Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/fpDJlc8_1O3MKX74AF_auijP9Tw.roa
File: fpDJlc8_1O3MKX74AF_auijP9Tw.roa (raw, json)
Hash identifier: saAE4dKh2OC9lwWxpV1XU93/HtlR78bxTTMU18iwpTw=
Subject key identifier: 7E:90:C9:95:CF:3F:D4:ED:CC:29:7E:F8:00:5F:DA:BA:28:CF:F5:3C
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 14D5
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/fpDJlc8_1O3MKX74AF_auijP9Tw.roa
Signing time: Mon 10 Feb 2025 14:35:19 +0000
ROA not before: Mon 10 Feb 2025 14:35:19 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 61.217.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Feb 2025 23:44:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5333 (0x14d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:35:19 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=7E90C995CF3FD4EDCC297EF8005FDABA28CFF53C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:41:df:0b:24:ad:17:55:95:f0:11:2c:e4:34:
64:d1:91:77:3f:b7:9e:22:9a:47:4d:9e:fb:61:70:
72:90:4c:f3:59:63:4e:cf:53:67:14:f9:a6:a8:b7:
a7:8d:46:27:bc:05:1e:d7:7e:38:cb:ef:4c:32:47:
c9:38:86:b5:eb:70:95:d2:52:4b:51:2e:5b:3b:12:
3b:14:eb:ad:64:c4:2b:83:4d:15:7a:30:4e:7b:70:
d2:8f:8e:7f:92:f3:4c:79:36:4a:c2:4c:a6:58:0b:
99:1d:29:98:5e:da:d6:66:93:d1:10:83:49:e7:45:
86:29:e4:57:c1:85:f7:4d:e9:d1:20:c2:ce:e1:f0:
f8:9a:78:30:db:37:61:a3:61:cd:00:83:51:fc:37:
ef:e3:e4:33:e8:3b:17:05:cc:bf:93:17:dc:2a:67:
0d:d4:7f:e3:3c:f1:b6:1e:31:53:e3:42:50:f1:7b:
a3:bd:ef:cd:53:c2:0b:61:02:1d:6e:98:40:5f:a5:
12:d6:d0:b2:f4:6b:5a:b9:a3:39:2a:e3:c2:fd:91:
e5:4e:ba:1d:ff:f5:d5:ae:36:17:cb:df:50:dd:26:
44:f8:b9:74:e4:3b:9c:9e:b7:b6:c6:97:5b:f9:5c:
25:a8:dc:1f:f5:b2:d0:d8:31:bd:a7:3f:8d:7c:d7:
6c:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:90:C9:95:CF:3F:D4:ED:CC:29:7E:F8:00:5F:DA:BA:28:CF:F5:3C
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/fpDJlc8_1O3MKX74AF_auijP9Tw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.217.0.0/16
Signature Algorithm: sha256WithRSAEncryption
68:4b:cf:3e:b9:93:27:3c:aa:17:a0:e8:23:56:7c:ba:09:02:
64:61:af:b8:41:58:9a:db:82:41:e7:9b:15:44:79:2b:03:dc:
68:fe:d5:7b:a0:da:83:a3:58:47:6b:17:b6:bf:d3:79:9f:7a:
44:9a:97:f8:5d:eb:ee:e9:8f:ea:a9:d3:42:51:2d:4f:d3:e1:
bd:d4:c5:db:78:0c:54:cd:45:28:5d:1b:1c:af:c6:d9:23:e7:
46:80:0e:0f:a9:87:49:68:b4:76:12:45:01:cf:8c:e9:6a:43:
82:b6:34:99:28:a8:c5:97:b9:03:23:de:dd:2a:45:03:82:c8:
55:e2:5e:fe:7e:2f:92:56:3d:22:ce:19:87:b9:5e:73:ac:ce:
79:d1:9a:bb:c1:67:06:bd:a5:a6:a2:68:32:5d:52:31:74:03:
2c:aa:01:c8:90:9e:6c:dc:fc:35:e3:e0:21:93:bd:cc:f2:fb:
db:f9:32:45:7c:11:56:34:35:ce:56:b3:58:a6:c9:74:e0:4a:
ee:dc:87:a5:0e:4a:11:9a:65:e7:17:1f:37:ce:29:c0:2f:28:
33:9b:e2:e2:4a:d2:bd:b8:90:e1:17:b7:db:4f:10:aa:43:09:
3c:e8:ef:d7:81:96:85:27:7d:6f:f1:93:9b:d4:0a:0a:5a:e2:
5f:01:fc:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 16:38:57 2025 by rpki-client