Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/b-zWGoW86SbJom26qMJYIymUp40.roa
File: b-zWGoW86SbJom26qMJYIymUp40.roa (raw, json)
Hash identifier: etmDVm+8wY2LrOANn4OSGgKbOLmGf4Gl+c6mScOymN8=
Subject key identifier: 6F:EC:D6:1A:85:BC:E9:26:C9:A2:6D:BA:A8:C2:58:23:29:94:A7:8D
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 119D
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/b-zWGoW86SbJom26qMJYIymUp40.roa
Signing time: Mon 26 Aug 2024 05:17:43 +0000
ROA not before: Mon 26 Aug 2024 05:17:43 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 211.22.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:35:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4509 (0x119d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 26 05:17:43 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6FECD61A85BCE926C9A26DBAA8C258232994A78D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:bb:db:b7:94:ff:de:a6:9b:b3:3d:0b:73:9f:
7f:e1:2d:f1:e1:01:43:c9:32:3c:e0:68:37:5c:09:
39:6b:1f:5b:b7:f8:4e:51:9d:ae:6c:b6:8b:37:d4:
89:eb:42:34:e0:66:65:20:63:9b:f4:92:26:70:1b:
94:eb:14:b0:3d:d0:78:63:84:41:f4:07:6a:77:ea:
0e:e9:58:c1:a7:c9:7b:3f:77:5b:f1:9f:d2:05:93:
82:6e:4b:04:c3:17:0f:e8:c5:a4:13:1b:8d:7e:1c:
05:1d:9f:43:01:a2:07:7f:90:d5:3e:f2:ea:32:ad:
5b:4a:1c:31:98:d2:32:f3:0d:40:eb:00:c9:4c:d1:
eb:27:54:cb:b7:be:b4:a4:cc:46:7a:0b:41:c9:ed:
73:9d:6d:3c:fa:8a:9a:22:1e:21:14:12:75:d8:16:
ec:7e:3b:91:84:4f:5b:93:ee:1b:8a:1f:94:4b:4b:
1a:df:62:50:7d:f5:25:f5:08:fa:78:7a:96:ee:8e:
0e:18:96:c9:fc:3e:7b:41:fe:9b:08:1d:72:7c:15:
f7:5a:52:af:bd:b9:e2:2c:31:1f:d6:04:2e:55:f9:
50:15:33:fa:53:48:69:16:80:93:8d:e5:47:28:7b:
ab:d1:85:f2:72:5a:26:c6:d0:db:0b:31:75:d2:fc:
f4:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:EC:D6:1A:85:BC:E9:26:C9:A2:6D:BA:A8:C2:58:23:29:94:A7:8D
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/b-zWGoW86SbJom26qMJYIymUp40.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.22.0.0/16
Signature Algorithm: sha256WithRSAEncryption
8a:9b:6f:a6:21:e5:9e:23:da:cf:4c:d9:4b:7d:7b:54:7a:60:
3e:86:ee:62:2b:b1:de:7e:3f:fb:5b:d3:40:f7:6c:c9:38:d0:
f5:19:ee:f1:89:c9:d8:cd:26:07:71:9b:9f:f9:b7:f2:e2:cc:
65:59:30:01:20:60:12:71:33:8a:ac:ea:e9:cc:97:bd:11:25:
55:4b:61:0e:81:52:32:34:82:a6:3a:14:a0:23:97:e5:be:4a:
af:0f:dc:61:10:53:a7:ee:70:6d:26:38:eb:5c:6d:5a:f5:d9:
4a:be:51:e4:a1:b1:d1:85:f5:a5:ef:6a:f2:dc:21:48:66:b4:
c9:da:61:af:35:91:a9:e8:1f:e4:48:4a:a0:76:68:34:dd:f6:
bf:c5:50:76:5b:c1:c6:0e:e1:b7:29:d1:10:94:30:8a:5a:b1:
5a:af:d6:a6:35:f2:aa:15:eb:f4:d3:01:ee:dd:b6:0a:6e:8d:
29:ce:ce:eb:cc:6f:f0:c9:af:5c:ef:bf:e0:3c:60:59:d3:4b:
68:4f:c4:06:6e:b7:4a:12:ff:12:c4:96:2e:45:00:44:ff:e1:
f6:64:d7:98:b7:2e:7f:7e:41:04:54:f9:68:5e:ee:e6:2c:08:
59:51:e1:4c:3d:f2:a0:ba:bd:dd:9b:78:dd:7e:92:d7:9c:bf:
00:fb:db:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:22:20 2025 by rpki-client