Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/WBipdb5Ao1FCE75CSfyVOBVZJ6Y.roa
File: WBipdb5Ao1FCE75CSfyVOBVZJ6Y.roa (raw, json)
Hash identifier: CtC9QVRJsETNgzvkmfQlusqemIXip1oxteGSQQfZGsQ=
Subject key identifier: 58:18:A9:75:BE:40:A3:51:42:13:BE:42:49:FC:95:38:15:59:27:A6
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 11B6
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WBipdb5Ao1FCE75CSfyVOBVZJ6Y.roa
Signing time: Mon 26 Aug 2024 05:17:51 +0000
ROA not before: Mon 26 Aug 2024 05:17:51 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131660
IP address blocks: 2001:b000:59c::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:35:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4534 (0x11b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 26 05:17:51 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5818A975BE40A3514213BE4249FC9538155927A6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:1e:ad:90:24:6d:18:73:34:28:57:ab:53:d9:
ca:ca:8d:e3:67:31:df:70:bf:6e:4c:7a:c8:e9:36:
58:48:cd:95:f7:23:20:ad:9a:1c:ed:d6:ee:a9:0a:
99:65:68:da:a9:e8:7c:22:ba:27:85:6f:da:c7:17:
0a:86:5c:c6:e7:b0:34:c2:bc:69:87:54:e9:8d:9e:
61:c4:e3:91:62:73:d6:57:4a:e1:70:9e:6e:b5:d4:
5c:a7:b7:e6:94:89:0d:90:d9:7d:60:ca:7e:ab:7a:
4e:ff:74:fb:1c:47:e2:5b:92:57:b6:d2:89:79:cc:
82:05:ed:cc:66:be:1d:4b:55:6b:6a:45:70:f1:c3:
47:ed:37:b2:04:15:98:58:e1:3e:3b:20:f2:c4:7a:
60:7d:97:94:c1:d4:0e:a2:dd:8c:00:33:70:4c:9b:
d9:87:7a:08:a1:5d:1d:7a:c1:af:41:48:96:2d:ae:
95:8a:4a:2c:73:af:38:35:2a:72:95:da:92:1b:5c:
50:23:6b:63:8f:70:21:63:1e:89:b2:c2:b5:9c:86:
73:57:3b:dc:25:8a:8d:1b:e4:fd:b7:92:9a:4d:07:
9e:dc:bf:66:9e:95:08:c1:52:e2:a0:5a:5a:e4:4c:
71:6b:ec:58:a9:e7:9b:83:03:c9:7e:11:2c:1b:d0:
31:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:18:A9:75:BE:40:A3:51:42:13:BE:42:49:FC:95:38:15:59:27:A6
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WBipdb5Ao1FCE75CSfyVOBVZJ6Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b000:59c::/48
Signature Algorithm: sha256WithRSAEncryption
8a:b4:f5:68:67:eb:eb:6a:48:11:76:c8:5b:53:2b:be:be:02:
b7:fd:15:ad:41:f5:8a:a0:03:1d:68:c8:b4:18:b7:7c:60:e1:
31:48:9f:61:cf:ec:9a:14:e1:78:31:da:11:ca:96:db:10:ca:
76:53:ac:9d:9e:20:f5:9d:24:1d:a5:62:ae:c0:50:9c:fb:fc:
51:07:0e:9c:f9:8b:a9:e4:20:e0:7d:91:40:08:fb:e2:b6:f9:
15:ab:39:01:db:d7:8c:f6:f0:0d:7c:18:6f:a9:b4:59:0d:7d:
1e:2c:e1:bf:16:7c:bc:39:c1:23:9d:11:5d:4e:60:c6:41:89:
cc:bf:78:cb:32:49:2b:62:76:6f:14:d1:0d:ef:31:23:b4:88:
6e:91:ce:70:fc:59:93:8c:0f:f1:69:f0:ba:c7:94:aa:17:43:
3d:23:38:8b:71:21:18:3e:b2:f1:2f:85:10:45:5c:86:59:2f:
2f:9f:25:27:a0:fa:28:4d:15:40:5f:a7:c2:1a:1b:26:6a:66:
09:25:f0:31:e0:3e:2a:28:ab:ce:70:ce:ed:16:6c:fc:c5:70:
ef:0b:c8:c9:c5:c6:3e:92:10:15:22:53:16:55:22:6f:8a:cf:
c2:e3:ac:c8:2d:a1:9a:30:c1:8d:c3:ca:2e:0e:c8:0b:bb:50:
e5:59:4e:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:17:57 2025 by rpki-client