Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/SwzpDSDIeRqSzCGF4LbuRFui6dc.roa
File: SwzpDSDIeRqSzCGF4LbuRFui6dc.roa (raw, json)
Hash identifier: Iz1iMCVKJIxrPUBptrcbo9LDSDN2JlpCVPG3dKN6B1g=
Subject key identifier: 4B:0C:E9:0D:20:C8:79:1A:92:CC:21:85:E0:B6:EE:44:5B:A2:E9:D7
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 14AF
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/SwzpDSDIeRqSzCGF4LbuRFui6dc.roa
Signing time: Mon 10 Feb 2025 14:35:10 +0000
ROA not before: Mon 10 Feb 2025 14:35:10 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 203.160.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Feb 2025 23:44:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5295 (0x14af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:35:10 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=4B0CE90D20C8791A92CC2185E0B6EE445BA2E9D7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:dd:14:6a:29:06:a8:c2:8c:f1:da:24:a9:80:
46:a7:67:80:44:0f:52:dc:39:7a:f7:23:55:55:81:
4e:4d:8b:52:7d:5f:dd:2e:09:7c:fa:48:c2:73:f4:
ec:8b:17:3f:99:97:c5:da:86:20:74:fb:b3:b2:45:
cb:2c:e7:39:3a:3d:39:64:35:d1:f8:b3:05:c3:dd:
07:65:62:4d:f6:09:a7:17:36:b5:20:ae:be:f3:1d:
ad:ed:e6:57:7b:ce:b2:33:27:cd:1d:7f:80:5a:30:
66:4a:61:bb:a9:10:a7:5d:54:13:a9:72:5d:db:48:
69:00:9c:59:8e:c2:41:b5:95:b8:0e:7f:a1:13:0a:
fd:39:76:0d:2a:80:a7:f1:be:58:b7:8e:39:bf:d5:
03:28:e6:f6:c0:54:7c:bd:43:10:84:90:a5:17:27:
f7:b5:3d:f6:58:86:1d:85:64:dc:85:88:b0:0b:61:
80:b5:c1:c1:31:6d:af:64:dd:f4:5d:a0:56:cf:ce:
1a:96:5f:a7:fe:2c:58:e3:c1:bb:80:ea:ce:1f:a8:
76:22:b4:91:d7:fe:d6:a0:63:6d:f6:19:51:a0:4e:
b6:3c:29:3f:93:08:ed:32:63:96:d3:21:87:56:9d:
6c:67:d8:82:df:39:0e:e5:cc:d9:d7:ff:63:c1:78:
7c:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:0C:E9:0D:20:C8:79:1A:92:CC:21:85:E0:B6:EE:44:5B:A2:E9:D7
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/SwzpDSDIeRqSzCGF4LbuRFui6dc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.160.253.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:42:fc:cd:10:45:71:11:71:3a:71:cb:e6:14:a1:a5:60:f0:
89:f6:db:f4:cc:6f:99:52:1a:c7:05:d0:b8:e6:66:c4:c6:70:
8f:e3:4c:4d:1d:ca:25:36:37:90:ca:40:d6:b0:8e:bd:01:33:
72:84:40:4b:2b:71:46:ac:08:b0:a5:b1:92:48:94:25:30:28:
99:0b:f6:77:f5:0b:52:bc:43:24:63:ed:39:24:ae:bb:50:f6:
bc:6c:4b:1d:30:c8:87:87:cd:ea:03:20:10:81:61:b1:f8:47:
1e:98:10:2c:00:99:61:6c:74:5d:7c:3f:99:ed:6c:41:3c:3b:
28:36:f7:37:24:5c:4d:cf:07:45:5f:2d:57:b0:ad:ff:7e:ed:
ce:7b:b5:d7:a7:a8:69:9a:64:32:b9:d1:98:0c:da:c0:66:db:
91:dc:14:a2:42:dd:e6:13:09:e1:96:54:6e:ee:ba:e7:09:23:
09:5f:fa:08:ba:e3:41:d5:6c:65:47:81:8c:1c:14:d0:76:52:
62:0c:e3:f7:dd:be:9e:c5:cb:64:53:7a:cd:4c:a7:b4:63:42:
5a:2b:0a:78:17:53:f5:1f:fe:f3:bc:6b:ac:a8:0a:8c:55:48:
5d:9a:b4:47:d2:f6:42:bc:e1:e9:e7:f3:2d:b6:10:9f:88:7a:
a9:05:e3:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:20:23 2025 by rpki-client