Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/dnjnw4jP2oi9f8JZRZvEWFNXKcw.roa
File: dnjnw4jP2oi9f8JZRZvEWFNXKcw.roa (raw, json)
Hash identifier: +dzYAirDU278Fxp/86imO99RXovp51I/lvdcmnqSvOU=
Subject key identifier: 76:78:E7:C3:88:CF:DA:88:BD:7F:C2:59:45:9B:C4:58:53:57:29:CC
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 11FC
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/dnjnw4jP2oi9f8JZRZvEWFNXKcw.roa
Signing time: Mon 26 Aug 2024 05:18:08 +0000
ROA not before: Mon 26 Aug 2024 05:18:08 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 61.220.0.0/14 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:36:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4604 (0x11fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 26 05:18:08 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=7678E7C388CFDA88BD7FC259459BC458535729CC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:78:fd:71:f4:c0:98:67:fc:20:77:a4:ec:f9:
a7:83:c3:77:8f:43:da:e2:37:36:10:40:35:dd:7e:
f8:23:8e:54:81:fe:b7:b7:a8:93:ee:3e:b4:5b:25:
c0:bc:64:79:7f:ba:7f:46:02:55:1a:b7:6c:fc:92:
6d:f3:7b:f5:ba:44:c5:81:b2:56:26:4c:af:10:75:
95:49:10:a0:2a:af:b9:c4:4f:9b:72:32:50:9a:e1:
f1:fc:a8:2e:a9:4e:a1:e4:c4:42:a7:26:1f:7e:52:
3e:50:02:89:07:40:74:fb:7e:bd:a1:b1:0c:6a:fa:
6b:06:f0:a1:88:cf:a9:dc:c5:e8:1a:f4:b6:cb:a8:
4b:f2:82:de:21:d8:85:15:b1:65:b8:ed:9c:e6:61:
6e:76:0a:a6:21:ec:e1:8c:94:1a:cd:74:6e:02:4d:
9e:dd:00:06:11:3b:97:54:79:ac:c4:13:ab:a1:46:
2e:99:b6:f2:73:d9:d8:06:96:c9:5f:6d:a2:c1:af:
99:e5:12:79:31:48:f1:8d:2f:43:e8:f1:d1:08:70:
4e:53:2f:5a:03:d5:31:03:f5:8e:24:f4:b9:34:e4:
91:58:b6:bf:cf:34:ad:0c:64:aa:f3:6a:1b:f6:ee:
87:13:f5:96:91:12:1e:39:d7:49:e4:0a:ad:b4:23:
04:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:78:E7:C3:88:CF:DA:88:BD:7F:C2:59:45:9B:C4:58:53:57:29:CC
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/dnjnw4jP2oi9f8JZRZvEWFNXKcw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.220.0.0/14
Signature Algorithm: sha256WithRSAEncryption
50:7f:62:f5:81:5d:33:d0:28:dd:a8:1f:61:6b:2a:8e:ad:a2:
26:d2:bc:25:68:db:e4:78:56:f2:3c:17:26:35:d4:fc:dd:ca:
68:7f:99:67:d2:3f:fb:82:e0:e4:a4:2d:f8:93:e0:a2:ea:b6:
3c:f1:73:83:4c:62:ad:89:16:06:78:8d:93:89:a1:e0:77:a9:
21:b0:6f:1c:bb:43:03:b9:a4:fc:5e:33:57:f8:27:5a:aa:24:
07:9f:38:56:fd:cf:fa:d3:4b:05:d8:2b:a9:14:4d:89:6e:b0:
34:7e:21:b9:06:7b:a2:15:c3:3d:63:1f:98:95:01:ac:8d:f7:
44:2b:0c:c5:a8:73:9b:df:e7:b6:87:bb:cf:09:ce:72:d0:25:
4b:a3:a1:22:36:3e:88:fc:f8:fc:b4:63:c0:21:8b:8a:19:c0:
0f:e3:dc:16:7d:01:b8:f6:a6:7b:69:ab:7e:df:95:6a:f3:ac:
36:b3:5a:0d:39:44:47:5a:6e:7a:28:ed:ee:e8:18:fd:4f:8e:
c3:72:1e:35:c2:cb:b5:58:cf:91:d4:ae:6f:95:ff:a4:7a:56:
fa:d3:f3:d0:94:6d:de:00:6b:b6:cb:2e:6f:b4:0f:06:51:bc:
a7:fd:9c:44:e0:03:b5:8b:83:9e:99:4c:9a:f0:a7:6e:11:0c:
00:01:6f:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:21:06 2025 by rpki-client