Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/YCUYsXzPJ8yubXkePSUjTEON17E.roa
File: YCUYsXzPJ8yubXkePSUjTEON17E.roa (raw, json)
Hash identifier: reVdFlgubYWPAsKD4HsqKOm752u3nFaB6wB9PHigpaw=
Subject key identifier: 60:25:18:B1:7C:CF:27:CC:AE:6D:79:1E:3D:25:23:4C:43:8D:D7:B1
Certificate issuer: /CN=534C76274A330B071EFD20DB05F6D0429293743E
Certificate serial: 0D30
Authority key identifier: 53:4C:76:27:4A:33:0B:07:1E:FD:20:DB:05:F6:D0:42:92:93:74:3E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/U0x2J0ozCwce_SDbBfbQQpKTdD4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/YCUYsXzPJ8yubXkePSUjTEON17E.roa
Signing time: Mon 26 Aug 2024 05:18:12 +0000
ROA not before: Mon 26 Aug 2024 05:18:12 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 7481
IP address blocks: 2001:7fa:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:35:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3376 (0xd30)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=534C76274A330B071EFD20DB05F6D0429293743E
Validity
Not Before: Aug 26 05:18:12 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=602518B17CCF27CCAE6D791E3D25234C438DD7B1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:30:ba:50:cf:9c:ec:9f:0f:93:3d:ae:a1:36:
28:9b:24:06:60:ff:17:48:e8:87:a9:d0:c4:83:3d:
9b:10:67:dc:e1:69:00:a7:43:02:d7:3a:bd:21:54:
38:4d:23:f2:1c:e9:a2:30:04:07:34:42:06:4b:3f:
31:f3:3f:bc:22:9a:b2:91:e7:e8:44:2b:ab:66:06:
cc:f5:2f:70:08:e8:78:c2:90:09:d1:21:97:73:4d:
33:9b:9b:8c:c5:9d:7a:c4:19:95:70:e4:74:95:38:
51:67:a8:13:59:6b:28:ff:3d:3b:04:dd:25:62:00:
ef:51:41:84:f2:ac:9b:30:f0:14:df:80:f1:a8:11:
37:2e:d1:0e:18:b6:c9:48:dc:ec:27:53:fd:c8:89:
4c:78:5e:8d:21:4c:bc:a4:42:ee:ff:11:24:fc:3d:
bf:e7:f3:60:86:24:57:df:d8:af:1a:42:91:e3:0c:
1e:a6:80:d3:f2:f9:35:83:b7:64:4b:5f:77:8e:d6:
8a:e3:62:9a:b5:d4:79:43:99:6b:18:17:84:8d:6c:
a4:b9:eb:ba:17:09:51:97:2b:2c:01:87:b9:11:79:
ac:64:c6:7a:1c:67:88:c5:4c:85:62:81:7f:be:5d:
5f:07:23:b6:cd:9f:00:70:a2:c5:fd:29:57:63:96:
5f:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:25:18:B1:7C:CF:27:CC:AE:6D:79:1E:3D:25:23:4C:43:8D:D7:B1
X509v3 Authority Key Identifier:
keyid:53:4C:76:27:4A:33:0B:07:1E:FD:20:DB:05:F6:D0:42:92:93:74:3E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/U0x2J0ozCwce_SDbBfbQQpKTdD4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/U0x2J0ozCwce_SDbBfbQQpKTdD4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/YCUYsXzPJ8yubXkePSUjTEON17E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:7fa:1::/48
Signature Algorithm: sha256WithRSAEncryption
14:08:12:8f:c8:47:72:a8:8e:84:1c:50:1a:9c:c6:9b:b9:9e:
71:9e:b4:82:e4:54:bc:b6:05:0d:7d:32:32:b1:11:74:50:76:
2f:d9:47:bb:78:83:34:4d:26:3b:22:49:46:1e:5d:9c:df:74:
43:eb:e9:5e:1f:9f:e3:e0:f4:08:a6:cc:d9:ea:a6:34:0e:01:
69:6d:26:bf:1f:2c:8d:58:cb:70:a7:0e:95:15:b9:f0:58:6b:
fa:8f:be:e6:f2:64:de:e5:d8:d5:0e:9f:5f:89:77:1f:8b:69:
41:f6:1e:9e:f8:a0:64:81:0c:bc:39:ef:03:9d:28:0f:1c:3f:
d8:f4:ba:36:df:ca:6e:8c:c1:e6:23:bf:7f:26:fd:a7:78:51:
12:06:b2:cd:be:94:e1:ac:8a:dd:9a:5c:b2:3f:4d:a4:94:0f:
b3:a6:89:4b:54:c1:bc:28:1e:c2:80:e6:fd:31:1e:d0:e5:7e:
93:f5:68:fa:29:17:6e:6e:3b:58:cd:74:f2:95:b3:0b:33:b7:
25:da:97:8a:55:d5:ed:39:c8:a5:21:ae:2f:41:b6:e4:60:0e:
8e:ef:c6:a5:81:5b:94:b5:8b:30:df:5a:a7:1d:75:b3:ad:0d:
d2:6f:40:d6:51:56:20:c4:e4:20:12:c3:22:f2:28:60:eb:11:
bb:48:b3:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:40:59 2025 by rpki-client