Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/e73Gsa7ONi4CslwZTsSGcO_aTeg.roa
File: e73Gsa7ONi4CslwZTsSGcO_aTeg.roa (raw, json)
Hash identifier: MbUUqb/yqx7U0oOC/8A3ieVIfizG0pdSGgjbk1+VjdA=
Subject key identifier: 7B:BD:C6:B1:AE:CE:36:2E:02:B2:5C:19:4E:C4:86:70:EF:DA:4D:E8
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 14BF
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/e73Gsa7ONi4CslwZTsSGcO_aTeg.roa
Signing time: Mon 10 Feb 2025 14:35:15 +0000
ROA not before: Mon 10 Feb 2025 14:35:15 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 220.128.71.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Feb 2025 23:44:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5311 (0x14bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:35:15 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=7BBDC6B1AECE362E02B25C194EC48670EFDA4DE8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:7a:b1:ac:a9:ee:d1:7d:92:39:61:2e:9c:26:
5c:f3:98:6d:f9:34:76:56:0e:d4:b6:1e:01:76:5e:
aa:0b:ed:ba:d5:e8:46:ae:3a:40:87:db:f1:1b:b1:
b1:a4:0b:a0:0a:d4:23:ef:3f:70:5b:0c:45:f9:dd:
5c:9c:81:55:4d:10:0c:10:6b:fa:e2:bb:a3:83:8f:
82:83:21:9a:f9:79:11:bf:91:ef:18:96:b5:a2:ff:
48:c2:17:1c:7a:51:0d:e9:c6:f8:01:85:35:fe:8c:
64:9c:c9:51:1a:2f:29:a6:99:a1:1e:97:9b:1a:f0:
8d:33:d2:7d:48:3f:d1:b3:90:4e:15:2c:9a:95:31:
5c:51:4c:b0:cb:bf:96:de:3b:d4:26:8d:dd:0f:31:
32:3e:b8:1c:ff:f7:21:f5:a7:45:ac:52:19:da:59:
1e:91:63:64:9a:07:77:a4:09:6b:90:02:23:08:83:
f1:67:a6:ff:34:a5:37:a8:00:2d:46:9b:41:ba:83:
b4:0d:61:28:f5:b2:96:48:e0:24:b7:0f:6b:e6:cb:
3f:d1:6a:c8:58:cb:34:f7:b9:16:6e:23:b5:a3:d5:
bc:a3:4e:56:b3:bc:af:33:47:25:1f:ac:1f:c1:6f:
68:1f:0f:fd:c6:e7:00:93:ad:d5:8e:97:67:75:9b:
7e:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:BD:C6:B1:AE:CE:36:2E:02:B2:5C:19:4E:C4:86:70:EF:DA:4D:E8
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/e73Gsa7ONi4CslwZTsSGcO_aTeg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.71.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:3c:f5:0f:4a:ec:54:cf:5f:e4:83:13:3e:d2:44:4c:11:4e:
b4:90:e4:79:d8:5b:75:f9:da:72:bf:8d:27:81:92:ed:62:1d:
ee:2b:eb:74:e6:62:26:4d:16:ca:fa:13:a4:c2:35:f3:57:99:
73:2a:f9:47:36:e1:97:a8:0d:1a:36:69:7c:09:58:14:de:f3:
f4:db:07:7e:b8:ea:f7:0b:1c:39:cc:92:e4:b3:b2:f5:5e:c0:
05:cc:14:4e:20:99:08:16:41:fc:8f:10:28:89:0f:97:e8:7f:
18:13:06:27:c1:d9:31:54:60:fe:0e:02:3b:40:d9:a1:e2:f1:
5f:74:91:04:71:07:0e:1c:19:c1:ec:a0:3e:1e:93:c5:db:e4:
4b:b2:ec:0f:1f:38:c7:5e:ef:96:5b:66:99:51:0b:eb:85:e6:
5a:d5:78:2f:aa:db:3c:16:56:2e:09:7b:f2:73:8c:fb:d4:19:
8e:90:73:5d:26:20:65:ba:f2:82:1d:8b:7e:4c:c5:80:4a:4b:
6f:78:a7:1d:d1:fa:6f:94:44:0e:f1:01:82:93:08:01:97:01:
d7:d6:6e:e7:bd:65:aa:6d:53:84:f3:6e:cb:97:95:c1:d5:ad:
be:42:a9:98:12:bd:66:ab:89:5c:d3:90:87:23:87:e8:25:7e:
6b:d5:74:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:37:50 2025 by rpki-client