Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/TxheMymb0eCNJWLYqWyMfWuRvSA.roa
File: TxheMymb0eCNJWLYqWyMfWuRvSA.roa (raw, json)
Hash identifier: eag36XdrlK5isd4uBKQm4YxWuzw1Wq4FdMlrkOaUJII=
Subject key identifier: 4F:18:5E:33:29:9B:D1:E0:8D:25:62:D8:A9:6C:8C:7D:6B:91:BD:20
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1442
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/TxheMymb0eCNJWLYqWyMfWuRvSA.roa
Signing time: Mon 10 Feb 2025 14:34:45 +0000
ROA not before: Mon 10 Feb 2025 14:34:45 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17714
IP address blocks: 203.78.190.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Feb 2025 23:44:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5186 (0x1442)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:34:45 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=4F185E33299BD1E08D2562D8A96C8C7D6B91BD20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:68:ae:ac:d9:c5:33:2c:63:aa:92:ca:22:f8:
4f:b5:d1:5a:fd:b2:d4:92:e2:d3:17:c0:48:20:c5:
ac:dd:bf:9e:ff:2f:01:19:d7:f7:b0:af:33:e3:33:
23:c4:43:67:17:c9:ed:5a:f4:ce:2c:ea:9d:5d:de:
36:d3:f1:c3:08:44:72:8b:71:d9:94:7f:a9:92:f3:
96:e8:c9:4b:22:38:8d:de:6f:9e:11:d1:35:3c:39:
47:ce:79:b6:3c:e5:9c:e4:46:9e:2d:71:98:0e:94:
31:58:41:f0:92:19:86:f5:9c:36:2a:84:b0:e2:65:
e3:13:9f:e7:0a:d6:a0:c1:b1:42:34:67:31:a4:d5:
bb:a4:30:23:d8:91:43:82:2b:94:dc:9e:57:16:1c:
bb:bf:32:d8:83:a7:46:7d:e7:3b:2b:aa:40:3c:c4:
72:62:04:b9:8e:63:96:28:c0:ba:cc:93:6a:cf:a1:
5c:d5:dc:42:9a:c8:e0:e9:2a:38:1f:b5:08:1a:f4:
78:24:49:7a:cc:51:62:e5:01:55:d9:04:c0:df:7e:
e6:a2:bc:fa:4f:e5:f4:88:7c:2c:a3:d2:7a:36:e6:
98:c9:84:49:28:ee:8d:78:82:f7:f6:4c:93:2d:d0:
27:60:61:e4:6e:65:04:50:43:8f:fc:ba:94:10:6d:
bc:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:18:5E:33:29:9B:D1:E0:8D:25:62:D8:A9:6C:8C:7D:6B:91:BD:20
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/TxheMymb0eCNJWLYqWyMfWuRvSA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.78.190.0/24
Signature Algorithm: sha256WithRSAEncryption
79:9f:73:75:13:99:07:16:32:04:4c:ec:3e:d7:a7:2f:d7:3d:
f1:1a:69:c2:5e:84:c7:83:2a:26:b4:b0:37:0f:07:c1:5a:1b:
5c:02:e4:89:11:75:84:35:c8:6c:ed:e4:b9:23:ab:e7:56:28:
ee:29:49:3b:4d:40:86:c6:09:aa:18:1f:0b:49:31:1b:ec:b1:
8b:a1:77:37:09:a3:b6:ef:c7:de:01:15:56:e5:11:42:fb:b3:
73:c3:03:02:08:13:ca:af:55:87:b5:3d:72:e1:df:e8:74:f8:
b9:1c:ac:e2:6e:3c:63:83:76:45:3d:ff:d0:13:16:1f:bd:9e:
f9:24:6b:05:19:86:94:f0:df:f1:39:3a:2e:65:2d:69:22:6a:
ba:25:3c:31:4b:52:7b:f1:cc:7c:65:d5:57:38:68:f4:44:e2:
c8:37:84:65:a5:89:9f:1f:1c:ef:84:bd:bb:f3:8e:0f:38:a5:
07:b1:a5:79:04:83:ba:a5:8d:02:17:08:fe:60:f8:b2:db:ff:
9f:7a:dd:c6:02:22:0c:78:9f:b7:40:33:7d:7b:66:da:ac:f4:
4e:73:a1:39:14:db:d3:dd:ea:f6:b5:c9:c0:51:0f:b9:73:75:
cc:ab:f7:c2:03:07:92:6d:6e:a5:3a:44:a2:27:59:97:27:da:
b0:ca:ce:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 17:21:45 2025 by rpki-client