Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/dvcjVtST579BMR5wMzizVeUpgEY.roa
File: dvcjVtST579BMR5wMzizVeUpgEY.roa (raw, json)
Hash identifier: nRh/KzbdHqieGUGiBQU2Te6ZC9L4xj7VZjj9mhGWYKE=
Subject key identifier: 76:F7:23:56:D4:93:E7:BF:41:31:1E:70:33:38:B3:55:E5:29:80:46
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1454
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/dvcjVtST579BMR5wMzizVeUpgEY.roa
Signing time: Mon 10 Feb 2025 14:34:49 +0000
ROA not before: Mon 10 Feb 2025 14:34:49 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 20940
IP address blocks: 210.65.144.192/26 maxlen: 26
Validation: Failed, certificate revoked on Tue 11 Feb 2025 23:44:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5204 (0x1454)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:34:49 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=76F72356D493E7BF41311E703338B355E5298046
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:c7:62:62:3b:97:ac:62:df:c8:e3:b2:b7:55:
54:9b:d7:6c:19:1d:3e:b7:21:7a:1a:2d:53:14:46:
8e:a9:54:a7:30:cf:c3:32:a5:e4:f0:13:0d:99:61:
25:f9:e8:01:be:e1:e0:a9:d8:69:e9:83:fa:5f:87:
51:35:55:58:1e:4c:32:cb:e6:1c:90:0d:9d:fd:be:
47:f3:94:8b:6a:c2:4c:e1:47:b9:9c:95:b6:0a:dd:
45:2b:c8:de:0f:b6:21:29:4e:c7:ef:a6:e0:6b:8a:
d6:2c:23:c5:41:58:41:03:3d:08:0a:6e:24:98:01:
3a:85:b2:7d:30:95:7c:e0:6c:cd:0f:eb:99:b6:0b:
c7:ff:31:8b:02:1a:13:3e:03:f8:99:74:85:41:f0:
b0:f4:90:6d:99:e0:8c:27:d4:7c:66:9b:47:1b:57:
47:87:c7:ea:fc:58:22:ce:fc:0d:b9:a1:75:63:af:
fa:06:33:f4:c4:96:50:ac:3e:df:8c:54:51:81:e9:
1c:6d:b2:41:17:33:08:e5:46:09:72:f3:1e:a4:38:
7c:55:9d:13:f8:ea:53:13:5a:c4:7c:a9:c9:25:0f:
c1:12:4b:77:d7:6b:d1:4b:04:c9:2d:55:6f:50:a5:
8b:9f:95:db:75:d6:f2:22:e0:e5:2f:ea:9c:f8:fc:
a7:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:F7:23:56:D4:93:E7:BF:41:31:1E:70:33:38:B3:55:E5:29:80:46
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/dvcjVtST579BMR5wMzizVeUpgEY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.65.144.192/26
Signature Algorithm: sha256WithRSAEncryption
57:3a:b9:f1:e7:d1:81:1c:fc:10:ca:5c:8e:37:3d:ed:9c:55:
ce:22:17:f9:71:6e:77:18:fd:35:89:af:33:3b:0a:d6:dc:5b:
4a:b5:0d:43:a4:a8:74:09:0f:75:3b:41:5c:c6:e4:83:14:68:
9b:9f:25:ae:53:b5:a6:f1:27:fe:56:f8:f3:60:09:7a:28:2b:
ad:da:65:0a:17:40:4d:e5:13:b8:08:5c:3c:8b:ae:ac:21:05:
76:9f:23:c6:a0:0d:eb:cf:06:3b:fd:6a:ab:35:5f:e1:12:e7:
a3:91:a1:cc:e0:78:99:89:5d:2d:8e:b9:32:7b:4f:ac:79:6c:
59:8c:bb:14:97:a0:22:78:57:33:63:b8:87:a9:fe:0f:3f:a3:
54:27:ba:71:fa:6e:3d:36:87:db:85:f4:eb:97:25:7c:93:9f:
9e:2d:7b:f5:df:0e:84:5b:ab:10:b0:ed:50:97:dd:d8:5f:d5:
aa:ff:e4:80:f3:a5:68:98:c8:32:fa:b7:dc:23:23:d8:6a:ef:
e0:5f:a4:b8:97:98:d0:06:cf:d2:5a:dd:16:9f:fe:a4:66:f7:
64:40:ad:6a:b9:a7:cc:c0:95:63:98:08:3a:49:df:75:0a:5a:
75:ac:4e:4f:89:f4:92:95:54:d4:2e:5e:67:b2:8e:e1:41:8b:
3a:b5:cd:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:24:49 2025 by rpki-client