Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/aqZp-PYldSbrmieBxDQ5Uqkddmc.roa
File: aqZp-PYldSbrmieBxDQ5Uqkddmc.roa (raw, json)
Hash identifier: eosrSHe1Bz65tWNWo137eVAbmqFvGc3egR5Kg5maMdo=
Subject key identifier: 6A:A6:69:F8:F6:25:75:26:EB:9A:27:81:C4:34:39:52:A9:1D:76:67
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 11C6
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/aqZp-PYldSbrmieBxDQ5Uqkddmc.roa
Signing time: Mon 26 Aug 2024 05:17:55 +0000
ROA not before: Mon 26 Aug 2024 05:17:55 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 10126
IP address blocks: 175.111.192.0/18 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:35:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4550 (0x11c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 26 05:17:55 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6AA669F8F6257526EB9A2781C4343952A91D7667
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:b5:07:07:44:ee:d6:ff:f1:64:71:b8:7d:74:
8a:a6:f0:e1:69:04:d6:ce:90:c0:de:1d:90:c9:3f:
1f:57:3a:fb:74:00:fd:7c:78:28:b2:51:c5:11:e4:
d7:bf:24:66:98:ed:ad:4d:4c:33:76:fb:3b:a2:48:
03:85:d0:56:f3:2e:ea:10:95:b2:0c:46:77:e1:2b:
db:5f:df:7c:90:ca:0b:e1:a1:8c:98:cd:92:a4:a2:
14:9e:da:04:27:f1:d4:36:bc:7d:77:ea:74:48:30:
59:d7:02:e6:5c:2c:69:f3:07:18:4f:14:58:6e:96:
d3:53:49:ab:e5:b3:cb:ed:f0:c3:d0:88:eb:08:b0:
88:2f:27:97:e0:c1:42:44:23:86:83:94:5a:4b:1c:
b4:21:e2:a5:3b:5f:94:6d:44:1c:55:71:84:7f:60:
cd:05:43:ec:2b:ad:55:de:5f:73:a3:43:1e:ca:26:
de:19:12:09:36:5a:2d:16:9c:4d:cb:8a:74:b6:79:
45:e8:eb:bb:96:57:f9:ce:31:0a:80:da:f7:ae:c5:
74:3a:25:c1:8f:9f:6d:05:43:9c:eb:87:7b:a3:66:
19:3d:1a:e7:a8:e5:53:6e:28:82:c6:86:0c:b3:14:
7a:15:e2:ba:a5:a1:f1:0d:fd:04:53:a8:ae:e1:98:
0e:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:A6:69:F8:F6:25:75:26:EB:9A:27:81:C4:34:39:52:A9:1D:76:67
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/aqZp-PYldSbrmieBxDQ5Uqkddmc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.111.192.0/18
Signature Algorithm: sha256WithRSAEncryption
3a:9e:24:f9:07:18:75:69:2b:af:35:ad:06:42:62:db:fc:ea:
0d:63:37:22:16:94:d0:28:2a:b9:ca:aa:b3:7b:ec:81:7f:1d:
8b:9a:37:b4:59:9f:15:c1:4f:36:3a:73:17:33:da:91:90:52:
97:ce:b7:6d:45:bc:c0:83:71:09:32:be:a7:78:0f:91:3d:84:
02:2f:6a:53:4c:3d:88:2e:25:57:00:69:40:e4:40:49:27:8e:
23:df:1c:bb:07:6b:86:45:f8:83:87:ff:a0:bb:a2:1d:95:dc:
28:e0:04:a2:0a:8c:79:5d:fa:a9:81:ef:d2:63:52:ca:4e:0d:
98:fb:0e:90:e4:7c:4e:e2:21:b9:71:0e:5c:4e:bc:de:c1:a7:
28:60:7d:f3:1f:57:d8:5e:f7:88:b9:7e:83:5d:d9:8e:44:f9:
46:12:16:9c:7b:d2:48:a6:ed:4d:12:77:dc:2a:e1:31:e8:4d:
f2:8a:00:84:c2:ac:d6:f6:90:46:46:d1:c7:80:40:1b:9b:e2:
45:41:de:7a:ec:b8:51:98:f8:f4:5f:d4:4a:a6:9c:da:48:87:
72:d9:25:82:16:47:51:ae:c6:91:b3:f6:71:60:42:c0:f7:cc:
62:fe:4d:b2:e6:a1:b2:66:c4:30:97:40:9f:56:c7:33:37:18:
81:f8:24:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:20:20 2025 by rpki-client