Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/blX0bRlg3egvynOjNVLr-fQkZw8.roa
File: blX0bRlg3egvynOjNVLr-fQkZw8.roa (raw, json)
Hash identifier: nNXkc35muBgr8rBJThrUpQY/NXkK01G4ni6mgJzYvvA=
Subject key identifier: 6E:55:F4:6D:19:60:DD:E8:2F:CA:73:A3:35:52:EB:F9:F4:24:67:0F
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 120E
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/blX0bRlg3egvynOjNVLr-fQkZw8.roa
Signing time: Mon 26 Aug 2024 05:18:12 +0000
ROA not before: Mon 26 Aug 2024 05:18:12 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 122.118.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:36:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4622 (0x120e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 26 05:18:12 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6E55F46D1960DDE82FCA73A33552EBF9F424670F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b5:1e:04:06:59:e7:77:c2:de:1a:2a:b9:6d:
ee:32:7a:cc:0a:e5:bf:f6:c0:38:55:ea:73:6b:e7:
61:65:d9:7a:10:27:16:ef:20:b8:d3:19:d0:c0:6c:
df:c9:a3:d5:b0:13:31:69:36:30:3b:b2:b1:09:9a:
2e:0e:c8:bf:d0:cc:73:bc:ff:ee:13:2c:e6:0e:b2:
44:7c:dd:f8:04:53:43:9a:c3:b0:be:c0:9c:c5:10:
ee:36:8b:86:49:74:b9:05:85:9a:47:40:23:72:04:
b5:65:26:77:4e:b6:54:f8:47:02:c7:e2:50:07:fe:
68:35:f7:83:0e:e7:21:3d:0f:a3:d6:43:43:f3:18:
5f:2a:3d:54:e3:b0:3c:a1:fa:ad:6a:4e:1c:e5:cb:
cc:a0:e9:b2:34:67:f2:10:10:20:09:30:c1:e1:8e:
2a:2a:06:37:05:1a:67:4d:ce:39:c9:07:d1:06:d0:
59:03:7a:13:e4:4f:1b:03:24:4f:60:99:61:8c:60:
9a:ce:87:c2:8c:a6:62:84:c2:a2:34:4e:18:5a:35:
35:0b:05:47:17:cb:5e:00:8c:89:fd:07:40:23:e2:
d4:ce:c9:71:a4:88:d7:f3:d5:06:e8:26:57:5e:61:
bb:fb:b3:21:fb:a1:86:05:b5:65:c9:70:03:13:62:
89:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:55:F4:6D:19:60:DD:E8:2F:CA:73:A3:35:52:EB:F9:F4:24:67:0F
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/blX0bRlg3egvynOjNVLr-fQkZw8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.118.0.0/16
Signature Algorithm: sha256WithRSAEncryption
34:85:c7:b1:a9:d3:ef:ed:4b:e0:5b:3a:80:41:0d:a3:8a:04:
bc:70:d1:50:5c:3e:e8:ca:b2:10:00:87:f4:22:ba:c2:e8:51:
34:3e:0e:ed:b6:de:2b:f5:11:d3:ce:a8:68:1c:e1:64:c5:e8:
d1:a6:20:a0:a9:b9:77:ee:31:b2:cd:2e:7b:9a:c4:b8:72:a9:
47:cc:06:0e:4d:d5:50:6f:58:dc:bc:75:a7:75:2e:cf:11:3f:
7b:55:2f:83:4d:75:ae:17:7d:47:0c:08:b0:62:b3:92:a4:4c:
46:4d:ee:fc:4e:de:e4:99:6d:4d:c4:99:a6:5f:40:4f:1b:56:
03:5e:07:c1:27:36:0c:fd:01:40:48:73:33:99:f2:12:7c:40:
b0:67:4b:c2:89:5f:80:2a:9d:09:7e:7f:98:8d:ce:7d:b8:f2:
b4:9e:6b:52:d6:58:4e:ee:73:fb:a3:e7:1e:db:0f:3c:26:68:
91:e5:f9:e3:8f:f1:49:1d:e8:ab:22:1f:50:42:cd:1d:69:bd:
12:58:94:bd:3b:97:90:d7:a3:08:7f:84:4e:13:1a:51:38:65:
a1:2f:5d:7e:cd:7c:89:72:d0:6f:60:3e:f7:ae:48:5c:da:9f:
dc:04:10:07:7d:20:e8:a2:b2:90:45:61:5b:41:1c:44:9a:05:
40:b7:18:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:23:18 2025 by rpki-client