Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/LZFri-mrtufhllxv0rkBIotc1UI.roa
File: LZFri-mrtufhllxv0rkBIotc1UI.roa (raw, json)
Hash identifier: xCvb7dg4lkf27aNLMuwLw+blh/+juh5KEsq5S/QSx8A=
Subject key identifier: 2D:91:6B:8B:E9:AB:B6:E7:E1:96:5C:6F:D2:B9:01:22:8B:5C:D5:42
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 146E
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/LZFri-mrtufhllxv0rkBIotc1UI.roa
Signing time: Mon 10 Feb 2025 14:34:54 +0000
ROA not before: Mon 10 Feb 2025 14:34:54 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 21859
IP address blocks: 210.61.201.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Feb 2025 23:44:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5230 (0x146e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:34:54 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=2D916B8BE9ABB6E7E1965C6FD2B901228B5CD542
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:14:2d:a9:64:6e:6e:d6:31:5f:62:b8:3d:1b:
b6:fb:5a:25:2e:4d:9c:76:85:fb:74:19:04:55:d5:
8b:00:1f:95:e7:fd:0b:a1:3d:36:93:c2:8a:d6:4b:
02:e3:1a:b1:d8:28:e6:3f:83:0f:74:49:2f:17:55:
87:82:8f:e4:f0:cf:05:2c:2e:f9:15:d1:3a:1b:10:
64:aa:1c:2e:1b:04:2c:f3:ae:53:77:28:96:7c:9e:
71:a2:ff:67:05:a7:d6:f5:69:34:90:46:d7:2f:0a:
08:00:3f:e8:c8:ca:36:e3:c4:4f:b9:ea:af:1d:64:
80:6c:1e:b1:b4:65:73:91:78:25:0f:c8:bb:43:50:
48:86:b2:89:99:fb:a6:16:d6:f6:e3:6e:02:93:c1:
e6:63:57:7b:d0:26:31:79:c9:ab:7c:f3:78:a2:da:
d5:5c:db:29:87:6e:6a:88:09:da:1a:e7:70:78:f3:
d0:6c:af:de:b0:11:3b:93:f0:48:9f:0f:5f:3a:19:
fb:9a:4a:62:b0:14:ea:bd:1b:57:1a:ba:1c:10:dd:
3c:46:8f:86:3a:98:fe:cb:37:e9:ad:3f:7e:00:e4:
0f:08:81:44:c5:57:63:ba:3c:34:1f:3e:34:d4:bb:
a7:34:66:20:94:61:17:1e:0c:56:bc:8b:e2:1b:d0:
c5:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:91:6B:8B:E9:AB:B6:E7:E1:96:5C:6F:D2:B9:01:22:8B:5C:D5:42
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/LZFri-mrtufhllxv0rkBIotc1UI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.61.201.0/24
Signature Algorithm: sha256WithRSAEncryption
57:77:48:44:67:82:a5:7b:6c:95:9f:63:a5:b9:c9:e1:f1:10:
a6:4e:a6:a7:fd:b4:c2:cc:79:b4:1d:1d:a9:3e:7c:08:6c:b0:
c5:b5:66:59:9b:01:b0:fd:9e:9f:24:da:e3:b6:43:46:01:41:
4d:bf:ee:5f:90:8f:a8:15:ea:5c:3a:37:28:5c:32:d2:0c:0d:
75:36:24:98:77:e4:11:53:d9:20:80:9e:e6:7d:42:79:82:10:
39:ee:3a:2c:18:20:aa:b2:d8:69:8a:67:f5:d8:bb:f6:27:70:
10:03:56:c6:bc:f5:67:63:22:2b:43:b1:59:93:3f:3b:21:90:
0b:b5:9b:90:bf:9d:08:22:c2:bd:33:25:47:ab:7a:20:f3:a9:
8c:0a:34:f8:22:2b:ec:63:af:04:8c:e4:54:3d:8e:9b:20:45:
da:42:36:1b:7b:c4:93:90:22:b3:02:94:b9:f9:d7:16:2d:47:
af:96:0a:5a:dc:de:af:f4:81:ce:91:8f:50:69:40:92:8d:36:
81:c4:f7:53:37:b5:03:23:d8:ce:69:33:67:31:65:a6:d7:65:
0b:4b:b8:33:ae:10:4e:46:cf:98:61:55:4f:ae:b2:71:d1:d4:
c3:eb:a4:a6:0a:8c:70:3c:e9:28:ce:20:0a:48:6d:04:ef:34:
fa:f6:00:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:18:04 2025 by rpki-client