Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/aLSigwe26farAmEAomf2gRQZiF4.roa
File: aLSigwe26farAmEAomf2gRQZiF4.roa (raw, json)
Hash identifier: UfHRQGcZTmY5iDuARBg7TsWHJfAzzcX/ZagghDv6Jp8=
Subject key identifier: 68:B4:A2:83:07:B6:E9:F6:AB:02:61:00:A2:67:F6:81:14:19:88:5E
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 11C7
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/aLSigwe26farAmEAomf2gRQZiF4.roa
Signing time: Mon 26 Aug 2024 05:17:56 +0000
ROA not before: Mon 26 Aug 2024 05:17:56 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 210.241.224.0/19 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:35:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4551 (0x11c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 26 05:17:56 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=68B4A28307B6E9F6AB026100A267F6811419885E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:69:c6:26:3f:4b:3a:f0:d7:f4:79:df:22:4f:
87:44:1d:13:2d:26:0c:79:63:f8:89:59:41:38:e4:
16:71:52:ee:63:ee:f5:81:05:5c:92:55:75:d9:f1:
ad:da:e1:e1:f8:b6:a5:dd:cd:2d:51:da:2e:48:9b:
40:68:1f:8f:e0:e7:54:1f:d1:c6:6e:d1:c5:41:79:
1e:c7:10:c3:0f:45:60:a2:40:87:db:e9:c5:d2:b4:
cc:9a:75:90:d7:67:bb:ff:f3:9f:75:eb:91:80:d9:
c5:d6:45:36:57:5b:24:9b:22:99:53:6e:ca:4f:ea:
2c:47:d8:0a:7d:34:18:37:f8:63:71:0c:6a:c8:10:
2e:0a:9e:23:08:5e:2c:25:98:1d:e3:04:0b:0e:bd:
30:20:19:41:7f:7d:b4:ab:60:ee:d7:c2:1f:be:86:
4d:48:77:36:62:fc:ed:4e:b6:7c:a5:7a:72:f7:31:
6a:7c:3d:cf:6e:e5:94:3a:60:25:09:a6:c1:a8:35:
60:97:7e:87:1e:f2:58:fd:9c:ce:9b:81:12:39:52:
e3:ab:2f:80:06:44:c1:f9:13:2e:5a:4a:c3:06:82:
cc:42:51:95:f8:e8:f4:2a:54:cb:0d:26:0a:4c:0d:
14:a8:34:38:4a:8f:fe:1f:7e:5a:8b:4e:fd:50:7e:
56:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:B4:A2:83:07:B6:E9:F6:AB:02:61:00:A2:67:F6:81:14:19:88:5E
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/aLSigwe26farAmEAomf2gRQZiF4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.241.224.0/19
Signature Algorithm: sha256WithRSAEncryption
72:f5:16:82:94:f3:ee:12:89:dc:58:12:44:d6:4a:1a:0a:9f:
38:f7:51:a5:f2:71:c6:ca:2e:02:c9:77:2f:5e:1c:66:11:45:
23:6e:53:f9:5d:1a:36:54:64:5e:61:5d:83:2d:92:33:10:6f:
07:3e:69:69:97:cb:3b:18:fa:b5:37:3d:18:7c:bc:f6:67:8a:
3b:a7:df:c5:71:9e:b6:51:ca:07:2f:3b:b5:44:20:14:19:9e:
cc:53:be:a0:9c:21:0b:54:6d:cf:7c:16:93:e5:65:08:f5:e0:
dd:69:80:b3:65:84:8c:d7:5c:36:3d:d9:f1:08:7f:35:1d:78:
b2:f9:d0:96:87:5d:c1:45:93:22:1a:2d:1f:22:2b:00:c6:47:
2c:a9:37:4a:d9:6b:35:f0:de:ce:7e:b9:d3:2f:b1:80:f4:87:
a9:dc:e7:bf:74:e2:2c:5e:7f:bf:f4:00:c1:8c:8a:8a:38:a5:
70:8a:a0:71:e1:a6:90:fc:61:25:48:60:6b:b7:d4:99:b9:fd:
96:bb:06:4a:90:3a:dc:39:f1:9a:85:7e:a5:7b:bc:a5:3e:bd:
06:72:1c:c1:cc:00:af:75:ef:b9:81:45:4e:ec:0b:f5:55:4d:
42:63:79:cf:06:78:70:ab:e7:c2:42:00:98:3f:d8:fb:62:db:
82:24:3c:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:29:08 2025 by rpki-client