Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/STQFwfdBCN5Xk1rTPcpLxQu6D-M.roa
File: STQFwfdBCN5Xk1rTPcpLxQu6D-M.roa (raw, json)
Hash identifier: Pl3/YLpi9u4oZfxlr4JWe54UA7+ZmeFnRAEMfKiMQpI=
Subject key identifier: 49:34:05:C1:F7:41:08:DE:57:93:5A:D3:3D:CA:4B:C5:0B:BA:0F:E3
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1493
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/STQFwfdBCN5Xk1rTPcpLxQu6D-M.roa
Signing time: Mon 10 Feb 2025 14:35:03 +0000
ROA not before: Mon 10 Feb 2025 14:35:03 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 142005
IP address blocks: 210.61.3.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Feb 2025 23:44:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5267 (0x1493)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:35:03 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=493405C1F74108DE57935AD33DCA4BC50BBA0FE3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:76:cc:35:e9:d8:0b:eb:3f:a4:a3:b8:3f:fe:
0f:b2:e1:8f:7c:e6:47:74:30:99:77:d3:1d:41:c9:
94:6a:70:18:58:5c:b0:e5:62:16:a2:91:c1:ef:fb:
fa:e1:af:38:a7:30:9d:ce:ca:ad:9a:75:2c:b8:0a:
1e:2d:10:f3:fc:d0:e9:69:5b:31:c8:e7:85:08:d7:
bb:f5:cd:3d:32:5f:f6:8d:f7:ef:6e:b1:63:e5:cc:
16:2e:da:91:73:c1:af:02:7c:1b:71:48:b6:08:a7:
5e:e2:7f:5f:0e:68:2b:e2:94:37:0f:8a:9b:c6:fc:
5b:c6:0e:41:8e:04:6c:1e:0b:1d:d5:e6:17:16:28:
54:18:8e:78:3a:3e:37:08:5c:c9:37:84:89:f4:68:
bd:d1:36:cf:55:ac:8d:fe:fb:80:ee:18:66:5d:bd:
b5:e2:f4:45:f1:db:93:f2:24:c5:b3:85:af:9d:4d:
9a:1f:24:b8:10:93:97:e6:5e:82:99:e5:54:23:e3:
7e:c1:c1:ea:c8:5b:57:23:78:70:6e:1c:34:8f:9e:
4e:8b:e3:db:42:86:03:51:3f:88:a4:9e:25:83:d2:
8b:a6:85:e6:1b:27:4a:17:4f:7d:61:30:ec:40:70:
c1:96:b2:32:60:d7:f9:e3:af:b5:51:b2:58:e0:f7:
c6:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:34:05:C1:F7:41:08:DE:57:93:5A:D3:3D:CA:4B:C5:0B:BA:0F:E3
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/STQFwfdBCN5Xk1rTPcpLxQu6D-M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.61.3.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:12:6c:ac:dc:2c:d2:f4:ae:81:58:4b:df:2b:57:fd:e3:b8:
df:d1:85:1a:5b:b2:e3:9a:20:76:cf:5d:1d:92:a0:c4:99:c1:
75:15:58:77:67:d3:61:84:66:c6:ca:cd:3d:c1:95:b7:5e:35:
51:a4:c1:ef:ea:0e:f5:2c:bd:20:63:b0:ce:95:89:70:1a:20:
63:db:e6:aa:4b:86:07:ec:a0:43:9c:95:89:98:8e:4c:8f:1d:
a6:c2:96:17:26:55:38:fe:5b:23:71:b5:94:32:90:e8:5c:84:
91:77:6b:0d:7c:e9:90:96:84:c7:11:b3:b8:6f:79:7c:cc:bd:
44:a1:18:94:77:c9:e7:4d:20:dd:eb:ee:97:79:2a:0d:8a:50:
72:01:eb:3e:69:0c:4a:95:e7:87:9a:06:41:92:6d:e5:76:83:
ca:75:a6:73:31:45:4c:44:a0:50:ad:ec:e0:a4:54:a9:e7:4d:
05:ab:43:17:7d:b6:a0:87:62:39:e7:4a:3f:b8:59:0d:64:99:
3f:39:fd:1e:b2:5d:37:90:03:ce:de:73:0d:98:f4:e8:40:ec:
e1:e9:d3:07:37:15:23:a2:81:ec:c1:db:0d:30:02:1e:7e:06:
62:aa:7e:8b:6f:dc:a7:b7:a7:8b:74:47:90:16:de:86:cc:7b:
aa:c8:ba:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:25:11 2025 by rpki-client