Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/OWtagJKHWgmbljmvNvCkwS7PGQk.roa
File: OWtagJKHWgmbljmvNvCkwS7PGQk.roa (raw, json)
Hash identifier: E/nTJ54UfhvObqyzeT68OXyluhIyXwwDTEOt/XdNuNM=
Subject key identifier: 39:6B:5A:80:92:87:5A:09:9B:96:39:AF:36:F0:A4:C1:2E:CF:19:09
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 125C
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/OWtagJKHWgmbljmvNvCkwS7PGQk.roa
Signing time: Tue 15 Oct 2024 08:18:23 +0000
ROA not before: Tue 15 Oct 2024 08:18:23 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9505
IP address blocks: 175.111.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 12:51:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4700 (0x125c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Oct 15 08:18:23 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=396B5A8092875A099B9639AF36F0A4C12ECF1909
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:df:7f:d4:b8:05:10:44:64:7f:19:8d:96:c6:
71:e1:56:78:94:a1:6e:f3:a3:3e:89:b3:9a:2b:dc:
2d:2c:5b:28:7a:4f:c5:58:02:8b:72:0f:0c:d8:79:
a0:73:fd:80:b4:04:41:d4:fa:2b:5a:e6:b0:14:fb:
d4:3d:0c:83:c9:c8:71:81:22:13:c9:63:a4:a7:64:
c1:1e:ef:0b:e3:c3:13:c5:9f:a5:57:da:94:03:20:
b9:44:19:95:60:28:42:e9:a3:85:18:e3:d2:73:a1:
04:93:71:d2:45:96:db:b5:dc:33:14:22:d3:93:cb:
05:9b:fd:e3:c1:9b:e8:4b:13:0a:a1:e8:4e:ab:5a:
3b:87:ad:f3:58:56:4a:f1:1b:fc:30:6a:cf:14:c7:
80:20:21:a3:1f:89:01:60:86:00:ed:a9:dd:47:72:
28:f9:ed:20:07:57:ec:0f:bd:66:e3:07:2b:c0:49:
ad:15:a0:03:2f:39:d8:34:92:13:08:4b:b2:35:c8:
bc:06:da:69:1f:c8:58:57:f4:31:3d:47:c3:8e:18:
90:16:a9:e9:05:17:00:a2:88:f4:20:d7:01:4c:c9:
b1:9c:1f:4d:eb:d4:68:21:b1:aa:f4:0e:bc:7a:f5:
e2:e4:56:eb:6e:93:ac:52:48:6c:c1:ee:d0:84:ea:
bb:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:6B:5A:80:92:87:5A:09:9B:96:39:AF:36:F0:A4:C1:2E:CF:19:09
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/OWtagJKHWgmbljmvNvCkwS7PGQk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.111.239.0/24
Signature Algorithm: sha256WithRSAEncryption
06:83:b7:e1:8c:ad:65:03:45:88:a0:7e:7d:0c:9e:41:a1:37:
23:2c:15:22:9c:db:18:28:da:17:fa:04:9c:3c:03:e3:3c:d6:
85:ce:51:d3:9c:6b:5f:bd:92:0c:82:c9:03:f9:47:10:eb:97:
3c:fb:bd:82:8c:40:d7:4b:b5:cb:51:ac:b4:7d:fa:6d:fb:8c:
92:98:6d:16:0e:6d:56:19:d2:37:5d:31:99:0f:68:50:7b:1b:
4d:b6:93:58:32:6f:cb:c7:ce:ee:4e:c9:3d:78:39:66:56:6e:
4d:97:b2:ad:3e:98:c5:68:6e:66:c9:4a:b8:da:e0:3e:7e:11:
ca:8f:31:44:d0:48:0c:1e:02:0f:57:35:46:7b:41:95:70:d6:
0a:fd:a9:a4:ca:bc:40:d9:ae:07:af:57:6c:04:9c:38:4d:55:
d7:43:e3:e1:68:62:04:7f:9e:6f:dc:f6:20:8d:fc:44:51:5d:
09:3c:98:67:f0:92:4c:f1:89:0e:37:4b:a7:ce:6a:14:c2:4d:
e8:ba:40:10:69:0a:63:6b:c4:19:e5:bb:7f:d9:82:78:2c:4b:
8e:79:17:1d:b6:99:27:6f:21:79:d2:30:76:30:e9:86:74:97:
5a:90:12:3f:28:0b:e4:7c:11:3b:c0:16:50:57:9d:69:54:40:
59:f1:ef:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:21:05 2025 by rpki-client