Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/XIjtiB61ik_Xhng-xMEosKSFE10.roa
File: XIjtiB61ik_Xhng-xMEosKSFE10.roa (raw, json)
Hash identifier: IZYqzXi6KdjpOLEVRxUQrOJ+O4gMaoCzx8zkvxJafQM=
Subject key identifier: 5C:88:ED:88:1E:B5:8A:4F:D7:86:78:3E:C4:C1:28:B0:A4:85:13:5D
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1187
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/XIjtiB61ik_Xhng-xMEosKSFE10.roa
Signing time: Mon 26 Aug 2024 05:17:38 +0000
ROA not before: Mon 26 Aug 2024 05:17:38 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 23675
IP address blocks: 203.66.102.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:35:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4487 (0x1187)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 26 05:17:38 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5C88ED881EB58A4FD786783EC4C128B0A485135D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:55:b1:0d:4c:ec:bb:fc:fe:a3:ea:0d:38:3e:
29:22:15:5c:1e:31:26:d5:af:b1:1e:b2:f0:6a:db:
40:43:71:1c:79:d0:9a:55:fd:54:5f:74:4b:db:8d:
01:b4:fa:cd:97:5f:7a:54:52:a2:82:db:0d:73:b4:
c3:7c:a6:c1:1b:e8:b7:f4:8b:93:25:3c:77:59:4a:
6f:fa:af:ac:a7:7c:49:60:6f:0e:89:5a:d5:76:45:
39:0a:c4:00:a7:77:e6:be:81:57:30:f2:ce:69:05:
60:75:c2:38:c7:bb:1c:6a:7c:53:28:77:4e:62:49:
8f:d1:e8:09:21:ed:bd:c5:50:a9:35:bb:fd:ad:c7:
4f:27:fb:e8:d1:dd:cc:1a:57:68:e6:d5:48:8c:75:
b0:65:fc:ba:eb:fe:d0:6c:f7:61:fa:d5:e4:aa:d3:
2c:22:f9:b4:b1:a4:2f:c3:3c:67:96:06:65:32:75:
e4:d1:3e:41:7a:7f:e9:b9:cc:fc:25:a0:06:12:51:
5b:99:9d:1f:4f:1b:0e:ac:89:8d:59:0d:40:ab:01:
5e:e7:b5:53:3e:84:10:dd:32:26:e8:09:7d:d1:4c:
ea:33:7c:fa:a5:1d:29:99:f3:87:d9:39:68:af:3b:
6b:08:ba:97:f0:d5:64:77:b2:00:2c:6e:6b:f4:04:
71:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:88:ED:88:1E:B5:8A:4F:D7:86:78:3E:C4:C1:28:B0:A4:85:13:5D
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/XIjtiB61ik_Xhng-xMEosKSFE10.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.66.102.0/24
Signature Algorithm: sha256WithRSAEncryption
90:a4:20:f5:f4:dd:80:56:40:95:71:7a:9c:39:83:6e:a0:77:
2f:bc:75:11:6c:6a:88:9c:3b:52:cd:3e:55:5c:98:7b:18:65:
b8:c7:ff:36:ad:79:06:2b:5d:2e:fe:90:c3:85:98:ed:fd:69:
51:55:05:91:ff:8b:80:fe:26:d7:7b:4e:11:da:a9:9d:20:1d:
10:8c:3e:9b:1a:e9:a4:42:b2:89:e7:7f:60:80:0b:ad:7e:12:
be:db:75:7e:da:38:6c:87:7b:e9:e6:f9:b7:27:c0:76:cb:e5:
75:ea:22:67:a1:82:ad:a0:1e:24:6b:6d:9c:3a:9b:cf:cb:d3:
22:15:20:32:84:71:2e:be:98:ef:e9:30:9c:e5:f9:45:74:f2:
b6:1f:0c:7a:87:52:93:39:b6:eb:25:c6:52:63:19:20:90:c5:
0f:b4:7a:3d:ae:28:cf:3f:6a:41:63:30:8f:d9:25:9d:7e:b0:
f5:92:5c:6c:7d:72:0f:71:41:e8:da:69:f4:a2:4a:5e:7a:18:
d2:8d:e9:21:9f:a4:33:f5:27:03:23:8d:1f:16:b3:1d:5a:2c:
3e:06:9b:f1:ab:4f:6d:8d:17:1e:10:32:c0:31:b4:74:df:eb:
7b:ac:6c:03:31:6e:c3:a4:6b:39:d6:f4:9f:47:29:7e:ba:b9:
c7:f2:51:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:33:39 2025 by rpki-client