Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/MLuha4q63yeHnJHgx9u4eZdWwUY.roa
File: MLuha4q63yeHnJHgx9u4eZdWwUY.roa (raw, json)
Hash identifier: y+Ks+i7CbiiMtf6fxpcdJVWMjsYhVi5E3xtDWO8A0Ow=
Subject key identifier: 30:BB:A1:6B:8A:BA:DF:27:87:9C:91:E0:C7:DB:B8:79:97:56:C1:46
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 11F2
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/MLuha4q63yeHnJHgx9u4eZdWwUY.roa
Signing time: Mon 26 Aug 2024 05:18:05 +0000
ROA not before: Mon 26 Aug 2024 05:18:05 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17421
IP address blocks: 114.136.0.0/15 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:36:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4594 (0x11f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 26 05:18:05 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=30BBA16B8ABADF27879C91E0C7DBB8799756C146
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:0d:a8:c4:4d:9d:cb:96:78:12:ad:22:36:77:
b1:96:ad:e3:a4:39:72:6c:75:f1:5e:7b:36:8d:cb:
f8:80:23:dc:cf:2b:67:7c:a5:fc:02:e2:6f:ec:b8:
01:57:28:12:2e:34:43:89:f6:19:6d:ad:aa:e5:de:
4a:49:60:ac:72:c1:04:8c:c5:10:fb:c4:aa:31:fb:
ce:7a:2f:b3:36:ac:ff:ce:c6:e3:92:0e:07:0a:3c:
fa:b4:52:f1:3c:30:75:7c:5d:13:2a:c0:31:b4:f2:
86:be:99:bd:3c:b8:06:ba:e7:f1:bf:1f:91:2d:e7:
4f:95:fb:40:f0:3e:5b:f5:14:5e:e6:52:81:05:0f:
7f:df:89:e4:ec:05:a0:c0:14:b0:59:5c:ee:b6:54:
0c:32:23:9a:fc:fc:b8:90:56:48:24:a9:f2:37:ea:
bc:ee:47:06:33:7b:0c:f3:8f:92:81:08:a2:af:fc:
98:8c:5e:91:ed:42:f8:ed:dc:e8:79:55:68:54:a6:
69:74:1b:58:00:a8:53:5c:df:4b:24:33:a9:68:1a:
af:c0:67:3a:a5:14:5f:29:89:99:b0:ba:21:5b:3d:
c9:25:c1:34:eb:4a:e0:b3:74:a1:7e:5a:07:23:20:
80:75:0e:54:a3:7d:8c:41:54:16:83:43:16:bf:e5:
12:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:BB:A1:6B:8A:BA:DF:27:87:9C:91:E0:C7:DB:B8:79:97:56:C1:46
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/MLuha4q63yeHnJHgx9u4eZdWwUY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.136.0.0/15
Signature Algorithm: sha256WithRSAEncryption
a5:89:df:55:c3:36:9f:7c:02:14:b1:c8:d2:82:31:26:13:4d:
d6:a3:aa:90:5e:15:b4:64:2b:a2:e2:13:a2:34:e5:ef:68:0f:
77:fb:e7:1b:2c:a4:01:bd:38:b2:f3:c2:28:60:02:f5:66:98:
02:dc:f6:e7:9a:aa:96:98:25:54:6e:24:fe:55:e1:fc:09:41:
1d:d7:be:3a:92:cc:03:4f:2d:ef:87:29:ae:86:76:60:c9:d1:
d5:34:d7:6c:1f:18:bd:4a:e5:db:d3:43:96:8c:65:0c:73:81:
5e:41:e9:d8:f9:3a:66:fb:aa:d6:dd:03:a6:fb:79:71:b4:a1:
fe:42:09:c7:91:18:bc:ad:1e:b1:b2:57:6c:67:e6:de:51:13:
c0:36:c0:0a:d1:e5:e2:1f:80:f3:5f:d2:ab:c8:0d:2d:6e:be:
3f:7e:cc:af:ac:74:b2:e7:00:94:11:8b:c5:48:52:4f:07:6a:
de:a8:2c:20:8c:16:37:8e:f2:d3:b5:6d:1d:bc:ca:d5:62:00:
ad:5f:9b:4b:a9:08:60:77:4a:9c:c5:c0:68:88:69:52:3a:77:
97:dd:11:fa:11:26:c9:3d:c8:3f:0a:07:a5:b6:c5:4b:86:36:
96:6a:1b:96:60:7f:17:f9:d5:8f:d4:4c:68:2c:24:56:5d:bc:
1b:f4:c3:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:21:48 2025 by rpki-client