Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/ccibQ1mOBlp3qvioUxWkiMfw8II.roa
File: ccibQ1mOBlp3qvioUxWkiMfw8II.roa (raw, json)
Hash identifier: XEPrVoLrLgsu1Jn/emIZE05WpRpT5f/ycpjRkmuZqrg=
Subject key identifier: 71:C8:9B:43:59:8E:06:5A:77:AA:F8:A8:53:15:A4:88:C7:F0:F0:82
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1203
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ccibQ1mOBlp3qvioUxWkiMfw8II.roa
Signing time: Mon 26 Aug 2024 05:18:10 +0000
ROA not before: Mon 26 Aug 2024 05:18:10 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 20940
IP address blocks: 2001:b034:700:600::/56 maxlen: 56
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:35:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4611 (0x1203)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 26 05:18:10 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=71C89B43598E065A77AAF8A85315A488C7F0F082
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:88:ef:31:b7:57:83:84:41:40:84:b5:6d:b0:
65:2a:a0:ee:59:c3:50:96:ff:13:5f:c5:49:9f:c2:
b6:b1:73:11:d2:eb:e4:06:cb:82:d4:df:d6:b9:40:
45:02:1d:8d:09:a6:13:bc:f6:57:f4:74:aa:59:7c:
9e:22:01:55:5a:de:00:9f:ec:5b:6e:81:0e:aa:ed:
a8:0a:65:ff:f8:42:66:f0:78:cf:11:24:70:ce:f9:
79:2e:64:dc:3c:b8:56:53:fd:06:2a:a4:22:57:08:
47:de:d6:72:dc:2f:ac:f4:a9:38:1c:07:a8:90:e2:
c9:c7:e1:06:7b:90:63:f4:03:35:74:74:bf:ac:77:
ca:ac:55:d7:45:d4:bd:35:f5:62:34:23:a2:8d:97:
88:3f:87:b6:56:31:21:74:48:a6:d0:71:d6:75:d0:
9b:43:c9:8d:98:1f:c4:80:fe:bb:28:ed:3e:71:f8:
86:d7:2b:f5:e8:47:d1:83:e2:28:9b:12:24:5d:d1:
a1:e8:bc:36:15:ef:7b:41:2e:39:36:37:a8:6a:96:
b6:a7:e7:75:ef:1c:2c:f4:fc:51:0f:8e:b9:61:f2:
77:f3:6c:13:a6:40:95:fd:dc:7c:9f:96:9b:6f:4b:
4a:10:df:17:35:95:3b:b8:f4:d5:98:22:6d:dc:0d:
e0:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:C8:9B:43:59:8E:06:5A:77:AA:F8:A8:53:15:A4:88:C7:F0:F0:82
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ccibQ1mOBlp3qvioUxWkiMfw8II.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b034:700:600::/56
Signature Algorithm: sha256WithRSAEncryption
88:3e:c5:d1:ce:c2:bb:f3:8c:ef:86:4e:ae:9e:e6:94:a2:57:
8d:4b:e9:d6:42:28:b4:e6:3e:23:3a:34:fd:93:6f:2d:d3:c7:
fb:55:99:14:38:66:f9:a3:25:f5:73:40:cf:b3:e6:52:ec:f1:
88:d4:be:1d:d3:f1:49:d1:c8:41:26:28:20:34:83:54:9c:26:
2c:f7:46:d9:dd:d3:ad:1d:38:0e:34:3e:29:92:b9:09:37:9d:
ec:da:7e:a9:8b:75:f6:ac:54:ef:47:db:34:71:1d:24:01:15:
bd:6d:d7:2b:0a:87:d7:5a:88:e9:43:f9:94:41:7f:1b:40:66:
17:e6:a5:1d:1d:22:ee:b8:41:75:5c:af:6d:45:37:5f:5c:5d:
f2:4f:97:06:a6:4b:7a:47:27:b9:79:f8:41:c8:0f:cf:7c:0c:
a4:f8:16:4a:17:c5:c2:9e:16:f0:fa:d6:b1:1f:21:ac:f1:1d:
f5:cf:94:ac:be:0a:14:99:2a:52:96:62:74:f2:53:da:7a:22:
25:6c:8b:7c:9d:8d:f9:b2:82:bc:b7:42:8a:a4:24:41:1a:8d:
0d:53:9e:50:53:ca:86:57:e3:38:c6:ef:05:76:2d:78:4f:51:
43:4b:7c:3a:d1:ca:b8:57:55:46:01:f5:93:79:2d:de:1b:2f:
b9:6f:6c:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 16:38:58 2025 by rpki-client