Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/UC_L4JUBKehKhaKH0550adS5rv0.roa
File: UC_L4JUBKehKhaKH0550adS5rv0.roa (raw, json)
Hash identifier: I5S7nouQMfiaMCSkI7NGbLGoMXJIe2X7a7oEDjnlm3c=
Subject key identifier: 50:2F:CB:E0:95:01:29:E8:4A:85:A2:87:D3:9E:74:69:D4:B9:AE:FD
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1575
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/UC_L4JUBKehKhaKH0550adS5rv0.roa
Signing time: Tue 11 Feb 2025 23:44:40 +0000
ROA not before: Tue 11 Feb 2025 23:44:40 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 125.232.0.0/15 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5493 (0x1575)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:40 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=502FCBE0950129E84A85A287D39E7469D4B9AEFD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:30:29:4e:df:cd:11:ff:3e:32:58:bf:44:0f:
20:57:38:c5:9d:78:f8:6f:6e:21:1e:8d:08:39:8e:
71:e1:5a:e2:41:3c:fc:47:ef:65:9e:70:58:3f:1f:
d8:45:c6:0f:b4:03:05:6d:f8:1e:6d:cf:ac:c3:a8:
9d:dd:d2:75:3d:23:ae:fd:7a:13:b7:95:7b:83:eb:
aa:d2:88:53:4f:e4:ea:a1:93:b8:a1:b6:1d:1c:c4:
40:8f:42:7f:6d:cb:02:8d:a1:21:ee:93:a1:51:cc:
f7:8d:30:fc:ce:71:f3:12:cf:c4:e1:c3:44:d4:08:
89:ab:8b:5d:5a:86:39:4e:cd:73:e6:7c:15:97:e0:
2a:b4:c3:5f:a1:9a:a6:c0:09:6c:a4:ca:66:68:db:
d7:f9:db:19:66:2f:76:d7:93:fe:95:2a:b3:e8:63:
9b:70:8e:4e:72:a3:9b:76:ab:70:1b:9c:9b:29:00:
38:7a:5c:89:92:b1:2b:c2:3c:8a:bd:52:68:ca:bf:
94:c7:5a:91:de:d0:61:bf:d0:b3:c3:f8:4b:27:1f:
9a:93:c0:8b:2e:a9:1b:67:c6:06:37:a4:68:4d:64:
6a:64:61:02:d5:68:43:af:e8:7d:3d:57:ec:25:82:
14:5d:b7:0d:97:43:ea:dc:30:85:b4:0a:96:27:31:
5c:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:2F:CB:E0:95:01:29:E8:4A:85:A2:87:D3:9E:74:69:D4:B9:AE:FD
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/UC_L4JUBKehKhaKH0550adS5rv0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
125.232.0.0/15
Signature Algorithm: sha256WithRSAEncryption
43:2a:91:4a:5c:c0:b1:1b:41:00:50:8e:d9:a2:81:6d:12:a3:
36:0f:3b:5b:1a:fb:f3:06:6f:9f:5f:3a:46:ca:e6:00:e7:cb:
ba:6a:ea:b8:2b:52:e7:a0:45:cb:b1:bf:bb:d4:4c:45:a4:b5:
62:15:0b:5f:7a:e8:87:c5:22:14:44:41:86:84:59:c4:e5:c9:
4c:a0:aa:96:7d:4a:e8:1d:f8:36:12:95:92:19:ec:b6:82:8c:
02:93:f5:4b:22:54:83:be:2e:45:2c:0e:ad:a6:25:66:86:bf:
d1:51:56:8b:4d:84:dc:7b:96:e1:0c:1d:ba:c1:a8:2a:54:2f:
67:1b:46:3a:50:02:5b:9d:0b:7a:e5:4c:9c:5b:1b:03:d2:a2:
64:23:98:6b:49:92:de:45:fd:d4:08:5a:64:41:2f:ab:5f:0d:
24:ce:10:e3:ca:2e:c3:ea:07:76:b3:de:7b:8d:2e:a0:b2:f2:
f9:67:3c:c1:f2:be:64:50:07:58:90:ba:f7:0c:c2:74:7a:b9:
48:37:1c:60:17:11:43:bc:aa:3b:ae:49:42:c4:a0:d0:6e:c8:
05:67:25:6f:f1:2b:f7:d6:12:31:72:3b:2e:8d:e9:45:99:92:
3a:57:76:ce:58:1a:f0:40:5f:a8:0b:de:89:8a:b2:1e:37:17:
f3:92:f5:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 17:20:03 2025 by rpki-client