Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/R5817B_E2h9-Qx6tGUr7rqaguXc.roa
File: R5817B_E2h9-Qx6tGUr7rqaguXc.roa (raw, json)
Hash identifier: 8eRd/UA+fKjhkCKNAEQ7QgD48GMKF9uiXD/nvSXkTFE=
Subject key identifier: 47:9F:35:EC:1F:C4:DA:1F:7E:43:1E:AD:19:4A:FB:AE:A6:A0:B9:77
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 11CE
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/R5817B_E2h9-Qx6tGUr7rqaguXc.roa
Signing time: Mon 26 Aug 2024 05:17:57 +0000
ROA not before: Mon 26 Aug 2024 05:17:57 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 211.20.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:35:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4558 (0x11ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 26 05:17:57 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=479F35EC1FC4DA1F7E431EAD194AFBAEA6A0B977
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:0b:60:c6:40:0d:c9:13:5e:43:47:01:f6:cd:
15:90:79:59:df:5b:30:65:b1:ad:44:2b:9d:06:90:
00:57:54:50:49:aa:f6:dc:d9:25:33:b5:b0:ab:37:
b7:6a:ba:50:cc:04:b9:da:d2:30:5e:da:3d:33:47:
a8:9a:b2:06:0b:d5:a3:a2:dd:b8:c9:a4:b2:d8:0d:
f0:1d:17:3a:54:b3:f8:e6:08:a0:67:f5:f9:d0:c5:
88:65:0e:5a:0c:24:83:73:b2:87:3e:19:40:c0:21:
1f:00:b2:12:85:d4:2a:c9:bd:79:e1:26:5c:9e:e2:
73:59:85:6b:c6:6c:17:07:c7:85:7c:f3:cf:26:23:
d2:7d:3a:58:99:f1:5e:66:6c:c7:10:2c:da:e8:29:
e2:99:c0:6d:6c:62:30:19:1d:80:1a:9a:c6:2a:11:
28:c8:04:1d:10:dd:79:b5:bc:71:cb:ae:58:d1:f6:
93:73:d6:ed:31:0a:42:ac:0f:f5:36:40:9e:78:f9:
6c:8b:8d:67:35:7d:6f:5e:d4:07:c4:af:98:cc:f3:
53:1d:eb:79:15:6c:4f:ac:6e:12:b0:a4:47:58:ae:
d0:32:ad:68:a1:84:ab:a2:d4:ff:8f:4e:35:a5:1d:
8c:2a:a3:34:06:bc:54:63:7d:8b:92:f6:64:a8:fe:
8c:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:9F:35:EC:1F:C4:DA:1F:7E:43:1E:AD:19:4A:FB:AE:A6:A0:B9:77
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/R5817B_E2h9-Qx6tGUr7rqaguXc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.20.0.0/16
Signature Algorithm: sha256WithRSAEncryption
8c:83:7b:79:74:90:cb:9f:a9:b0:cb:e1:a9:94:7f:8d:cc:56:
19:3d:1b:99:c4:c3:87:ec:91:18:c6:5b:70:f7:30:0b:55:be:
8b:5f:16:85:88:9a:f8:ca:ba:00:e9:d8:fd:8a:f1:7e:38:72:
e5:a9:60:bb:8a:bd:24:b5:1b:e0:37:6d:66:23:98:f3:2e:9e:
16:c7:b8:84:34:ee:3f:3e:d6:26:1e:8f:21:ee:22:fc:83:f0:
f7:95:99:e0:25:1c:72:7d:84:17:42:3f:8c:a8:1d:ef:5e:02:
5f:8d:4d:8e:9a:04:65:1e:47:95:36:57:76:c6:cf:96:d2:a0:
c1:a5:fe:47:57:37:8e:d5:ec:1c:15:14:7b:bd:f5:c5:7c:91:
b4:27:3f:0e:9a:5f:d6:9d:88:1c:c8:ff:e4:2d:12:f9:8b:8a:
d6:da:d5:ac:52:be:d5:34:02:09:54:83:81:b5:89:17:6e:5f:
42:4a:d4:8b:78:d6:0f:b7:85:06:92:fd:63:fc:27:e9:51:1c:
c6:d8:d7:8a:b0:67:e0:c0:8a:b4:77:83:07:1c:fa:a2:84:9e:
d6:56:5a:0c:aa:84:74:29:b8:40:2b:cd:1f:9d:d8:61:9e:2a:
d1:0f:16:e6:6e:12:af:d0:c4:77:98:88:5e:a4:03:16:40:ab:
46:23:04:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:31:15 2025 by rpki-client