Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/VJnyYvG7yHIUmuezdaBm-7iX39g.roa
File: VJnyYvG7yHIUmuezdaBm-7iX39g.roa (raw, json)
Hash identifier: rIpVczsVq1OTE5VUSx3fE58drBOfIASudTToxnbd4VM=
Subject key identifier: 54:99:F2:62:F1:BB:C8:72:14:9A:E7:B3:75:A0:66:FB:B8:97:DF:D8
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 11A1
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/VJnyYvG7yHIUmuezdaBm-7iX39g.roa
Signing time: Mon 26 Aug 2024 05:17:45 +0000
ROA not before: Mon 26 Aug 2024 05:17:45 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17421
IP address blocks: 111.80.0.0/14 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:35:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4513 (0x11a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 26 05:17:45 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5499F262F1BBC872149AE7B375A066FBB897DFD8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:34:4a:9b:26:76:29:f7:fd:d1:6b:d3:8a:a4:
8d:0e:ad:0f:cb:fc:92:d5:2f:8a:04:d9:56:0f:ec:
73:15:07:4a:a7:81:e8:9f:28:7f:1b:bf:d3:1b:ff:
51:28:1d:10:a7:22:d9:93:81:0f:5e:2d:2f:77:2d:
5c:c1:aa:ca:7d:0a:59:17:61:41:a2:52:5c:bd:1f:
50:d3:1a:3e:f7:62:4b:ce:43:39:f3:29:bc:e3:df:
ad:8a:cf:3b:6e:7f:6f:58:ec:3b:8c:38:db:e6:fc:
f2:4a:06:f7:df:25:80:e3:00:c9:9b:89:f0:f6:00:
91:18:c7:ec:6e:37:f9:44:4a:58:b6:bf:da:32:cc:
61:2b:e9:47:96:1f:9c:d6:42:7d:bc:c9:cc:86:95:
e4:b1:4d:e2:25:6e:86:9a:70:7a:53:b5:81:87:b9:
ef:36:01:0f:af:46:94:3f:cd:21:75:87:9c:46:27:
47:fb:b6:b4:45:2b:9b:7c:2f:f8:60:07:12:42:8b:
90:40:0d:89:46:44:d2:6d:33:48:1a:bb:e4:1c:b1:
54:0e:e0:56:c6:70:49:fe:c1:3f:a8:37:39:ff:49:
bd:55:96:64:c7:8a:ed:3a:ee:b7:db:2a:67:15:7e:
c3:d9:92:f7:49:f8:b5:2a:b4:33:f3:27:5c:5c:3d:
a5:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:99:F2:62:F1:BB:C8:72:14:9A:E7:B3:75:A0:66:FB:B8:97:DF:D8
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/VJnyYvG7yHIUmuezdaBm-7iX39g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
111.80.0.0/14
Signature Algorithm: sha256WithRSAEncryption
5b:0a:8c:ef:fd:cd:9f:1a:d5:5d:2d:e7:30:74:36:04:ae:03:
cc:66:37:7f:f4:73:1f:ea:a2:bc:97:1a:f7:31:67:52:0a:3d:
b2:3f:4a:d0:c7:80:7e:dc:dd:75:f5:90:b4:92:e9:6e:55:2f:
ff:58:1f:76:38:56:17:a2:02:57:44:33:46:42:d9:a0:8f:12:
11:d0:28:c5:39:f3:5e:34:8a:e3:8a:0c:3b:98:07:29:37:74:
c7:be:98:89:a9:f6:df:33:66:4c:a6:40:51:a1:31:37:25:d9:
c6:7f:b2:78:07:8f:15:5a:bd:44:1f:dd:11:14:2c:e4:c2:7d:
f7:8b:bb:ca:ce:9f:55:53:96:9e:a5:d3:b5:8b:a6:3f:af:20:
a3:13:e3:74:d1:c4:88:71:12:7b:f1:c3:9f:8f:ad:60:3e:b1:
c4:86:74:80:68:9b:45:70:d6:a8:76:a4:94:3e:bc:97:f7:eb:
44:69:10:af:9e:41:fe:9b:9b:7e:bd:a6:da:66:da:8b:d3:2d:
f3:51:f9:21:a9:e1:1d:8f:ee:91:b9:29:22:6d:69:fd:11:cd:
3f:ba:90:05:8c:de:02:89:48:ec:34:a0:77:8a:e6:c5:ef:56:
c4:36:ac:da:0c:9c:45:67:79:75:78:da:92:23:de:06:ce:10:
71:2e:e1:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:33:27 2025 by rpki-client