Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/XpJ1RB479Xs2O_nJw3L7KvI3RKM.roa
File: XpJ1RB479Xs2O_nJw3L7KvI3RKM.roa (raw, json)
Hash identifier: JXO6iIGdJCdhPwS/9Z30pWXI/8N+ch45cQLgfbjHtcY=
Subject key identifier: 5E:92:75:44:1E:3B:F5:7B:36:3B:F9:C9:C3:72:FB:2A:F2:37:44:A3
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1183
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/XpJ1RB479Xs2O_nJw3L7KvI3RKM.roa
Signing time: Mon 26 Aug 2024 05:17:36 +0000
ROA not before: Mon 26 Aug 2024 05:17:36 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17714
IP address blocks: 175.111.252.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:35:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4483 (0x1183)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 26 05:17:36 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5E9275441E3BF57B363BF9C9C372FB2AF23744A3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:70:44:eb:3a:10:92:ef:39:b5:9d:be:0a:0f:
97:47:3a:f0:03:ef:ac:84:a8:3c:0c:a4:be:1c:8c:
01:0f:e5:7b:82:80:1f:66:7b:91:c9:5b:93:92:d8:
d2:e2:fc:dc:1b:ba:85:bf:9f:91:64:36:31:59:55:
18:15:a3:83:04:a2:40:56:7d:17:ec:ea:d9:52:b0:
cc:53:38:c6:14:cf:e2:36:8a:ba:61:c8:f9:d3:49:
ee:19:6b:a5:db:2e:99:a2:3a:72:3b:7a:76:63:7d:
92:02:9d:a7:bc:aa:7c:6f:26:df:df:cb:50:6b:6c:
09:a7:b6:ab:c5:26:82:2e:17:71:a3:97:b0:b7:fb:
1d:90:55:94:ee:7d:a7:a0:02:8c:f4:1a:a1:41:16:
23:80:6e:f0:a2:f8:14:ce:4b:d4:3f:9c:f0:60:68:
c6:4c:83:0c:d2:76:94:21:1d:8a:61:8a:ba:4d:58:
22:41:48:1a:22:f0:84:90:78:df:db:45:b6:96:6b:
3e:15:ff:ce:1f:8a:05:20:10:f4:40:1a:6e:9f:e3:
e8:ff:1c:fe:e4:3e:90:b5:f4:42:86:9d:cf:42:ea:
f8:60:56:65:b3:10:c5:37:bd:2e:3c:72:93:b0:a7:
1b:66:61:e4:bb:3b:82:ca:87:16:d6:ee:eb:13:a1:
80:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:92:75:44:1E:3B:F5:7B:36:3B:F9:C9:C3:72:FB:2A:F2:37:44:A3
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/XpJ1RB479Xs2O_nJw3L7KvI3RKM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.111.252.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:c2:d1:bf:46:4d:a4:af:d5:ee:c0:6b:c7:18:8e:a0:15:4a:
e1:9d:3e:31:ee:08:0a:f5:b9:52:56:45:76:d1:c9:69:d0:25:
96:b6:92:2b:85:3a:f1:94:7f:6f:66:d6:b1:f2:ac:31:ec:c3:
e3:db:ff:ab:cc:f7:0d:2e:77:45:4f:85:e9:36:65:3f:3c:eb:
62:56:c8:b5:0f:54:7b:e2:ff:63:c2:8a:36:40:46:2b:c3:e9:
35:af:fb:2a:d6:ba:aa:ad:70:7f:5f:dc:02:af:3c:d4:aa:96:
8e:ff:49:07:50:ea:16:8a:f5:5e:0f:84:37:41:65:d3:43:dc:
1c:6b:2a:90:2e:9a:56:55:8a:2c:98:a7:95:80:b2:d0:87:b3:
aa:33:49:54:2d:f9:d1:d4:ef:61:28:f4:bf:97:da:de:9d:69:
a2:3c:fd:e7:14:ad:59:6b:c9:ca:71:a0:20:fc:24:04:c2:e0:
a0:fa:58:cb:1d:77:28:8f:d1:6d:ad:e7:80:ab:9a:17:dc:8c:
1c:e2:6f:6b:a9:7b:e1:f1:53:f0:70:b9:18:f1:57:e2:f7:35:
be:fa:47:0c:ce:2f:6b:d2:cb:b8:3a:f2:9f:61:2c:6e:c4:f8:
d3:0d:8a:80:45:f4:ab:47:20:8e:e6:cf:cc:e8:4f:ce:0c:59:
50:a5:92:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:30:09 2025 by rpki-client