Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/b4wHWLk9JIeHz68xtjO5q1drUJU.roa
File: b4wHWLk9JIeHz68xtjO5q1drUJU.roa (raw, json)
Hash identifier: 8lSmcByKSqAgzjFLS/dTMie57ilu2An3pKRFjJfH6Lo=
Subject key identifier: 6F:8C:07:58:B9:3D:24:87:87:CF:AF:31:B6:33:B9:AB:57:6B:50:95
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1584
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/b4wHWLk9JIeHz68xtjO5q1drUJU.roa
Signing time: Tue 11 Feb 2025 23:44:43 +0000
ROA not before: Tue 11 Feb 2025 23:44:43 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131661
IP address blocks: 210.62.250.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:23:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5508 (0x1584)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:43 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6F8C0758B93D248787CFAF31B633B9AB576B5095
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:71:91:f2:e1:16:59:f9:2f:cc:7b:f3:fc:36:
a2:2e:d0:fe:fa:06:f0:31:f1:01:b4:6c:e4:18:88:
fc:4d:87:96:27:35:c9:e6:c2:68:88:18:f9:9a:13:
a1:a4:e7:70:46:1e:81:3d:6f:00:2d:02:31:fe:35:
85:e4:5e:35:b7:73:59:34:3a:b2:ea:f2:ff:5a:99:
4c:d0:5c:df:42:94:c1:6c:75:75:f0:b4:85:3b:49:
9b:05:ba:59:64:b8:a7:0e:92:2a:c0:40:84:18:e4:
e2:7a:70:6c:58:e4:a5:7e:1f:74:da:f2:d7:41:b9:
e0:0c:ef:d4:c3:6f:28:28:4f:08:da:9a:9c:6f:24:
68:af:93:43:a2:23:3c:9a:b6:ee:6b:5a:f2:c5:24:
33:bd:f4:18:e1:e0:56:e0:00:59:72:d4:5e:c6:04:
9e:a7:ba:19:2c:7c:6d:9e:cb:35:c7:9a:aa:f2:ed:
29:15:cc:7d:0e:91:43:22:1f:f2:f9:0b:8e:6c:be:
ec:ce:5e:86:98:08:56:8c:da:d1:1f:53:f7:47:6c:
11:f4:ea:4c:69:13:ac:a6:89:44:ff:b1:b5:21:92:
9f:6d:0d:04:6d:cd:3f:b9:07:98:bd:77:56:d9:74:
3c:27:29:6d:df:d0:69:3d:d6:c2:6b:ea:71:9a:ca:
c2:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:8C:07:58:B9:3D:24:87:87:CF:AF:31:B6:33:B9:AB:57:6B:50:95
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/b4wHWLk9JIeHz68xtjO5q1drUJU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.62.250.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:9c:ee:a8:b2:98:4d:6c:a5:d5:9d:27:76:11:06:6d:9d:73:
84:fe:b6:06:92:d3:fc:b6:9f:4e:0f:3a:e7:ed:5c:33:02:ca:
28:d1:ac:e7:46:0e:a5:4d:e1:20:21:85:3f:46:5c:74:02:c0:
82:b0:17:37:26:4e:fc:bc:1f:57:c4:6c:68:5f:ec:a2:e2:0b:
6a:20:cc:ef:3b:4b:33:1f:a9:ff:1a:21:78:ec:73:1a:38:dc:
7d:74:ed:fc:9e:4e:f1:b3:76:a4:24:64:81:27:e9:12:56:9b:
e8:43:05:e1:e6:6f:8a:57:a3:55:35:46:31:5d:ea:45:76:7c:
77:e0:b4:29:fd:b3:85:1c:77:81:5b:19:2f:c6:29:1e:d4:c2:
3c:c2:85:a0:b3:da:33:3b:a0:25:0a:4b:4f:5e:e5:f4:82:a9:
9d:33:58:7e:0e:6d:1c:e6:db:62:6d:b8:75:ee:d6:a3:88:be:
31:94:dd:20:49:59:2d:75:9a:0b:a2:8e:cb:f6:bf:96:a0:cd:
15:a6:a0:cf:29:b5:24:58:d5:ff:72:6e:c1:71:cb:f1:e7:de:
2a:97:13:17:ec:1e:8f:d3:af:00:df:a1:43:5e:7d:cb:6a:bd:
9f:94:78:18:48:3f:78:8c:0b:23:00:06:95:0b:24:c0:8c:a5:
c8:8e:41:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:36:30 2025 by rpki-client