Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/Lu6tmwyXkk_IlE4-Aw3Fz_AtJDE.roa
File: Lu6tmwyXkk_IlE4-Aw3Fz_AtJDE.roa (raw, json)
Hash identifier: +qXj0nLbsur2VRcTcYKbGRCe6WtqJ8osIOzYlnWuKK8=
Subject key identifier: 2E:EE:AD:9B:0C:97:92:4F:C8:94:4E:3E:03:0D:C5:CF:F0:2D:24:31
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 144E
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Lu6tmwyXkk_IlE4-Aw3Fz_AtJDE.roa
Signing time: Mon 10 Feb 2025 14:34:48 +0000
ROA not before: Mon 10 Feb 2025 14:34:48 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 114.30.44.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Feb 2025 23:44:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5198 (0x144e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:34:48 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=2EEEAD9B0C97924FC8944E3E030DC5CFF02D2431
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:03:71:1e:0c:39:df:d5:7d:5e:ac:53:f1:1d:
d1:e5:51:7f:6b:44:c9:d1:13:c0:c8:c1:58:bd:34:
71:c1:b4:c0:57:b9:a3:e2:2b:d0:78:38:46:76:2a:
e3:c8:2f:0b:6a:7f:7a:42:2f:18:8b:cb:ad:ab:66:
5e:b0:7e:f6:ed:0e:6e:91:34:e8:03:11:0e:82:b1:
5c:b6:ab:62:99:7c:7c:76:2f:22:bd:aa:84:4c:be:
df:5a:86:13:58:5e:ed:c2:0b:53:54:2b:ff:47:1e:
a5:2c:b6:a7:3c:ec:2d:6e:1c:85:8e:00:c8:ec:e9:
6c:86:a5:f5:c2:90:7e:60:11:98:87:80:70:a6:03:
55:f8:f1:5d:53:75:7a:07:1d:f6:92:26:51:81:36:
18:69:fd:6d:e6:4c:34:07:c7:15:7f:c9:77:25:70:
cf:80:58:e3:8c:9b:4d:14:81:a0:69:18:cc:13:df:
17:8c:99:fb:bb:06:82:9d:05:e6:54:ae:34:92:e1:
77:14:ee:02:2b:7a:83:92:54:fc:71:df:60:1e:87:
45:a0:80:5c:cc:1d:5d:09:4e:ee:53:fc:69:a6:63:
33:d5:f9:87:fe:a8:25:49:2b:1d:7b:88:74:93:f9:
b7:a1:d2:cf:28:b8:6e:92:5d:7a:e0:b8:72:76:00:
f4:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:EE:AD:9B:0C:97:92:4F:C8:94:4E:3E:03:0D:C5:CF:F0:2D:24:31
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Lu6tmwyXkk_IlE4-Aw3Fz_AtJDE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.30.44.0/24
Signature Algorithm: sha256WithRSAEncryption
29:d7:82:9d:35:9b:c6:78:97:df:9c:2b:96:cc:07:fa:e1:46:
07:39:a3:e1:d1:ac:a7:4c:5f:cb:bf:62:5e:79:da:5d:42:ed:
95:c8:7f:aa:75:51:7d:56:91:5a:14:34:16:87:b8:26:2b:1b:
0c:95:68:e5:2e:70:4b:1c:20:62:4b:1a:1b:bc:d0:a9:e9:60:
02:99:6d:9f:de:25:2c:a8:78:f6:f1:d6:58:74:81:99:40:b7:
da:62:27:c9:65:d9:ec:52:fb:9e:f9:e7:be:36:e7:92:4f:05:
53:a3:42:77:79:b9:ed:64:9a:92:20:e4:e7:c0:d1:17:a6:34:
20:98:3f:a4:54:8d:35:66:b0:f1:8a:37:1d:cd:fa:68:9b:f7:
09:c3:56:78:79:d2:41:65:52:f0:f6:7d:59:bb:1d:4a:04:62:
52:44:4f:51:0d:7b:db:e1:d3:b8:14:4a:3a:27:ab:62:85:1b:
3c:41:87:5e:2c:1e:2b:f1:9e:1f:e2:18:a1:fd:0f:86:e2:98:
ff:31:a6:51:bc:e6:e2:e4:fd:5c:7c:6e:42:8b:53:74:86:93:
e0:5f:87:ab:8e:5a:7d:74:8d:40:e3:7b:a8:d0:60:6e:82:b7:
cd:87:95:6b:0a:ac:7a:7b:c1:1b:bb:fc:2b:94:d5:34:05:86:
44:a4:a8:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:29:36 2025 by rpki-client