Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/_Fy8wzhDxmry7CLezGwuaHt-yCc.roa
File: _Fy8wzhDxmry7CLezGwuaHt-yCc.roa (raw, json)
Hash identifier: seL5S/HUvaSdVNVr4T2mlpYECXHKKa6p6T6Zn8SQSPI=
Subject key identifier: FC:5C:BC:C3:38:43:C6:6A:F2:EC:22:DE:CC:6C:2E:68:7B:7E:C8:27
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 153D
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/_Fy8wzhDxmry7CLezGwuaHt-yCc.roa
Signing time: Tue 11 Feb 2025 23:44:27 +0000
ROA not before: Tue 11 Feb 2025 23:44:27 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 59.124.0.0/14 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5437 (0x153d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:27 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=FC5CBCC33843C66AF2EC22DECC6C2E687B7EC827
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:12:d0:cc:a8:6a:2f:c9:3f:ba:c3:b6:68:ab:
d8:2d:62:25:65:86:ce:9c:60:65:d4:de:4e:7c:ad:
b4:a8:53:d2:8c:b4:96:2d:e1:53:7f:5e:da:e0:45:
0c:9f:90:c4:2d:4f:00:7d:e7:49:b1:8b:97:15:92:
5a:f5:8a:3d:33:17:b1:27:d8:62:8b:3c:10:84:cc:
d0:07:8b:00:9d:43:f3:63:68:df:1c:a2:eb:56:f5:
b6:ab:01:93:2f:46:ca:ff:89:11:5c:8d:d6:25:50:
de:75:f0:2c:de:31:c3:bf:21:37:7b:69:50:0a:5a:
86:ee:be:cd:75:36:26:e5:d8:ea:20:37:7b:ce:59:
7e:fd:7a:39:32:20:79:f2:76:ff:a5:4f:66:9d:54:
5a:55:d9:21:f1:4e:a1:08:07:56:1b:64:b6:9e:fc:
06:56:b7:9a:51:8b:c8:8f:e7:82:1d:b7:ec:e9:ae:
17:b5:0a:53:e8:0f:07:43:c8:2e:d1:90:ed:df:73:
86:2b:66:a1:48:17:da:0e:45:01:0c:ee:1e:a5:95:
e1:79:2c:5c:c5:6d:9a:27:9e:83:c5:5a:fb:1b:16:
74:19:07:6f:b7:73:b1:ed:a2:3e:83:4e:7b:3e:5f:
0b:b5:41:5c:60:a3:9c:e7:c8:a2:94:2d:b0:81:85:
96:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:5C:BC:C3:38:43:C6:6A:F2:EC:22:DE:CC:6C:2E:68:7B:7E:C8:27
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/_Fy8wzhDxmry7CLezGwuaHt-yCc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
59.124.0.0/14
Signature Algorithm: sha256WithRSAEncryption
00:55:38:28:f4:39:83:c0:75:86:fc:46:72:d7:bb:25:5e:8d:
29:4e:8f:57:c5:cb:3c:d4:42:d9:fb:62:42:b5:6e:31:09:b6:
3d:0b:0c:50:3c:96:d5:52:eb:69:ea:30:66:b7:c0:6c:56:89:
b4:aa:db:94:17:5d:82:d7:a0:f0:74:56:6f:d7:13:e0:73:1b:
3e:ef:d3:f1:59:26:f2:49:b9:88:95:29:18:e6:af:9f:98:5c:
b6:5c:a2:fa:51:5c:e0:a7:bb:67:7d:c8:54:2a:1c:f2:38:95:
9e:bb:69:45:6e:39:38:44:7c:b7:3d:45:39:11:84:a4:ff:21:
05:ad:ff:ea:c4:03:64:f1:7d:51:7e:cb:67:da:6a:af:cb:89:
8c:9f:4f:81:22:e7:38:b3:99:57:f8:02:b1:06:08:81:3e:6d:
78:a1:19:df:7e:33:9e:e0:9d:a4:60:1a:de:43:76:a9:cb:ef:
ac:bd:cc:d7:12:18:a6:d4:96:8e:71:c5:a8:da:f4:95:36:08:
08:d9:68:ac:9a:71:7a:10:bd:9e:1f:db:59:4a:2b:9a:0f:e7:
24:b8:62:88:59:49:27:74:b4:56:b2:63:5b:84:4f:44:a3:eb:
60:e3:5c:2e:aa:37:7f:4b:8d:fb:33:59:2c:e3:ae:13:00:5f:
c5:1b:25:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 17:21:50 2025 by rpki-client