Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/ddJBFfXY_9Tg7Ri4a4wId9H9piw.roa
File: ddJBFfXY_9Tg7Ri4a4wId9H9piw.roa (raw, json)
Hash identifier: M6z/aW3RdUR3s/kYm5jYciSKAyQufjYMGfgbW9egZL4=
Subject key identifier: 75:D2:41:15:F5:D8:FF:D4:E0:ED:18:B8:6B:8C:08:77:D1:FD:A6:2C
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 11B4
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ddJBFfXY_9Tg7Ri4a4wId9H9piw.roa
Signing time: Mon 26 Aug 2024 05:17:51 +0000
ROA not before: Mon 26 Aug 2024 05:17:51 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 220.129.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:35:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4532 (0x11b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 26 05:17:51 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=75D24115F5D8FFD4E0ED18B86B8C0877D1FDA62C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:14:bc:59:cd:61:71:1e:af:77:dc:b8:74:9b:
47:88:1e:61:14:3e:20:9f:16:3d:a9:df:cc:84:08:
a3:65:d7:32:5b:54:38:c9:02:9e:47:73:4c:5d:62:
e6:5d:fa:25:55:ab:78:61:bd:84:7d:46:ee:8c:0f:
c6:24:99:58:7f:15:80:a7:42:19:67:eb:19:b9:91:
29:d4:01:4c:b2:44:f5:36:0d:55:2e:f0:4b:2c:84:
a0:12:0e:6a:84:e0:2f:48:e6:9b:91:d0:dc:78:34:
82:c7:d2:10:89:56:c1:b5:05:a8:81:f0:5e:60:54:
a0:b1:c9:2c:78:0c:3f:a2:25:ba:77:94:ae:11:24:
1a:1e:b6:a3:4a:36:e0:5a:78:d3:ef:22:bf:db:c5:
2f:24:53:53:62:8c:3b:ba:f8:cc:3f:7b:fd:b0:46:
31:bd:cd:e8:c2:d1:a1:3d:b9:62:6d:71:1b:63:da:
86:28:bc:a7:00:84:b7:fd:1a:f1:a1:4a:d7:e7:b9:
7d:04:93:b3:5b:27:04:9f:4d:9b:01:bd:e6:c0:00:
06:ba:4b:a8:66:a3:46:1b:6e:13:29:4c:2f:1f:0d:
c3:96:f1:43:53:ab:b7:66:e9:fe:e5:90:79:3e:a5:
eb:5d:2e:8c:a6:e6:72:fb:8b:b4:2c:1c:b3:46:84:
7d:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:D2:41:15:F5:D8:FF:D4:E0:ED:18:B8:6B:8C:08:77:D1:FD:A6:2C
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ddJBFfXY_9Tg7Ri4a4wId9H9piw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.129.0.0/16
Signature Algorithm: sha256WithRSAEncryption
2e:cd:30:b7:04:2a:07:17:c5:8e:28:6a:06:94:1a:6f:bf:42:
ce:47:00:89:81:e6:1f:cd:46:58:0c:14:39:27:34:f6:0a:7d:
33:af:0c:82:db:69:df:31:ca:5c:7f:7c:ac:28:dd:ed:ad:0f:
c1:16:19:04:ac:5d:55:0d:3c:16:e0:58:01:91:d1:c7:04:a4:
44:c4:6f:a4:ec:2d:79:6a:26:b9:cc:b3:af:5a:2e:4e:29:40:
08:c3:4b:9d:24:34:ab:6e:9d:d1:7c:df:34:f6:26:45:f3:08:
ce:31:6c:1b:33:88:8a:6c:1c:a4:f1:35:ce:bd:74:bb:30:7e:
e3:78:df:94:48:6f:a3:4d:2f:f2:d8:43:2c:2b:d0:08:0d:dd:
ed:48:9f:47:fb:3f:5f:8a:24:01:d5:af:2a:4c:be:64:0a:43:
6a:03:da:73:c3:d3:db:22:8b:45:6b:9f:ec:35:3c:aa:64:ac:
4e:c3:80:44:12:9d:ef:8d:ab:64:38:7c:13:40:9b:55:bb:ce:
36:ea:52:0e:fc:ae:9e:8b:ec:89:f1:7d:6f:58:b9:39:92:03:
8f:ff:b8:b3:ad:95:9c:93:aa:88:65:b4:92:73:25:56:4e:65:
5c:35:40:ca:d3:96:58:55:2a:ca:5d:0a:86:9c:92:57:1a:67:
94:52:4d:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:38:38 2025 by rpki-client