Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/Q-X11fk2SOXGMIjDC7_lU9C6GN8.roa
File: Q-X11fk2SOXGMIjDC7_lU9C6GN8.roa (raw, json)
Hash identifier: FRoytGVyTsOxitFW7E1HZJuT1v46RsXLSQTsfbSUlXg=
Subject key identifier: 43:E5:F5:D5:F9:36:48:E5:C6:30:88:C3:0B:BF:E5:53:D0:BA:18:DF
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 14D0
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Q-X11fk2SOXGMIjDC7_lU9C6GN8.roa
Signing time: Mon 10 Feb 2025 14:35:18 +0000
ROA not before: Mon 10 Feb 2025 14:35:18 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131660
IP address blocks: 114.25.251.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Feb 2025 23:44:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5328 (0x14d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:35:18 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=43E5F5D5F93648E5C63088C30BBFE553D0BA18DF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:e2:93:ee:58:3d:0a:0d:3d:6b:24:be:6e:30:
ed:ba:5e:2f:54:b1:f6:28:c7:20:d9:09:9e:a5:cc:
9d:e1:c1:35:4d:32:dc:14:5f:05:8f:4a:b7:1a:bb:
c7:c4:48:f8:7c:ed:d8:3f:2c:df:3d:b7:96:06:55:
d4:77:3f:89:9e:b9:d4:78:a5:7a:93:de:fd:e4:7f:
67:16:97:86:57:81:0f:4d:85:e9:2c:e1:35:2b:85:
7f:b9:17:c1:15:b3:46:92:8f:ff:c0:eb:ba:9f:61:
7c:a3:ef:27:a3:64:e5:14:90:a0:22:6a:01:93:80:
0c:6b:c6:bb:22:d3:33:f3:cb:ec:42:48:c8:12:f9:
65:40:26:ea:bc:cc:16:33:5b:c1:71:24:f7:aa:49:
b9:95:e1:08:fa:07:5e:4e:bf:95:8e:73:13:22:3a:
40:5d:95:ad:fa:04:9a:61:46:56:e2:dd:08:29:3f:
39:ce:3e:e2:94:d8:17:a4:dc:3a:47:d1:bf:8c:f2:
91:73:d8:10:f4:96:7b:26:24:5e:8c:96:df:62:71:
86:7f:1f:30:ae:76:e0:8b:0b:eb:dd:a9:4b:65:54:
16:8e:b9:b1:80:1f:32:ca:36:0c:42:f9:3e:99:dc:
eb:e8:9c:ea:2c:8b:4d:97:1f:e7:f5:3d:4a:86:02:
5e:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:E5:F5:D5:F9:36:48:E5:C6:30:88:C3:0B:BF:E5:53:D0:BA:18:DF
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Q-X11fk2SOXGMIjDC7_lU9C6GN8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.25.251.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:04:6e:9b:66:cc:29:90:a9:82:72:b0:9d:61:70:2e:d1:36:
cd:6a:39:7a:ba:b5:fc:8a:6e:ce:26:10:91:b8:fa:a7:08:6f:
9c:0a:ff:92:2b:1d:71:48:59:2c:6a:e2:1e:2c:63:51:6f:5c:
4a:59:1f:51:f6:5c:b3:35:5b:b6:04:6a:a8:a0:bc:13:89:5f:
fb:9d:32:6f:bd:d4:ec:0c:71:8a:59:0c:69:f8:56:9e:e9:21:
29:5e:4f:be:ba:10:8a:40:6e:07:fb:6c:72:33:fb:a2:fe:8d:
a5:b2:05:93:41:67:3a:c4:f8:37:a6:9d:44:43:ae:15:b7:76:
52:a5:bb:a4:a3:4e:39:1d:eb:8e:fb:34:2d:40:4a:61:8d:b0:
67:ce:a1:8a:f5:ba:72:b0:d4:c2:80:98:a1:4c:f5:25:93:85:
bc:0a:23:0f:51:4a:36:f8:eb:e3:4c:23:5b:a0:b5:51:e7:f2:
0a:01:8c:fc:2a:58:9a:15:c2:a9:f8:c0:96:34:af:a4:bb:ac:
68:45:9d:fc:bd:e5:68:b9:de:62:03:79:e3:cc:4c:43:55:49:
89:d6:d0:94:1d:47:99:52:68:3b:bb:38:90:30:36:ae:da:99:
84:7f:3b:07:d8:69:e2:6c:d7:aa:fe:53:8e:2a:f1:20:70:61:
66:61:90:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:25:13 2025 by rpki-client