Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/XWwpe1KwM87xY97IwpT1iLJHOfQ.roa
File: XWwpe1KwM87xY97IwpT1iLJHOfQ.roa (raw, json)
Hash identifier: VjjaoqT2tjJId+EI3+WIdZ6vsf9k15eFaLkvi/gQ09M=
Subject key identifier: 5D:6C:29:7B:52:B0:33:CE:F1:63:DE:C8:C2:94:F5:88:B2:47:39:F4
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1439
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/XWwpe1KwM87xY97IwpT1iLJHOfQ.roa
Signing time: Mon 10 Feb 2025 14:34:43 +0000
ROA not before: Mon 10 Feb 2025 14:34:43 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 198949
IP address blocks: 203.74.177.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Feb 2025 23:44:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5177 (0x1439)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:34:43 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5D6C297B52B033CEF163DEC8C294F588B24739F4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:73:db:f4:8e:35:aa:e3:99:97:28:22:40:b7:
b4:ad:a2:c0:3e:98:a9:a8:8d:c7:9c:7e:8b:38:3a:
0c:54:65:58:fd:78:c0:da:0e:e3:64:a8:a2:14:cc:
6b:ad:f1:c0:48:f8:e7:5f:c5:d9:23:ec:82:70:3f:
78:0a:6a:74:4c:f6:14:6e:a2:7d:83:b0:65:95:1f:
a7:c3:24:82:39:2c:f5:bc:4e:20:ab:9e:ce:db:70:
26:b0:29:d7:47:e5:d7:99:24:53:f4:b1:be:70:ad:
ba:8b:79:68:b0:cc:33:71:35:08:14:98:c8:19:c6:
eb:e2:62:8f:1c:e5:a8:b8:30:0d:a0:ab:db:88:3b:
9b:11:b1:85:83:92:7b:9a:67:48:85:a6:84:dd:a2:
6a:b8:2a:70:ba:7d:cb:39:b4:16:9c:a6:9f:c0:44:
c3:4e:26:42:e3:e1:41:c6:b0:c7:f8:aa:f9:0c:64:
32:61:a4:91:e1:41:45:4d:86:e9:b7:0c:82:b4:df:
74:0f:69:bb:29:48:10:e6:6b:0b:0b:4b:7f:fd:bf:
51:64:43:5d:43:ce:6f:09:4b:66:ff:62:eb:50:7c:
48:59:3f:c6:87:d3:77:ba:01:c5:00:7e:49:5a:a4:
4f:9a:89:a2:1e:f5:5c:46:b8:57:9c:99:ea:14:0e:
e5:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:6C:29:7B:52:B0:33:CE:F1:63:DE:C8:C2:94:F5:88:B2:47:39:F4
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/XWwpe1KwM87xY97IwpT1iLJHOfQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.74.177.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:87:ab:9a:b0:1f:8f:54:b7:7d:35:76:e6:7b:7b:d3:7e:b1:
b6:21:71:16:99:1f:2a:fa:8a:d3:2f:9d:3c:33:79:78:b7:4d:
44:c7:24:3e:48:44:17:d2:73:40:6c:eb:24:32:aa:c0:44:e1:
b3:bc:30:f9:be:17:c4:75:e9:00:7f:df:2f:ae:31:59:a1:bf:
67:3b:10:5e:50:58:52:10:99:83:0c:23:21:80:5e:84:dd:f3:
f0:92:a8:67:e6:b3:3f:62:e0:32:6c:78:9c:c9:99:e4:91:15:
99:bc:c0:7a:cb:28:42:3d:4e:d9:f0:80:3f:a2:76:40:39:90:
4c:c6:cc:eb:ad:bf:d1:3c:df:b1:24:5a:bb:7b:19:e0:06:28:
1b:14:5b:45:4b:29:15:23:72:fa:98:70:ff:97:37:3e:2c:31:
42:46:08:4f:13:5e:99:e3:44:8c:86:31:2e:b0:01:67:58:94:
b9:d7:5c:d2:fe:22:41:19:72:72:7e:13:b9:f5:bc:ea:e5:a5:
c0:c4:be:7a:6b:43:c2:3f:4b:74:e8:2e:dc:d5:88:de:23:0c:
4c:4c:52:40:3e:77:e9:a0:27:6a:3f:81:fc:1f:fc:38:d8:ac:
6a:e5:4c:e1:cd:8e:ba:74:e0:fe:82:5c:ed:23:7b:59:48:09:
c7:99:89:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:22:01 2025 by rpki-client