Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/aceKqvfBPb3u2o7lwaMGZmj1J2k.roa
File: aceKqvfBPb3u2o7lwaMGZmj1J2k.roa (raw, json)
Hash identifier: LC6MNr6VF1TJvrAKY75iBH28EyRGIBZ384wTs6fc9GI=
Subject key identifier: 69:C7:8A:AA:F7:C1:3D:BD:EE:DA:8E:E5:C1:A3:06:66:68:F5:27:69
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 145C
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/aceKqvfBPb3u2o7lwaMGZmj1J2k.roa
Signing time: Mon 10 Feb 2025 14:34:50 +0000
ROA not before: Mon 10 Feb 2025 14:34:50 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 20940
IP address blocks: 203.74.95.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Feb 2025 23:44:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5212 (0x145c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:34:50 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=69C78AAAF7C13DBDEEDA8EE5C1A3066668F52769
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:af:d9:42:cb:d1:bf:9b:e3:6f:4e:f4:99:3e:
1c:a8:a6:04:a4:04:70:29:9a:38:ae:ed:2a:d4:1e:
ef:bb:46:36:39:2b:ba:a0:05:90:ec:ba:6c:d6:da:
41:c8:42:c1:f1:1c:89:49:30:8c:c4:c3:07:71:d4:
c6:5d:7c:42:51:c5:a2:bd:c5:d9:0e:d2:22:e2:63:
ce:a4:88:02:24:91:b6:4e:f9:85:2c:ff:13:6d:51:
db:7b:cc:4f:ee:47:d4:c7:22:b8:ac:f9:eb:c0:0f:
2e:1a:82:cb:ce:e9:65:5e:ac:15:f1:5f:5a:a8:b5:
b8:b4:6d:1a:c2:e0:9d:d1:84:67:ee:68:c1:44:d6:
1f:3b:97:e6:ed:fb:9a:f0:3a:7e:51:26:47:51:2f:
72:4c:94:95:4c:be:47:e8:8d:23:ff:f0:63:a6:58:
ff:2a:7a:da:b8:3e:3d:1e:f8:83:bc:e5:98:fa:25:
63:c0:fc:46:bb:5b:f4:b4:c7:ea:46:e7:cf:af:87:
68:7a:76:27:07:a6:fb:10:23:89:9c:1a:b1:df:da:
7c:69:47:b0:59:7a:93:a5:48:ea:0a:fa:2c:a4:bc:
2b:16:cf:51:ec:93:8c:77:04:c7:52:ad:76:2b:11:
5c:02:7d:c5:fa:5c:69:9d:85:e7:4f:dd:a6:23:ae:
7c:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:C7:8A:AA:F7:C1:3D:BD:EE:DA:8E:E5:C1:A3:06:66:68:F5:27:69
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/aceKqvfBPb3u2o7lwaMGZmj1J2k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.74.95.0/24
Signature Algorithm: sha256WithRSAEncryption
48:cd:29:bb:f0:31:e7:54:1f:a0:54:6e:41:6b:92:0c:20:44:
4f:81:15:5b:74:fe:f5:f6:78:7d:f6:79:87:d9:d5:c3:85:92:
d2:4b:b2:c4:26:bd:4f:f4:85:5e:f0:2b:64:76:f7:b9:f5:21:
ad:03:dc:2e:72:88:4c:0a:37:6f:49:84:4c:e4:1f:6a:e6:3a:
c4:e4:07:48:73:e0:f4:41:a5:d0:a9:f4:a4:42:5c:38:e6:c3:
3a:ca:46:08:9a:3a:76:27:db:02:48:e0:bd:db:34:58:bc:f0:
f0:15:7a:cb:eb:fd:f6:ef:c0:e2:40:15:b5:70:97:9d:73:76:
df:07:03:f1:ca:18:0a:c4:91:22:26:c1:fe:5e:5e:bd:84:58:
ba:35:b6:40:bb:8e:29:cf:9e:e0:0f:94:16:52:24:e1:ac:00:
8d:c5:e2:6a:2e:25:9d:32:74:5f:08:88:be:5a:12:9c:c1:d1:
b8:b8:2c:81:8e:1c:a9:b4:fe:2a:1c:e4:6d:2b:00:bb:99:0f:
20:54:f2:05:0f:ed:47:65:b2:2f:16:27:66:26:b0:bd:44:94:
36:1d:38:92:b9:f6:27:7d:4b:3a:f3:0c:71:8f:4f:51:31:44:
f5:dc:d1:44:4d:25:49:47:3c:8b:bb:cc:d9:30:70:a2:f5:03:
05:8b:99:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:29:24 2025 by rpki-client