:d7:2b:a3:08:9b:42:9f:66:ee:
d8:69:26:5b:f9:b7:a9:f3:a9:b5:88:67:9e:3f:bb:
7e:cf:7d:ef:ca:c2:68:8c:80:4a:df:e2:d9:28:7b:
f8:99:3a:c7:cf:ad:2a:11:e5:5f:d5:53:a7:3c:7a:
18:b3:86:3a:16:1c:53:25:c5:5f:e5:ab:73:b2:28:
7c:8f:ee:3f:31:23:e6:c6:88:96:ef:f4:25:e9:05:
02:31:55:3d:ba:a9:1a:92:30:3a:27:e1:0b:37:40:
d7:84:ba:57:9e:1b:09:b4:ae:ae:b3:b5:0e:25:95:
4f:46:f7:50:3a:41:f6:69:e0:10:be:5c:66:e6:80:
16:d2:75:a4:e6:b0:83:d9:8d:e7:fb:ed:5c:1b:8c:
ee:c1:63:1b:37:70:8f:ef:84:c5:a9:4f:05:7c:99:
7e:f7:e7:4a:60:ed:ef:46:ca:f1:d2:fe:56:14:89:
32:1d:0e:42:23:b3:f6:56:15:e9:bf:5a:26:f5:7b:
eb:1a:24:50:d5:ab:f8:90:10:73:a3:63:7f:54:c5:
f1:f4:09:7a:42:30:8b:a2:64:0d:5e:4d:5a:4b:b3:
de:7f:6c:e6:06:9c:39:26:6d:0f:d0:4c:4f:ef:ba:
a7:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:CD:25:E6:07:69:44:14:B6:37:FA:83:58:8F:14:32:FD:4E:69:71
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/KM0l5gdpRBS2N_qDWI8UMv1OaXE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.216.0.0/16
Signature Algorithm: sha256WithRSAEncryption
aa:9c:35:df:fe:48:a3:1e:15:8c:9d:c9:37:ea:ab:59:5a:27:
31:dd:c3:9e:da:7c:b1:81:0f:e1:6a:a5:c1:91:fd:a6:39:82:
9e:bd:c1:45:7c:e6:0e:19:57:30:76:67:34:03:a5:c5:08:78:
c9:1b:bb:7b:e0:e2:0b:30:f5:77:ba:9e:c1:8d:7a:4a:1a:cb:
37:d5:ae:54:45:a6:b2:36:f2:7f:5d:95:7b:27:8d:ff:c5:e1:
07:33:34:06:1e:14:17:47:29:43:a8:3b:83:b0:6d:36:e6:0d:
3d:73:4b:a5:38:df:5b:5a:b5:7c:a6:21:ac:61:8e:06:9f:43:
37:23:24:1b:8e:dd:02:ca:fb:0f:cd:86:63:a9:44:bf:6e:0f:
3c:6f:da:ad:b8:a1:51:47:bf:dc:3d:25:33:5f:03:ee:b8:38:
c5:e8:6a:de:0d:c4:a1:44:c4:4b:70:d8:94:0a:92:10:eb:94:
cd:92:a0:d4:17:2b:f0:20:31:07:7f:42:a3:ed:d8:4b:54:64:
61:5f:ad:dc:6d:1a:66:dd:87:55:25:2e:34:0e:09:02:1a:5a:
6e:d3:87:1a:0f:6a:f2:d9:c7:e0:11:9a:a2:4e:cf:4f:fa:54:
b7:bc:65:96:2f:20:a4:60:60:74:66:7b:68:7a:b2:f6:2d:57:
09:d0:dc:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:23:04 2025 by rpki-client