Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/cJAtjmq2C7e5AUv0oUs-txiCc_w.roa
File: cJAtjmq2C7e5AUv0oUs-txiCc_w.roa (raw, json)
Hash identifier: FNXB0xoLS1KJiyMgURAzId+MYx7XEF1NbkmL+Q0xY3w=
Subject key identifier: 70:90:2D:8E:6A:B6:0B:B7:B9:01:4B:F4:A1:4B:3E:B7:18:82:73:FC
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1451
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/cJAtjmq2C7e5AUv0oUs-txiCc_w.roa
Signing time: Mon 10 Feb 2025 14:34:48 +0000
ROA not before: Mon 10 Feb 2025 14:34:48 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 198949
IP address blocks: 203.66.126.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Feb 2025 23:44:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5201 (0x1451)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:34:48 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=70902D8E6AB60BB7B9014BF4A14B3EB7188273FC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:d1:69:2e:5e:ac:e3:be:1c:fc:70:f2:a8:86:
a1:30:0c:cc:eb:de:e3:3b:44:55:b6:7c:fa:29:df:
8b:1d:2c:e1:fa:61:25:f9:24:06:27:54:3e:51:49:
cd:55:2d:3e:55:19:95:93:75:88:69:d6:d3:2f:e8:
c6:5b:41:91:93:34:9a:f7:54:2a:0d:de:1f:d3:33:
ec:f6:76:c1:f9:d3:a8:55:cb:c4:47:48:4f:60:21:
6d:15:e5:77:dc:f1:ac:d1:19:a0:77:e1:1d:c4:31:
71:2d:7f:ee:de:2a:78:d1:e5:84:eb:67:58:12:51:
14:20:84:7f:ef:d1:3f:7d:5d:b9:79:51:0e:ac:b3:
26:9c:18:96:92:3a:e1:3e:22:33:4c:1c:18:ec:4e:
e9:d6:0c:b5:f4:45:b4:b1:b2:52:fb:bd:ca:86:1b:
20:45:c6:38:0e:fe:6a:78:0d:8f:aa:4c:17:ec:64:
4f:4b:10:c9:8d:9a:33:83:89:cf:07:33:26:95:11:
cc:0a:0d:f0:a9:b6:7e:a1:d6:17:96:24:c0:c0:db:
9d:cf:e4:35:dc:1c:00:09:40:fd:b0:2e:ba:3e:21:
c3:af:ec:ee:68:75:1c:6b:10:12:dc:d8:1e:94:be:
f9:9d:b5:c3:95:f9:d0:80:80:df:cd:2f:cc:a4:c5:
3c:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:90:2D:8E:6A:B6:0B:B7:B9:01:4B:F4:A1:4B:3E:B7:18:82:73:FC
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/cJAtjmq2C7e5AUv0oUs-txiCc_w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.66.126.0/24
Signature Algorithm: sha256WithRSAEncryption
29:bc:a0:e3:bb:ff:93:42:aa:fc:49:90:5e:fe:d9:c5:dd:20:
d8:42:a2:42:d7:a7:e8:32:c2:01:c5:b3:cd:10:6c:d7:5c:7d:
c7:bb:6c:96:56:12:f6:6a:d6:50:79:92:0e:03:27:44:cb:09:
53:a0:b6:73:89:29:19:12:30:f9:ba:ab:be:c3:7b:35:81:5d:
92:88:ef:09:db:80:89:ed:d3:6c:af:a4:b8:a7:2b:d6:9a:b8:
b5:f3:ce:58:cf:4d:ab:d9:4c:9b:64:39:1c:8b:fc:8e:ef:0c:
72:72:12:4a:02:3b:1c:73:78:b7:5e:98:07:d8:a0:99:0d:9b:
8a:07:1f:40:09:1f:cd:4f:c9:7a:a5:7d:ab:8f:3d:3a:81:25:
1d:15:21:11:fc:e1:6d:ed:3b:38:52:9f:5d:5b:60:a6:7b:0b:
67:c0:5d:f2:df:90:c5:3d:75:94:89:81:6b:6b:68:90:a4:01:
9f:02:67:bd:73:6a:67:ca:1b:05:40:e7:c1:35:89:68:f7:81:
c3:c4:f4:25:92:9a:6b:42:6a:f2:73:92:e8:80:37:9f:b0:35:
7b:d2:0a:a9:79:96:95:fd:b1:33:a7:b3:50:25:88:c3:4a:6c:
c2:bd:20:51:80:c4:e9:69:ab:40:4c:e8:97:42:bb:83:a7:a7:
09:24:22:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 16:29:53 2025 by rpki-client