Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/bzXxG2L5q1_bPZw8k-ZFpGuk-W4.roa
File: bzXxG2L5q1_bPZw8k-ZFpGuk-W4.roa (raw, json)
Hash identifier: ek/8Kybmqgk7YJgTse2b6+UFfPKo3LmcHB0EdXmKs7c=
Subject key identifier: 6F:35:F1:1B:62:F9:AB:5F:DB:3D:9C:3C:93:E6:45:A4:6B:A4:F9:6E
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1511
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/bzXxG2L5q1_bPZw8k-ZFpGuk-W4.roa
Signing time: Tue 11 Feb 2025 23:44:17 +0000
ROA not before: Tue 11 Feb 2025 23:44:17 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 220.128.80.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5393 (0x1511)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:17 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6F35F11B62F9AB5FDB3D9C3C93E645A46BA4F96E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:4f:7f:1a:65:e5:eb:09:ce:a4:87:94:b1:3d:
d7:bb:7d:56:db:be:82:8b:f0:33:5f:28:00:37:79:
42:3f:5b:49:63:b7:3e:dd:1d:dc:76:81:72:6c:7e:
ed:ff:fa:3b:77:52:a1:11:0e:de:bd:b3:d9:70:60:
20:50:96:0d:5e:1b:f9:cc:91:27:fd:b6:6d:0c:56:
47:8b:8f:2d:54:1e:50:d7:5e:97:32:38:b5:16:b0:
f0:1c:52:ad:f2:9e:47:9c:ca:2b:fe:a8:b5:79:73:
cf:c1:d0:7a:b0:dd:ba:8e:6e:61:5b:b4:c9:46:50:
bc:6a:9c:04:21:fd:83:08:29:81:bc:79:02:0c:a8:
c3:bb:28:0f:47:69:19:f8:f9:07:dd:e8:7a:d6:52:
ec:27:d0:cc:ee:4a:b2:ec:a8:00:23:04:c5:2f:bf:
d4:90:ce:01:cb:9c:5e:20:74:b6:92:0c:ef:9e:ec:
f2:ea:06:af:4e:01:06:5c:4d:65:a8:16:23:60:db:
92:41:02:05:99:2c:d8:b9:ad:4a:bf:ed:e7:ed:9c:
f9:05:38:4b:78:a4:ab:f9:ff:5e:4a:b1:a5:ce:06:
fd:d8:a1:7b:53:33:51:b8:61:6b:40:48:8e:5a:b7:
e6:4a:64:51:f6:2a:d4:6f:a6:5f:37:9f:58:e6:c8:
d8:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:35:F1:1B:62:F9:AB:5F:DB:3D:9C:3C:93:E6:45:A4:6B:A4:F9:6E
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/bzXxG2L5q1_bPZw8k-ZFpGuk-W4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.80.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:25:4d:67:ea:87:63:42:0b:87:0c:ff:8c:7d:46:77:d2:23:
f9:7a:2a:82:1f:ce:8b:07:fa:63:bb:73:77:c0:9b:05:8c:04:
62:98:47:84:80:08:62:f0:bf:20:af:11:f3:47:49:07:12:6b:
ef:69:fb:05:d2:ae:5a:72:c0:1f:e4:0a:bc:b3:8f:c0:21:62:
78:8b:59:d1:10:bf:62:20:ec:6c:0d:b2:55:38:31:b0:0c:fe:
10:57:0f:fc:25:f7:2d:ab:61:01:fd:83:90:5a:4b:b0:c0:58:
79:8a:47:62:2d:75:8b:ad:8f:dc:2a:32:79:c5:ca:f6:dc:df:
23:3b:1f:f2:a5:8b:fc:9c:54:49:ab:e1:e8:be:27:9a:db:42:
99:84:0c:a3:91:72:eb:b4:42:2f:1d:9a:54:9c:dc:6d:b0:6d:
d1:9a:e7:d3:ce:78:e2:27:df:2c:70:46:e2:0d:dc:aa:96:df:
57:10:3f:ef:74:a4:82:ea:a9:cb:bc:1f:81:d7:f2:c5:34:49:
b6:6c:b0:73:52:dd:66:e9:56:ae:c1:25:cf:0f:6c:32:7e:78:
b4:9c:1c:ce:40:f3:af:cc:3a:f3:87:d0:8d:20:83:0e:16:4b:
17:d9:75:f2:9f:6e:dd:0a:90:1d:24:02:a8:13:0b:fc:e2:56:
70:13:bf:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:42:29 2025 by rpki-client