Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/duJ2XCGWO16PniWOrsavlYPlmEY.roa
File: duJ2XCGWO16PniWOrsavlYPlmEY.roa (raw, json)
Hash identifier: 94mGyb+nXwA0sY/JnugfIWpRhcihGf5I5oa1rUDeVxw=
Subject key identifier: 76:E2:76:5C:21:96:3B:5E:8F:9E:25:8E:AE:C6:AF:95:83:E5:98:46
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 14E7
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/duJ2XCGWO16PniWOrsavlYPlmEY.roa
Signing time: Tue 11 Feb 2025 23:44:08 +0000
ROA not before: Tue 11 Feb 2025 23:44:08 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 10126
IP address blocks: 220.128.80.0/20 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5351 (0x14e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:08 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=76E2765C21963B5E8F9E258EAEC6AF9583E59846
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:61:d1:fb:26:36:48:06:8f:ca:9c:f3:f5:b4:
63:33:2c:e4:1d:25:24:13:78:e5:c5:d2:f9:be:f6:
53:49:88:44:db:d4:7b:d1:d1:d4:b4:fb:ac:68:97:
27:30:8b:66:19:af:be:ad:34:a6:51:56:7a:65:b4:
61:80:89:2e:be:11:60:65:47:08:14:a1:7d:b5:ef:
14:78:9b:d1:69:d7:56:a6:87:8f:7f:9d:75:84:ba:
9e:02:58:46:5d:cb:9a:72:25:20:4e:2b:7c:61:c0:
cb:f2:10:b0:56:48:d6:ce:08:1c:b6:82:17:68:d3:
d4:5a:41:8f:d2:21:9a:47:27:30:cd:db:3f:17:98:
2d:98:40:f2:27:94:89:8e:d2:bf:5b:85:cd:39:c4:
5d:5b:c6:ec:7a:6a:7e:45:62:e0:8f:fd:54:ec:7f:
48:ae:e4:ec:60:0c:b6:f8:08:31:1a:f5:5a:c2:17:
fc:f8:be:f9:3e:ae:f0:35:c2:1f:e5:68:94:66:f1:
25:63:11:42:98:25:36:2d:db:8a:1d:6a:ab:30:76:
59:50:1b:aa:5b:75:fb:ef:ef:0c:49:38:e1:d2:53:
42:ec:1a:10:cd:ba:bb:75:7c:72:41:35:81:22:ce:
b4:e4:56:7b:3c:37:4e:13:43:5d:8c:f4:13:c7:3d:
d4:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:E2:76:5C:21:96:3B:5E:8F:9E:25:8E:AE:C6:AF:95:83:E5:98:46
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/duJ2XCGWO16PniWOrsavlYPlmEY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.80.0/20
Signature Algorithm: sha256WithRSAEncryption
a1:9c:91:0c:5a:52:39:5d:4e:32:a5:a6:c3:03:de:b7:8c:41:
aa:6f:ae:74:b8:7c:3a:a1:ba:f7:af:ad:c7:ed:fe:ea:ca:2d:
5a:f4:82:14:72:fa:2e:17:cc:ff:28:b4:11:40:6b:e7:86:d5:
ba:e4:c3:aa:74:db:63:34:46:1a:0e:bd:c0:d1:7f:33:2d:f3:
a6:5e:73:57:0c:77:af:ac:86:b9:c7:58:14:b7:f9:a1:9a:70:
fe:2a:49:7a:4a:16:66:30:e7:56:1d:5a:98:44:08:ae:eb:9c:
47:d5:f9:7c:3d:fe:9f:5b:ea:c5:cc:b7:9c:c9:a3:03:51:01:
d6:9c:53:f7:7a:ad:25:29:e5:c9:30:2f:67:13:84:9e:4c:9f:
1f:71:04:90:01:c4:cd:13:03:51:ee:07:be:6a:ae:c1:99:89:
ca:fc:b7:31:8a:ee:55:1b:b9:c2:56:10:ae:18:76:14:27:04:
0a:3c:65:d8:10:26:0f:f5:bb:b5:24:84:b1:d9:71:c4:20:33:
0a:75:1d:66:5c:6e:b4:ae:8d:40:fd:b5:6a:23:08:2e:aa:d3:
01:cf:1d:47:7e:db:46:bc:86:c7:27:af:6a:26:fa:da:cf:c2:
3a:29:d4:53:7d:35:9e:70:82:26:bb:72:07:07:42:e7:e8:33:
96:fa:93:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:30:35 2025 by rpki-client