Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/cdJHAttSnW_2vmQeWem9kHNZkZY.roa
File: cdJHAttSnW_2vmQeWem9kHNZkZY.roa (raw, json)
Hash identifier: HMfN9cl8mmxDDINIV9MAYkD/QT8mEakj2v8PdI21l+w=
Subject key identifier: 71:D2:47:02:DB:52:9D:6F:F6:BE:64:1E:59:E9:BD:90:73:59:91:96
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 151E
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/cdJHAttSnW_2vmQeWem9kHNZkZY.roa
Signing time: Tue 11 Feb 2025 23:44:20 +0000
ROA not before: Tue 11 Feb 2025 23:44:20 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 21859
IP address blocks: 210.61.104.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5406 (0x151e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:20 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=71D24702DB529D6FF6BE641E59E9BD9073599196
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:bf:d0:1e:c0:8b:e9:a4:36:66:b8:29:81:fa:
7f:81:50:69:d0:e7:7d:33:27:64:cf:f5:06:f8:9a:
6c:09:4d:a6:ba:c3:2a:27:45:f2:04:3d:3b:09:07:
94:91:48:43:c9:a7:0b:2e:bb:6a:3e:ef:37:4d:97:
4f:0a:0f:71:87:50:83:98:fb:6e:95:7c:87:fd:ce:
7e:f1:14:d6:a2:2d:05:7a:4f:45:91:67:f1:c6:4e:
b9:27:d2:db:54:99:95:eb:3b:08:ee:aa:3c:bd:a8:
d1:ce:4d:a3:91:9a:d0:8a:d1:c9:73:5a:5f:46:eb:
2e:c5:a8:8a:b3:b3:0f:ad:64:0d:b5:88:cf:37:94:
46:9f:59:00:e4:b6:2f:be:7e:be:5d:0a:9a:a5:c7:
0c:ca:80:7f:2a:35:f1:e1:90:04:4b:cb:1a:95:7e:
2a:77:7d:70:e9:47:34:57:bd:23:6b:8a:59:0e:52:
9c:6c:f0:f3:de:f9:2f:94:99:19:36:92:44:12:d2:
0d:db:c9:1f:5d:d9:52:36:16:7e:65:56:88:ae:d8:
96:de:f9:f3:92:62:cc:a7:9b:ba:84:45:c4:66:58:
1c:75:71:c7:1b:a5:a0:9e:ce:a0:d0:fb:a1:2a:a2:
5d:04:9b:dd:68:0f:5d:9d:e5:47:9d:4f:6c:9c:0f:
ef:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:D2:47:02:DB:52:9D:6F:F6:BE:64:1E:59:E9:BD:90:73:59:91:96
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/cdJHAttSnW_2vmQeWem9kHNZkZY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.61.104.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:8b:5c:f8:3e:cd:21:66:8d:a1:5a:51:18:19:b8:32:75:59:
ae:fa:03:65:14:05:c9:d3:ca:bd:bf:4b:02:a9:62:99:36:4a:
a4:9a:eb:8a:52:f8:e4:6a:fe:0a:6f:d5:5a:ff:3b:f1:e2:a7:
df:35:dc:23:c1:5f:fa:c1:04:92:b3:83:81:0f:c5:c2:76:c7:
4a:33:2b:ef:16:e8:28:ab:fc:c2:e4:65:e4:fe:40:ae:43:46:
58:4f:75:25:2d:18:ce:8d:da:71:19:d4:8e:58:04:6c:53:2a:
cf:ad:73:b9:5b:25:fe:52:7e:01:fa:e2:a3:4e:88:8e:10:f1:
3c:10:92:21:22:e1:1b:cd:99:35:8b:4f:5c:fa:a8:7f:2e:3c:
17:93:57:04:fa:78:9c:b0:24:aa:b2:9e:92:4f:06:65:b6:e6:
89:a6:b0:da:51:e6:6b:d6:02:44:d0:05:b2:f2:8f:ab:47:17:
a1:16:d2:5f:9c:fd:11:93:7c:cd:7a:f6:47:19:f5:0b:58:ba:
83:5d:ec:6f:97:70:c8:c3:2c:f5:1c:29:14:01:33:4d:35:c1:
62:90:ac:9f:a5:e0:2e:a6:9c:2d:87:21:af:cf:46:50:49:6b:
87:c1:65:47:c2:4a:47:90:ee:93:46:a0:5e:1d:4b:1b:09:3d:
8e:ab:cc:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:38:23 2025 by rpki-client