Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/b_aSQCdfEdM46-iwTMgmvuzZQyM.roa
File: b_aSQCdfEdM46-iwTMgmvuzZQyM.roa (raw, json)
Hash identifier: 0U2TsbOdJeivHpuAS25nXq0CZBwHFfppe/eFcU/259I=
Subject key identifier: 6F:F6:92:40:27:5F:11:D3:38:EB:E8:B0:4C:C8:26:BE:EC:D9:43:23
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1428
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/b_aSQCdfEdM46-iwTMgmvuzZQyM.roa
Signing time: Mon 10 Feb 2025 14:34:40 +0000
ROA not before: Mon 10 Feb 2025 14:34:40 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 10126
IP address blocks: 220.128.80.0/20 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Feb 2025 23:44:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5160 (0x1428)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:34:40 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6FF69240275F11D338EBE8B04CC826BEECD94323
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:34:49:4b:62:7d:61:9d:91:37:bf:cc:25:05:
0d:44:54:54:d2:63:6b:8e:cd:7c:44:f2:8a:c8:4b:
7b:66:a2:5c:47:5d:1b:7c:da:e3:70:4c:9a:e4:db:
7c:c1:03:f6:50:91:78:d2:cf:4a:4e:18:e0:1e:26:
85:3c:f7:4f:d0:d8:d9:17:ac:a6:42:87:7f:57:f3:
22:a6:a8:c2:b5:ce:8c:be:74:68:dc:5b:44:e8:72:
9e:35:6a:59:65:4e:cb:3a:25:ee:b4:34:bf:93:b0:
8c:66:e9:ac:e6:7b:25:65:88:4f:a6:cc:85:8e:f5:
6e:86:8e:0d:c0:4c:45:24:00:dd:2c:2a:f5:ba:11:
72:cd:02:79:2b:95:77:50:28:3d:18:4a:45:6c:76:
d5:24:50:57:99:19:fb:d4:34:78:fd:06:b9:f0:e2:
39:a6:c7:ae:d7:95:e7:16:8c:df:36:87:a7:bb:71:
27:e7:c7:fb:1c:33:d5:63:90:79:6e:ca:2c:9a:f2:
4e:59:25:18:ed:51:75:8b:96:8b:01:43:93:bc:f4:
c1:60:c1:8b:ae:ed:57:d2:a0:09:80:e8:be:5a:a0:
d2:e3:f4:5d:f0:1b:9e:4f:c2:0b:03:6d:de:a7:29:
c7:0f:b0:5c:65:61:55:e5:cd:77:aa:ff:d0:60:81:
9a:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:F6:92:40:27:5F:11:D3:38:EB:E8:B0:4C:C8:26:BE:EC:D9:43:23
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/b_aSQCdfEdM46-iwTMgmvuzZQyM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.80.0/20
Signature Algorithm: sha256WithRSAEncryption
15:f3:27:18:4c:fb:d7:35:c3:84:06:7c:e0:f8:09:65:2f:ab:
89:d2:3c:52:6e:b1:1b:99:a7:0c:c4:c8:a6:0b:e7:39:d6:5c:
19:9c:6d:19:39:7d:b5:98:e0:d0:f4:aa:b5:c6:66:5f:d6:a0:
42:32:90:40:02:02:50:c4:8c:13:fe:68:1a:f6:66:6c:f1:56:
7d:58:a2:56:5b:60:96:85:c5:4e:a0:18:be:aa:ad:da:b5:1e:
a2:bf:23:e7:14:79:8a:30:83:e9:12:4a:93:9c:40:15:72:c1:
cf:dc:e8:fc:8a:f3:2a:c5:28:20:3f:da:2f:5e:1a:d0:77:30:
42:c6:0b:6e:78:71:87:dd:b3:ad:64:94:02:b7:3c:ed:63:eb:
d9:99:83:5b:6a:aa:98:f0:95:3f:41:3d:df:1b:91:23:56:61:
59:59:2a:bd:28:ff:b9:34:fe:d7:2e:a7:c0:c9:5b:2c:4c:e6:
8f:53:8f:fd:47:d6:1d:e5:f2:a8:97:80:aa:78:70:cd:43:38:
c3:59:0a:ed:84:bc:84:82:9f:81:10:b9:ca:07:78:4f:9e:39:
be:15:5a:ad:45:91:6a:2d:7d:87:26:f0:53:eb:dd:f6:7a:06:
7a:8d:ec:9e:b5:a9:ba:7d:ac:b2:9e:1b:2b:ba:d3:4f:5e:15:
5e:24:3d:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 16:35:55 2025 by rpki-client