Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/caqvdGgBAI0fEndV-kALYuO4NYs.roa
File: caqvdGgBAI0fEndV-kALYuO4NYs.roa (raw, json)
Hash identifier: z0rGqwR38+2ZiUl1jA2OppBS++45u4S161XSgEg6jvg=
Subject key identifier: 71:AA:AF:74:68:01:00:8D:1F:12:77:55:FA:40:0B:62:E3:B8:35:8B
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1500
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/caqvdGgBAI0fEndV-kALYuO4NYs.roa
Signing time: Tue 11 Feb 2025 23:44:14 +0000
ROA not before: Tue 11 Feb 2025 23:44:14 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 60.250.0.0/15 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5376 (0x1500)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:14 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=71AAAF746801008D1F127755FA400B62E3B8358B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:2e:19:3b:70:9d:57:79:cf:b0:28:41:57:c9:
74:56:c7:b8:93:f5:91:99:7d:0a:77:04:f8:77:6e:
c5:39:5f:6c:63:5e:c2:9e:0c:b7:ae:fc:20:90:f9:
f3:fb:ef:ab:01:cb:f4:4d:43:fd:a8:5d:33:fe:82:
e2:f0:0a:c8:80:de:ff:89:0f:6c:8a:63:21:77:5d:
52:21:0e:75:93:55:9d:d1:55:1c:01:55:2a:de:d4:
f6:00:6b:8e:47:29:2c:27:cc:af:68:48:43:39:06:
87:8d:55:77:9b:1c:c2:34:d4:08:d5:3e:6b:8e:f4:
4a:a3:64:17:45:58:f6:0d:81:58:3c:65:45:ff:65:
7f:81:f3:19:11:ea:41:f1:59:3f:f5:84:a2:e3:e0:
28:9d:20:d3:a1:da:20:c5:50:05:57:e8:b2:9f:f3:
1b:83:4e:64:cc:4f:da:98:25:5b:d6:91:b7:6d:2d:
c9:a3:61:41:51:77:93:27:e3:c0:ed:13:b2:92:df:
26:35:5f:c5:f8:5a:7b:54:ff:1e:4d:36:e8:31:86:
30:3a:c9:ba:ed:f3:1a:d5:25:a3:3e:9a:59:aa:c8:
ee:31:36:3f:1f:f0:31:59:c3:d3:25:0e:5c:f9:a2:
18:d1:0a:da:b0:8e:eb:6c:47:e5:d0:c7:f3:91:29:
6c:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:AA:AF:74:68:01:00:8D:1F:12:77:55:FA:40:0B:62:E3:B8:35:8B
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/caqvdGgBAI0fEndV-kALYuO4NYs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.250.0.0/15
Signature Algorithm: sha256WithRSAEncryption
4b:c7:71:c9:7b:51:f6:95:8e:88:82:eb:c0:35:85:60:ed:8c:
5b:93:a0:0a:2c:d8:5e:82:f2:90:6b:aa:fe:b8:34:0a:72:c1:
03:a5:71:57:87:36:36:6d:1f:8b:a0:56:db:0a:c0:3e:13:b0:
bb:ee:19:aa:d8:d0:6d:72:71:e5:cb:16:6e:af:ca:1b:e1:90:
f5:5d:ef:13:18:b3:f7:f7:73:fa:dd:90:16:8a:e7:a1:98:af:
ae:d9:5d:aa:dc:e5:5e:2a:7d:0d:08:a1:58:54:7e:a8:dd:b0:
32:89:81:c1:ce:ca:35:c4:08:fa:ee:c5:77:61:c1:d3:73:aa:
7b:8c:51:f9:04:dd:f5:0f:1c:28:af:19:11:7a:8b:4b:36:c5:
96:99:8e:60:d7:b8:ad:a2:ed:83:13:ef:4d:ee:19:7b:ca:be:
6d:79:39:34:89:49:19:33:29:34:82:8e:80:82:95:9f:71:69:
77:eb:9b:56:67:8a:cf:72:1c:ac:5f:0f:c2:4d:78:f1:e6:82:
25:65:33:e9:ea:a1:dd:49:85:25:5f:1f:3a:a6:18:da:a3:c7:
49:81:0d:2a:d1:49:8c:9d:66:3a:30:5f:9a:1a:e4:3d:2b:b5:
84:8b:77:99:ad:60:84:72:35:f2:6d:09:be:7a:11:08:ae:82:
03:5d:f0:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 17:21:53 2025 by rpki-client