Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/U8UeELabpzMkbesIuNME1UdUBtI.roa
File: U8UeELabpzMkbesIuNME1UdUBtI.roa (raw, json)
Hash identifier: tNkQW55UjZMobs/KTkzPxS5mmohilhXnlBhCAMCpJIQ=
Subject key identifier: 53:C5:1E:10:B6:9B:A7:33:24:6D:EB:08:B8:D3:04:D5:47:54:06:D2
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 159C
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/U8UeELabpzMkbesIuNME1UdUBtI.roa
Signing time: Tue 11 Feb 2025 23:44:47 +0000
ROA not before: Tue 11 Feb 2025 23:44:47 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9505
IP address blocks: 175.111.238.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:23:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5532 (0x159c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:47 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=53C51E10B69BA733246DEB08B8D304D5475406D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:03:dd:79:83:4b:d8:f7:d9:22:b7:76:c1:81:
d4:03:a8:13:a8:68:18:e0:2a:a5:e1:ff:0f:78:c2:
e9:6b:9b:e1:fe:f9:be:f0:04:73:a8:35:08:40:51:
8b:39:6f:d6:40:12:f7:53:1a:52:31:5b:2c:fb:5a:
d6:41:74:f1:53:95:38:5c:8e:7d:df:6a:e8:10:4d:
66:c9:73:00:5b:20:82:43:94:3b:7b:31:1f:c3:f6:
c9:85:b8:ec:c1:55:a5:bd:9c:4f:5a:e5:41:19:71:
8c:b8:9b:8e:0e:16:7e:44:2c:e5:ab:27:f6:3e:25:
35:c9:ff:1f:a8:c2:2e:ef:91:00:47:fe:8a:0a:8f:
ec:cd:34:62:82:d0:90:50:ad:17:82:22:48:d7:65:
bd:0c:4e:a6:de:85:2b:08:1d:c3:dd:20:94:a2:cf:
a7:76:ba:88:3f:08:b8:ed:5c:ad:92:3a:0d:de:51:
ad:65:5a:5a:f5:f8:7e:51:b8:f3:fc:75:02:c4:a7:
b9:03:c6:0d:8e:f4:c8:61:9a:89:a9:76:8b:af:02:
60:a5:77:e9:3b:07:87:58:40:a9:29:e1:d1:42:14:
3b:d0:ef:46:3a:af:90:f0:51:95:c3:7f:4e:9e:87:
4e:64:a8:88:84:88:dc:b2:06:1c:6f:26:24:95:41:
f1:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:C5:1E:10:B6:9B:A7:33:24:6D:EB:08:B8:D3:04:D5:47:54:06:D2
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/U8UeELabpzMkbesIuNME1UdUBtI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.111.238.0/24
Signature Algorithm: sha256WithRSAEncryption
d0:ea:4d:d4:4a:45:3e:df:12:7b:58:2f:35:8b:39:3f:d3:a8:
f4:24:8a:ad:1f:3d:0f:8c:28:e9:df:3f:1b:a7:92:39:fa:cf:
f2:66:67:5d:fd:96:53:e5:bb:df:f3:c2:cc:ea:06:27:66:49:
5c:14:21:e8:7c:59:c4:22:21:d1:8d:64:bf:a8:47:bd:60:c5:
6c:ed:d3:cc:d5:63:9e:1f:73:23:ac:a3:03:3e:ce:0f:54:ea:
ba:b2:0b:c2:0a:6a:7b:3d:71:f2:d4:00:10:b9:56:ea:f5:3e:
72:dd:26:2d:8e:ba:fd:8b:6a:b0:3d:7e:a2:7c:3f:f1:43:3a:
22:52:db:56:fc:88:08:aa:32:c4:e2:6f:b2:68:8b:ba:ef:7b:
e0:f2:be:e6:68:99:1d:ee:0b:87:96:8b:98:a6:84:d7:b5:49:
75:ba:46:1c:1d:4f:9f:eb:b5:ac:dc:e8:77:61:d6:93:2a:3e:
7c:98:2c:8d:82:c6:a6:2a:e6:43:1f:26:63:20:61:01:71:70:
c0:72:54:f6:7d:1d:e4:55:4d:97:cd:3e:aa:55:bd:c7:e5:2d:
ee:d7:ec:e9:60:28:af:06:9b:a0:ba:56:63:7b:2f:2a:3f:58:
b5:3b:a4:6e:f9:35:bb:86:3c:92:aa:17:ef:c7:8a:1f:3c:5d:
73:7a:b6:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:30:18 2025 by rpki-client