Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/ZfKyBxnxZFD3cmJeL3nxw1VkALs.roa
File: ZfKyBxnxZFD3cmJeL3nxw1VkALs.roa (raw, json)
Hash identifier: aUd+H0PGEdemFH5FoIEoNsKMFIZqj4oNG8fpd+ZYjcE=
Subject key identifier: 65:F2:B2:07:19:F1:64:50:F7:72:62:5E:2F:79:F1:C3:55:64:00:BB
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 14A3
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ZfKyBxnxZFD3cmJeL3nxw1VkALs.roa
Signing time: Mon 10 Feb 2025 14:35:07 +0000
ROA not before: Mon 10 Feb 2025 14:35:07 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 125.224.0.0/13 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Feb 2025 23:44:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5283 (0x14a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:35:07 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=65F2B20719F16450F772625E2F79F1C3556400BB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:51:fd:6d:b1:53:23:85:ad:2a:39:48:42:4c:
e6:5d:77:3f:77:06:63:4e:b3:c9:8d:0c:2d:a2:3e:
ac:8d:54:d2:7f:bd:6f:cd:78:bd:cb:23:5d:d9:58:
24:56:84:c7:4d:d7:1d:d3:2b:33:88:f6:a0:71:7e:
83:c5:88:f9:a6:12:e8:4a:41:7c:b4:93:1a:68:2d:
0e:df:8e:77:f6:70:d3:ca:1f:29:2f:8e:60:6d:9a:
c8:84:d1:e5:01:fc:bc:bb:43:35:2a:67:23:25:d2:
87:2f:40:70:a3:1f:0a:79:02:32:9f:56:6e:3d:46:
c4:a9:d6:5c:ae:fa:56:f2:3e:c4:0d:b4:a0:96:7d:
15:d4:cd:71:bd:8f:77:58:9f:9d:71:c2:b1:ac:9b:
a4:ff:29:6c:c6:f1:24:8f:c5:1c:e9:f8:f8:24:c8:
13:f8:7b:46:73:20:4f:a0:bb:cb:0a:b2:45:78:6e:
ab:26:e6:8c:79:78:8e:fa:75:90:ed:e0:5d:fa:67:
c8:0b:3b:12:d8:9f:33:7f:03:db:f0:0d:36:f7:bc:
8c:af:8e:7d:0c:d3:f1:b3:f0:30:bf:80:10:b8:ad:
5a:ea:4a:bd:82:25:41:90:bd:27:aa:03:20:ab:dd:
48:f5:10:6e:c5:ce:11:9d:7d:83:8b:64:87:9f:44:
06:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:F2:B2:07:19:F1:64:50:F7:72:62:5E:2F:79:F1:C3:55:64:00:BB
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ZfKyBxnxZFD3cmJeL3nxw1VkALs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
125.224.0.0/13
Signature Algorithm: sha256WithRSAEncryption
a8:63:09:73:83:04:65:e2:8e:d5:1b:5d:6a:44:ae:f8:6a:0f:
04:07:78:bc:4f:6c:cc:32:cb:87:b8:2d:ef:1a:01:e5:c1:01:
51:d1:e6:f6:6d:cc:eb:d1:c0:2e:eb:05:87:36:cc:3e:8a:54:
2c:74:c3:83:b9:75:b8:39:cf:7d:fe:ee:2a:07:60:a5:8a:17:
11:e2:b7:fe:8a:c5:d3:b2:ec:e7:49:97:d2:16:9e:76:dc:96:
c2:e6:a9:e9:0c:76:90:b2:18:21:fc:08:22:be:9a:50:c3:39:
15:4c:3a:53:c8:e3:f5:1e:57:e9:0b:e5:76:db:ec:42:da:c5:
cb:59:a9:6c:2c:87:87:5b:6d:4c:0f:6c:a2:e6:11:2a:fc:37:
3f:5e:ff:47:50:5d:0a:6e:9c:a0:16:49:43:6d:5d:83:e7:a3:
7b:42:36:e8:1c:ff:f7:80:1f:60:a0:3c:30:a8:be:c3:29:0f:
f2:cc:9f:14:d9:bd:0c:56:83:2e:76:a4:16:68:7d:e6:80:71:
9c:ce:1d:93:72:92:23:84:f0:03:00:ce:02:06:cd:2d:45:2f:
67:fd:d1:31:06:1f:35:d5:4e:0d:fc:3b:06:71:82:2c:d7:c7:
92:75:07:20:49:3e:20:ad:6d:3a:06:af:d0:28:84:c9:25:15:
79:26:b0:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:15:31 2025 by rpki-client