Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/V7C9mBDE5sy9R2LW1gVvtgA1Mi4.roa
File: V7C9mBDE5sy9R2LW1gVvtgA1Mi4.roa (raw, json)
Hash identifier: WxJFagSJXn43tqxNIqP6JoV9F6HxMk6BuBSECnyKKP4=
Subject key identifier: 57:B0:BD:98:10:C4:E6:CC:BD:47:62:D6:D6:05:6F:B6:00:35:32:2E
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1581
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/V7C9mBDE5sy9R2LW1gVvtgA1Mi4.roa
Signing time: Tue 11 Feb 2025 23:44:42 +0000
ROA not before: Tue 11 Feb 2025 23:44:42 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 211.23.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:23:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5505 (0x1581)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:42 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=57B0BD9810C4E6CCBD4762D6D6056FB60035322E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:f9:77:4b:45:e6:90:8a:06:0b:39:9a:b0:59:
eb:f1:d1:79:25:e8:81:8e:0d:72:1b:66:62:dc:2c:
b2:0c:4c:fc:4d:64:e0:36:ad:2f:41:78:d3:18:d6:
3b:16:c4:5c:7f:a5:c7:49:15:c8:01:25:6f:09:1d:
3a:7d:a5:bf:5f:b4:11:9e:5e:56:b6:ca:1f:0f:44:
ce:36:49:90:25:e6:69:3c:ad:ba:fd:18:41:d8:8d:
7e:f0:e6:b0:b0:bf:9d:ac:f1:b8:16:15:95:48:6d:
42:52:e1:6f:5c:87:f2:16:c7:cb:d6:18:cd:b8:b3:
6e:1e:7e:0b:6c:50:4a:0e:be:ef:46:13:6e:92:b1:
88:57:66:00:1b:ec:5e:6f:fd:56:bb:8a:3a:e7:26:
28:24:d0:c4:b8:41:9a:b7:5c:07:5f:b1:fc:4e:19:
f1:b2:73:bc:55:b8:47:e4:dc:26:67:a7:b7:f5:76:
1f:72:4f:63:11:80:78:e1:fe:c4:0c:ce:b7:6d:f7:
0a:87:c4:1f:6c:80:f5:2a:5c:0d:17:eb:f7:d0:3f:
10:a6:91:be:e6:28:88:a1:8c:99:20:ea:df:63:3e:
75:23:cb:5f:cb:91:79:08:31:dd:22:50:fc:12:87:
47:11:5e:65:99:cf:bc:48:93:d1:22:26:69:d4:87:
86:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:B0:BD:98:10:C4:E6:CC:BD:47:62:D6:D6:05:6F:B6:00:35:32:2E
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/V7C9mBDE5sy9R2LW1gVvtgA1Mi4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.23.0.0/16
Signature Algorithm: sha256WithRSAEncryption
50:3f:54:c6:da:bf:4c:fa:e8:12:b4:36:dd:c1:34:96:1d:52:
85:b7:63:8a:5b:86:59:5c:2e:a2:71:0f:c9:d2:27:03:57:a4:
8c:08:f9:64:c5:81:ec:cf:03:9b:55:fe:73:a8:da:e2:cf:8b:
84:4b:1c:21:5c:93:7d:0f:4e:60:7f:d8:a4:db:cc:32:09:b7:
de:39:ae:dd:33:19:13:83:22:b4:53:6a:50:b6:a7:76:0c:74:
02:cd:e3:e7:58:f3:d9:ef:9b:6f:0c:84:f4:ea:c2:c8:e1:46:
65:67:ca:dc:11:9c:d5:ca:3c:37:12:bb:e4:c0:08:6e:b3:77:
ab:70:d3:9b:2b:b9:06:88:2d:f8:50:eb:21:5f:fd:dc:8a:57:
90:8e:36:0d:ee:9f:69:dc:1e:a7:df:0b:7f:b1:6e:29:2b:cf:
c9:62:a2:5f:84:32:a9:71:01:a6:39:b2:09:0b:89:bd:dc:dc:
7a:e4:21:67:8b:22:ea:84:cf:06:2e:7e:64:20:c0:9e:2e:6f:
ae:ca:56:38:54:db:61:ee:ec:57:ab:27:6c:79:75:cd:9b:18:
43:96:42:e2:95:ef:ba:5e:dc:36:a2:3a:d8:f3:bf:75:8f:04:
43:4b:4d:15:ba:fb:26:b7:09:49:0c:02:81:3f:d4:e6:e6:19:
ff:0e:e2:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:45:12 2025 by rpki-client