Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/VeglID2l1cJfcpoA-hu7rtdo3t8.roa
File: VeglID2l1cJfcpoA-hu7rtdo3t8.roa (raw, json)
Hash identifier: k6ykwsgd62fAly6F4JdwT/u52bPDYgwR17WH1x0DFPA=
Subject key identifier: 55:E8:25:20:3D:A5:D5:C2:5F:72:9A:00:FA:1B:BB:AE:D7:68:DE:DF
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 14EC
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/VeglID2l1cJfcpoA-hu7rtdo3t8.roa
Signing time: Tue 11 Feb 2025 23:44:10 +0000
ROA not before: Tue 11 Feb 2025 23:44:10 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 211.21.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5356 (0x14ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:10 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=55E825203DA5D5C25F729A00FA1BBBAED768DEDF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:c6:48:93:bc:d4:dc:1d:00:ad:44:c7:be:58:
6b:c4:17:ab:56:c6:ef:06:f4:ec:3c:05:2d:fa:6b:
49:e0:a7:3e:5b:fe:aa:69:dc:d2:44:51:6d:a2:8c:
fd:c8:64:0c:da:55:bc:d0:6a:f6:56:60:74:e2:b1:
ae:27:e2:19:d9:c8:00:72:e5:5f:1a:7c:1a:4a:8f:
2d:86:56:ce:22:04:2e:a0:88:d8:bf:28:b6:fb:9c:
c2:56:09:3c:44:bd:f8:fa:6e:33:22:8b:f8:5c:a5:
a7:e4:9c:f5:e0:a6:27:e6:48:33:83:24:87:3c:2f:
e1:8d:80:cf:6f:54:1a:31:b1:38:e9:b0:14:0b:85:
ce:56:a6:42:2e:a1:cd:e3:98:38:5c:47:4f:14:16:
cb:9c:ed:4b:7e:66:c5:6c:68:f5:36:3f:a0:6b:8b:
98:ad:fc:a9:a8:ad:eb:b8:d6:79:bd:fb:d7:7e:79:
ed:e5:a2:3a:d3:35:7a:9a:02:99:18:5f:33:c5:c8:
2b:93:fc:a1:cc:92:4d:19:fd:ed:bf:17:96:36:eb:
db:cb:53:6e:6b:8d:01:6a:3e:2c:fc:db:e6:fb:b1:
58:58:11:51:8c:86:90:3d:09:6f:4c:c2:33:99:e5:
15:3f:64:1d:39:37:ad:89:b9:91:6c:9e:97:09:2d:
4a:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:E8:25:20:3D:A5:D5:C2:5F:72:9A:00:FA:1B:BB:AE:D7:68:DE:DF
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/VeglID2l1cJfcpoA-hu7rtdo3t8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.21.0.0/16
Signature Algorithm: sha256WithRSAEncryption
b5:1c:79:c7:4c:3f:bd:58:7f:26:95:35:57:d1:3b:e8:61:01:
c3:5d:8d:bc:f4:2b:7d:08:f7:71:43:92:7e:9f:57:82:03:41:
16:8c:41:86:b1:16:32:8f:e0:6b:bf:17:5a:bf:23:c4:e2:44:
df:a5:c3:19:a1:5a:d0:dc:a3:38:03:72:ed:68:a3:2d:15:16:
69:60:9d:be:1e:05:ef:40:0d:ed:bd:bd:c3:14:5a:42:3c:c7:
e4:12:b4:f4:16:19:9e:cf:bc:7f:65:69:5f:7b:e8:55:54:a7:
c8:a4:42:5d:c3:1c:de:fe:dd:d5:ad:ba:26:8b:ef:3e:92:c6:
dc:f4:8c:9d:fc:49:57:b3:a6:c5:c3:ec:d4:5e:19:10:0f:03:
21:96:5f:73:dd:25:58:aa:1f:fb:c5:e2:7d:61:10:02:1a:96:
9c:c1:f8:46:7d:13:70:a6:71:ef:6e:89:0c:54:d7:16:be:fd:
8b:45:2d:36:81:b7:7a:03:3c:be:54:bf:1c:3a:b5:ea:d4:80:
1c:88:6c:5b:57:7c:48:83:3f:0b:26:2b:ac:d4:1a:1d:47:12:
85:c0:34:40:76:ee:6a:88:1f:f3:b6:5b:e1:44:70:7a:44:62:
6c:a0:88:9b:b4:1a:ae:6d:e4:76:df:b1:35:12:47:0a:ce:03:
3b:30:f9:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:36:23 2025 by rpki-client