Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/L__hF6En_yfNBjvSM-HcBgzemFA.roa
File: L__hF6En_yfNBjvSM-HcBgzemFA.roa (raw, json)
Hash identifier: goOj9QvUowExJeZcyuaQFIpWQGthsur/EBfoG1PJ2mQ=
Subject key identifier: 2F:FF:E1:17:A1:27:FF:27:CD:06:3B:D2:33:E1:DC:06:0C:DE:98:50
Certificate issuer: /CN=5876E4B8DFAA224C019D246931FC3CD7A4FEED2A
Certificate serial: 0D29
Authority key identifier: 58:76:E4:B8:DF:AA:22:4C:01:9D:24:69:31:FC:3C:D7:A4:FE:ED:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WHbkuN-qIkwBnSRpMfw816T-7So.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/L__hF6En_yfNBjvSM-HcBgzemFA.roa
Signing time: Mon 26 Aug 2024 05:17:52 +0000
ROA not before: Mon 26 Aug 2024 05:17:52 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131660
IP address blocks: 168.95.246.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 12:51:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3369 (0xd29)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5876E4B8DFAA224C019D246931FC3CD7A4FEED2A
Validity
Not Before: Aug 26 05:17:52 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=2FFFE117A127FF27CD063BD233E1DC060CDE9850
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:16:28:fe:0d:2e:32:e0:c5:cc:8d:b7:bf:6c:
39:4c:1f:34:51:bb:dc:d5:83:75:90:d6:40:56:b1:
47:68:24:e2:19:f1:cc:94:a2:f6:59:95:2f:5a:0b:
1e:5d:ab:6f:ff:c2:db:d8:13:f9:58:16:a5:dd:c8:
33:f0:e7:0b:80:03:86:15:37:c7:7c:9e:29:8e:aa:
69:58:f4:56:2b:13:f5:85:b9:c6:70:c9:98:a6:31:
7a:17:b6:5e:95:28:2f:6c:3f:52:43:d0:89:58:44:
df:1d:aa:e2:39:b5:06:58:60:53:8e:7f:bf:09:2e:
2b:31:db:12:56:6c:f3:73:aa:cb:77:54:f8:49:30:
ac:a8:b2:00:46:5e:f5:c8:43:c1:5c:ad:de:33:c5:
68:79:36:ab:51:63:83:57:87:5c:57:8a:b5:07:b1:
5a:64:b3:6e:cf:0d:1a:e2:01:33:c1:0c:f1:34:f6:
12:71:b4:92:a6:3a:6c:72:90:3f:8c:4f:60:e0:2a:
a0:b5:39:bd:2e:ee:f3:5c:4f:c0:fc:ce:13:fe:b7:
07:ef:97:be:43:33:22:b7:45:b5:5f:26:58:61:83:
ce:7d:7c:e5:8c:e5:66:7b:28:a9:ce:e7:f6:fe:65:
bb:67:de:bc:37:b3:22:e5:f7:18:49:46:70:12:00:
41:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:FF:E1:17:A1:27:FF:27:CD:06:3B:D2:33:E1:DC:06:0C:DE:98:50
X509v3 Authority Key Identifier:
keyid:58:76:E4:B8:DF:AA:22:4C:01:9D:24:69:31:FC:3C:D7:A4:FE:ED:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WHbkuN-qIkwBnSRpMfw816T-7So.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WHbkuN-qIkwBnSRpMfw816T-7So.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/L__hF6En_yfNBjvSM-HcBgzemFA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
168.95.246.0/24
Signature Algorithm: sha256WithRSAEncryption
48:b1:9a:4b:b1:51:47:4c:92:ba:9e:e2:b4:fc:73:2a:e4:9b:
b6:0c:5d:f1:27:64:54:79:6a:2d:1d:57:9d:f0:2a:d7:d5:b0:
8d:cb:82:b7:14:b2:be:e3:6b:af:11:bd:84:f6:e7:48:10:f8:
4c:22:e2:de:17:6d:cd:6d:c2:20:4f:7c:f0:74:5d:30:e3:59:
70:e2:36:16:12:73:31:43:21:61:e4:55:a0:ba:b1:8f:63:8e:
15:af:00:54:5b:f8:9e:26:5c:1d:cb:a1:88:51:c1:8f:c0:a6:
fb:50:f5:cb:b1:78:f6:d5:63:1c:25:37:b8:c7:75:a1:e5:c8:
92:0a:48:b1:c2:91:6d:6a:7a:8b:e3:6c:04:f1:b0:28:d3:09:
84:42:18:35:4e:87:90:df:22:da:0e:f8:e3:24:49:60:1e:23:
99:2f:08:b5:d1:c8:c5:39:7b:f9:9d:88:33:b4:50:d1:97:2c:
6a:68:3c:4b:de:f9:56:9a:1c:0e:55:84:53:e0:f8:17:ab:c0:
af:97:f2:6f:51:69:d6:ab:bb:7f:49:b7:56:cf:c6:ab:da:59:
28:b9:ea:77:b8:7d:e3:d5:3b:fc:38:bd:ad:ee:3e:79:b3:de:
c8:51:fe:8c:10:51:c0:45:01:a0:8f:d5:e0:e3:0e:e0:77:b6:
c7:0b:98:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:31:26 2025 by rpki-client