Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/NEPAKMyBFEg8H1kM5rjIfOBYKik.roa
File: NEPAKMyBFEg8H1kM5rjIfOBYKik.roa (raw, json)
Hash identifier: 300i7L8+FHRLjKeTBuBtScNvLUqJvCnvYIupDjfYX0o=
Subject key identifier: 34:43:C0:28:CC:81:14:48:3C:1F:59:0C:E6:B8:C8:7C:E0:58:2A:29
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 14F4
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/NEPAKMyBFEg8H1kM5rjIfOBYKik.roa
Signing time: Tue 11 Feb 2025 23:44:11 +0000
ROA not before: Tue 11 Feb 2025 23:44:11 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17421
IP address blocks: 42.64.0.0/12 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5364 (0x14f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:11 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=3443C028CC8114483C1F590CE6B8C87CE0582A29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:55:51:96:b5:10:16:71:57:3f:9a:ca:2a:08:
6f:01:07:d6:2e:4a:a5:04:c4:15:bc:24:71:1f:1b:
92:21:5a:cf:09:46:8b:e1:a0:d7:4a:46:8d:fc:e8:
ab:59:40:52:1a:93:f5:92:54:0e:ee:91:43:f0:67:
3d:ca:1e:dd:6a:27:4b:65:db:e2:ee:f5:63:b0:29:
0b:70:0e:d1:cf:f8:4d:d8:a1:79:07:33:41:1e:f0:
88:71:95:39:32:b0:5f:03:59:55:02:41:ab:32:fe:
d8:0c:29:ed:a3:30:7a:58:7b:01:48:5a:6b:1a:02:
94:c4:4d:8c:da:91:26:d1:f0:61:85:2a:dd:45:d3:
b9:2b:57:6e:68:7b:14:cf:d5:df:c9:2e:bb:9e:05:
95:41:11:ba:c1:00:49:ff:82:e6:d9:3c:8f:ec:b2:
7a:d1:21:f7:3b:67:d1:e6:54:c6:40:d8:93:49:b4:
69:88:4f:54:68:b5:d9:ea:30:95:58:41:21:18:59:
7b:d1:4f:2b:11:72:b1:ac:14:de:69:d5:2c:b6:14:
0d:35:63:17:c2:cf:14:b3:8f:67:a5:0f:57:77:a0:
62:3c:56:cb:85:3a:3c:73:05:77:5c:20:98:22:d7:
17:9f:d5:5e:57:e1:3c:6e:5f:8f:db:cf:c4:ce:01:
23:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:43:C0:28:CC:81:14:48:3C:1F:59:0C:E6:B8:C8:7C:E0:58:2A:29
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/NEPAKMyBFEg8H1kM5rjIfOBYKik.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
42.64.0.0/12
Signature Algorithm: sha256WithRSAEncryption
c1:6d:84:79:7a:da:c1:72:e2:cf:fc:4b:d2:87:2e:0e:6d:20:
ed:3d:22:9e:5e:84:a0:7e:d5:18:7c:0f:ec:26:b8:75:23:8a:
42:a5:ea:8e:2b:30:04:46:06:1e:07:6c:72:8d:91:e4:ac:ff:
ae:aa:0f:f5:2e:66:f3:21:f0:fd:69:cb:82:cc:34:40:0f:31:
a6:36:a5:e7:50:1f:63:4f:0d:5b:34:04:19:d4:59:bb:71:a7:
c8:b3:e4:ef:a0:bf:e0:e0:40:1e:4e:87:d1:4e:65:df:23:28:
ab:2d:bc:90:1a:24:ab:25:ee:a3:2e:a7:ed:6d:b4:48:cc:47:
da:d1:3a:b7:4c:64:03:cd:54:c1:af:58:92:82:20:64:17:57:
c0:5b:ff:a1:3f:23:60:cb:cd:ae:45:32:ba:1c:c9:fc:aa:aa:
a6:7b:4b:8b:34:46:85:ed:da:d2:42:8d:bb:7d:dc:74:7a:d2:
ba:d8:f3:9e:4d:e7:f6:98:3e:10:ae:c4:3e:82:67:ce:51:9e:
2c:8a:61:33:be:12:e8:a1:03:09:49:fc:a9:60:d7:20:02:fe:
f4:d9:88:56:5d:00:44:ca:ce:19:4c:98:f6:9b:76:10:69:99:
9c:4d:70:f5:46:6c:8c:7e:fd:b9:99:c5:31:4a:e4:58:ea:fd:
1b:18:81:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:24:50 2025 by rpki-client