Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/c8T6we3LVCXPC6DXMQhttj9RTe4.roa
File: c8T6we3LVCXPC6DXMQhttj9RTe4.roa (raw, json)
Hash identifier: 93GiAaoYCKxWBKX6JDIgNjysfUYdE0l8wdK4Akc8tJ8=
Subject key identifier: 73:C4:FA:C1:ED:CB:54:25:CF:0B:A0:D7:31:08:6D:B6:3F:51:4D:EE
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 149F
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/c8T6we3LVCXPC6DXMQhttj9RTe4.roa
Signing time: Mon 10 Feb 2025 14:35:06 +0000
ROA not before: Mon 10 Feb 2025 14:35:06 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 36040
IP address blocks: 2001:b032:c0ff:2::/64 maxlen: 64
Validation: Failed, certificate revoked on Tue 11 Feb 2025 23:44:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5279 (0x149f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:35:06 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=73C4FAC1EDCB5425CF0BA0D731086DB63F514DEE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:0b:12:63:6e:ea:0d:15:d0:50:48:4b:ee:67:
97:70:47:1d:b3:ec:43:0d:f5:e8:5b:71:88:b6:c9:
ef:e7:aa:17:32:c4:39:be:45:76:7a:c2:ba:ae:b1:
bb:cb:51:97:52:92:1d:d8:a6:51:de:f9:2b:93:b7:
78:d4:03:10:6f:d8:64:29:33:fa:3e:25:98:bd:ac:
1d:6d:7c:3c:86:18:e6:78:fe:25:95:8e:c9:1b:a9:
60:52:fe:37:63:d4:cd:5e:6a:1b:76:8b:36:65:af:
90:37:b6:ea:3d:b6:ba:43:4a:c7:33:2d:de:6c:7e:
15:72:ba:15:1e:96:eb:a4:65:92:73:b8:c1:c1:02:
1d:db:f4:02:5b:68:1b:79:39:1f:15:d1:65:96:e5:
8c:d8:9f:fb:59:49:e1:97:ff:2c:15:9a:38:3a:61:
4a:c5:b1:33:f6:2e:86:8e:34:77:43:f1:40:89:7e:
54:a0:09:a7:2e:6f:91:fe:98:80:71:48:71:aa:6a:
34:63:4b:71:c2:9a:98:44:c7:a6:42:00:27:fc:3d:
46:36:31:b4:0c:7b:ca:72:d4:1b:57:ec:0e:c1:e8:
d1:52:e0:0a:46:32:04:f8:27:65:d8:51:fc:32:b3:
ab:64:54:f9:3a:22:2e:0a:fa:5a:bc:7d:30:37:1a:
de:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:C4:FA:C1:ED:CB:54:25:CF:0B:A0:D7:31:08:6D:B6:3F:51:4D:EE
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/c8T6we3LVCXPC6DXMQhttj9RTe4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b032:c0ff:2::/64
Signature Algorithm: sha256WithRSAEncryption
97:dd:fe:40:b5:4f:3f:bf:c9:8b:c2:3f:8f:62:af:5a:bb:70:
0b:0d:19:5e:72:f5:86:4b:5f:91:88:08:e2:8f:4b:d2:f8:01:
af:7b:64:4d:dc:6e:53:83:64:94:81:89:2e:51:09:0d:bc:e3:
50:1a:ca:63:7d:cf:ef:18:af:7a:9e:b1:a2:b5:44:89:03:53:
47:ec:64:e0:84:74:ae:4c:f3:dc:21:d1:44:3e:3f:de:23:5a:
a7:98:43:5f:61:08:39:b9:45:78:1f:91:41:c8:17:a1:24:43:
4b:70:b8:3e:e4:b9:f2:1e:c1:7f:fc:93:27:4f:5d:69:82:2c:
bb:fa:fa:d7:b0:60:79:86:65:d2:a8:7d:47:aa:92:b2:50:b3:
48:fe:cb:68:c9:37:0b:1d:c2:ec:a6:e0:dc:40:b5:e2:df:14:
cf:49:76:92:aa:08:4c:c6:c1:5a:a7:c0:04:15:8e:ed:22:9f:
8d:aa:a7:1d:a4:dc:cd:96:a8:d3:95:b2:ae:11:25:d6:d1:cc:
04:d7:0f:e4:55:9b:8a:7a:36:56:58:ff:76:44:e0:5a:20:2d:
be:78:40:f4:52:7b:62:40:d0:56:a6:e3:4f:1f:66:e1:ef:3a:
f1:68:0a:40:db:28:1a:2c:86:7f:ff:0b:bb:9e:f0:a8:d5:f9:
fb:72:47:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:17:13 2025 by rpki-client