Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/cB18r0mwM0cyJz--c9HlxY4lmkU.roa
File: cB18r0mwM0cyJz--c9HlxY4lmkU.roa (raw, json)
Hash identifier: 8SAQnvPeDeagPgbYJN3JTnwcandLTZw7rfrhXGJhE4s=
Subject key identifier: 70:1D:7C:AF:49:B0:33:47:32:27:3F:BE:73:D1:E5:C5:8E:25:9A:45
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 145E
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/cB18r0mwM0cyJz--c9HlxY4lmkU.roa
Signing time: Mon 10 Feb 2025 14:34:51 +0000
ROA not before: Mon 10 Feb 2025 14:34:51 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9505
IP address blocks: 203.78.176.0/20 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Feb 2025 23:44:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5214 (0x145e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:34:51 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=701D7CAF49B0334732273FBE73D1E5C58E259A45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ac:23:e0:79:13:ca:20:6d:48:78:67:73:f2:
74:93:8e:23:a6:b2:48:fc:a3:af:a7:a3:e3:c6:a8:
03:c7:11:04:d5:53:9e:a2:f0:1e:0c:05:7d:84:24:
d3:a8:7b:de:d9:33:b3:67:cf:8c:6e:d8:dd:86:82:
dd:ab:88:66:cb:7e:47:d5:89:01:86:b2:8b:f8:06:
c2:02:e4:ec:a6:07:c9:4b:05:c7:29:e5:2b:ad:dd:
ea:a2:4d:74:47:01:b6:49:66:54:49:88:f4:dc:2a:
5b:d4:9b:5f:46:19:5e:7d:b7:92:2d:ce:91:ad:5b:
f1:fb:31:69:15:95:f7:93:09:7d:10:47:28:fe:2c:
a8:28:1b:ba:32:e6:b2:60:78:7f:fc:45:55:90:13:
2b:51:ec:61:75:ac:77:d1:39:d0:3c:11:47:1e:15:
a7:a2:96:4c:9f:ee:e0:92:af:b6:29:9c:70:1a:91:
16:6c:d0:69:b3:63:33:c7:15:26:22:31:ee:19:f8:
d1:f4:c1:11:cc:81:97:5a:d8:c6:a0:21:e6:b8:5f:
ca:58:2a:ba:c4:a1:62:c5:56:a8:ef:b6:72:2c:6f:
e5:8c:18:81:72:a2:d3:64:5a:e1:c0:52:3d:62:ec:
46:1d:ab:64:68:eb:94:87:37:1f:30:8f:c5:3d:b2:
99:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:1D:7C:AF:49:B0:33:47:32:27:3F:BE:73:D1:E5:C5:8E:25:9A:45
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/cB18r0mwM0cyJz--c9HlxY4lmkU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.78.176.0/20
Signature Algorithm: sha256WithRSAEncryption
02:a4:61:9f:68:ad:1d:ca:3e:8f:b7:c5:d3:f7:ad:53:20:43:
16:43:ac:2e:8a:e5:e0:49:7e:b3:3d:29:ae:9f:48:51:14:81:
70:b8:4a:df:23:f9:79:a5:be:6d:a9:ab:a5:e9:c2:f2:e3:ec:
dd:8e:ee:5e:b4:d4:1d:a8:55:f5:54:df:cf:57:a6:a3:1a:ea:
1f:98:93:c3:a8:e7:18:46:ce:d1:41:6c:5a:55:f7:59:d9:10:
90:ea:76:e7:5b:f2:23:2f:3a:3d:a1:7a:82:b9:6f:ff:d1:d6:
43:34:ee:65:af:15:9a:99:12:54:2c:b9:aa:a6:d7:03:6e:17:
e7:08:3f:25:fc:f1:3b:33:aa:9c:8e:85:94:3c:5f:0c:af:98:
60:54:37:68:ef:ee:ee:06:aa:29:0f:c8:7a:ec:4f:c4:c6:c1:
97:9d:86:67:8f:81:5b:17:c9:b2:07:5f:d3:24:87:94:78:b7:
9f:52:7d:14:dd:40:5a:95:a2:7f:bf:41:b2:67:7f:db:fd:e0:
f4:2d:b7:1c:94:99:2b:b0:8e:1b:e9:9b:47:41:b6:a9:14:52:
e3:ca:d5:0a:2b:dc:9c:93:ac:52:b4:c3:c2:df:d0:9f:be:31:
51:bd:54:8c:32:fc:69:f3:3b:ae:a5:f7:16:c1:80:fa:12:57:
39:ed:d7:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:17:49 2025 by rpki-client