Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/Ws3kCrYSMPt62Qxq50KoNRfKtC4.roa
File: Ws3kCrYSMPt62Qxq50KoNRfKtC4.roa (raw, json)
Hash identifier: E99WwkszkwN6YmOiKQgP77ZR7VAbjDoc5aNTRwvTkvc=
Subject key identifier: 5A:CD:E4:0A:B6:12:30:FB:7A:D9:0C:6A:E7:42:A8:35:17:CA:B4:2E
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 152B
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Ws3kCrYSMPt62Qxq50KoNRfKtC4.roa
Signing time: Tue 11 Feb 2025 23:44:23 +0000
ROA not before: Tue 11 Feb 2025 23:44:23 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 211.20.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5419 (0x152b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:23 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5ACDE40AB61230FB7AD90C6AE742A83517CAB42E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d4:f9:6c:3a:30:63:0c:88:60:12:c5:b3:1a:
c6:e9:ee:89:b3:d9:d3:1b:82:8f:41:09:f8:14:21:
4e:97:11:29:d7:2a:3b:97:5d:bf:e9:29:47:aa:af:
32:bc:77:6d:0f:33:32:b2:22:6e:ac:ac:a1:15:f7:
75:8f:0e:99:37:3b:45:b0:41:9e:5e:dc:67:1e:3d:
64:c9:fa:d7:9e:b3:5e:fd:d2:df:a9:0c:f9:36:c7:
57:eb:60:71:ed:8d:35:97:ea:5b:16:cc:4b:4b:1f:
bb:7a:f1:01:2e:66:6f:22:03:be:22:a2:fd:1a:61:
0f:7c:d7:b3:13:24:fb:5d:83:89:5a:b1:6f:21:3a:
d6:56:4b:fe:6e:6e:ac:9e:7e:59:9a:11:12:c5:0a:
98:59:21:37:2c:5e:88:c7:18:84:ee:a5:31:2b:90:
8b:e7:b7:17:b6:b8:56:ce:69:7d:29:33:b7:9d:c1:
3b:2d:e6:51:7a:d3:a7:e2:de:61:77:56:e9:79:2f:
1e:7a:4a:43:78:7d:5c:03:5f:f9:f0:ff:5d:e4:77:
6e:23:82:d8:ab:18:fa:c0:0a:ac:98:c7:f9:d5:27:
7f:f4:b3:66:b7:66:a7:c4:28:90:98:5a:1e:5b:8f:
75:1e:43:2d:1d:07:12:d1:c8:8d:d5:bd:27:a7:f2:
e5:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:CD:E4:0A:B6:12:30:FB:7A:D9:0C:6A:E7:42:A8:35:17:CA:B4:2E
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Ws3kCrYSMPt62Qxq50KoNRfKtC4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.20.0.0/16
Signature Algorithm: sha256WithRSAEncryption
49:b3:ed:c1:ce:62:cc:d6:e9:39:00:97:a5:8e:63:96:d3:de:
d4:22:ce:f1:e3:ad:ec:ed:d3:5f:7d:c1:ae:9c:58:ac:c7:6b:
56:da:8d:f2:86:4a:a5:ce:0b:8c:a9:d8:d6:ef:63:14:97:9b:
06:ae:02:f3:05:1d:c0:d4:ac:6b:b5:c9:90:28:68:fd:28:fd:
9d:82:17:2f:b3:7c:11:e0:5f:e9:09:bc:80:c6:3a:ac:9f:63:
21:d1:63:21:97:8d:a7:56:59:ee:d9:a6:e5:6c:59:93:24:5f:
b2:72:02:89:6f:73:7b:4e:bc:99:40:fb:cf:11:92:23:8c:1f:
75:3a:e7:e7:42:00:71:e6:60:7f:05:50:38:ce:04:0e:74:e3:
99:6e:d5:f1:62:e9:bf:5f:5d:bc:c7:b1:75:d5:bc:d0:77:60:
7f:a4:9e:83:a5:1c:71:78:6a:28:39:ca:4d:b1:22:f3:b1:c2:
2c:db:d5:b2:d7:e1:2c:d8:75:93:27:1e:e5:2b:85:6d:c3:05:
f0:bd:3b:1c:b2:25:26:0c:36:8d:88:82:65:2c:47:88:52:47:
f3:42:10:e7:f6:f0:be:c9:8d:ec:25:01:39:9b:81:81:82:2e:
3a:d4:fe:f5:e5:ad:08:79:e0:db:d0:82:d6:90:1f:92:9a:dc:
6c:cd:62:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:45:03 2025 by rpki-client