Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/g0TqfnINBeJv4ufd-uxlLdVclKg.roa
File: g0TqfnINBeJv4ufd-uxlLdVclKg.roa (raw, json)
Hash identifier: L/3YLfahZX9W2AleXDX6Nfmv+/+5xgGD0P2fyvq9vDE=
Subject key identifier: 83:44:EA:7E:72:0D:05:E2:6F:E2:E7:DD:FA:EC:65:2D:D5:5C:94:A8
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 120B
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/g0TqfnINBeJv4ufd-uxlLdVclKg.roa
Signing time: Mon 26 Aug 2024 05:18:11 +0000
ROA not before: Mon 26 Aug 2024 05:18:11 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 218.164.0.0/15 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:36:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4619 (0x120b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 26 05:18:11 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=8344EA7E720D05E26FE2E7DDFAEC652DD55C94A8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:b3:52:4e:83:e2:f8:95:7f:bc:db:aa:7b:90:
f5:f2:d8:db:df:7e:26:c8:d8:24:f1:32:73:a7:34:
ae:84:ec:e6:7d:fe:ab:a0:5a:0c:16:97:8b:db:4a:
27:92:9f:a3:88:0c:f8:0c:87:ef:15:c6:72:4e:cc:
ef:8b:9e:f1:38:f2:ce:e9:8a:2b:8d:5e:92:e3:08:
31:05:dd:cd:72:75:94:5e:f5:df:e8:dc:53:ae:8c:
7a:99:80:a1:e5:ec:6a:f2:a6:f8:64:29:ec:fc:c9:
9e:27:cf:d3:a3:14:b4:f9:e1:71:b0:e8:4d:b8:80:
53:44:4c:8b:f2:bd:59:13:d2:0a:db:4d:38:79:b8:
49:dc:11:11:35:26:56:34:25:d5:dc:85:0c:37:41:
ce:20:2c:de:10:57:78:43:fb:65:86:d6:6b:d1:a4:
47:0f:b3:d3:26:25:a1:f7:d2:cc:1b:78:53:15:9e:
37:4f:63:a1:c5:40:e7:26:cc:81:80:86:d1:a0:56:
79:bc:09:6f:f8:7a:eb:c6:90:c8:42:0e:75:22:29:
55:de:14:2f:7c:d4:29:9b:96:32:57:07:85:a7:01:
3d:69:c7:08:94:9e:2c:bf:90:30:50:9d:24:12:cc:
4c:50:e2:df:bb:22:a7:13:a4:0a:aa:37:96:95:b2:
24:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:44:EA:7E:72:0D:05:E2:6F:E2:E7:DD:FA:EC:65:2D:D5:5C:94:A8
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/g0TqfnINBeJv4ufd-uxlLdVclKg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.164.0.0/15
Signature Algorithm: sha256WithRSAEncryption
8b:ae:71:7b:61:60:d4:83:7d:f1:04:0e:d5:22:a0:d5:45:72:
50:47:e6:30:e6:b2:80:f9:3c:e6:9c:ee:dc:10:7f:a8:0c:b4:
99:d7:3a:d9:d0:b7:ec:ed:fa:2b:72:1b:a6:15:51:c6:db:f8:
0e:84:63:82:10:8b:cf:29:11:7f:f7:ff:e8:bc:0d:05:54:00:
0a:81:03:00:0c:fb:92:a0:65:6b:33:c9:a0:0d:d9:12:c6:8b:
c3:e3:16:df:79:e1:8e:4a:16:09:d0:8e:ae:73:4c:a8:97:df:
b2:09:87:fe:19:c2:4d:ed:90:29:3f:94:42:42:bb:f3:9d:04:
65:6c:d4:a7:c8:a2:50:79:97:71:46:a1:19:c6:61:57:e3:e8:
90:2e:a9:04:cb:cd:ca:72:9d:2a:04:dc:23:b0:dd:0e:62:00:
a1:7d:4d:d6:63:b3:11:3c:6a:b8:f4:4f:d5:eb:de:a8:75:54:
88:28:91:4e:c7:e3:40:c1:86:dc:e9:3b:af:8f:fd:8d:a8:1c:
04:23:52:ee:76:b8:de:f8:16:5b:35:1b:04:17:a8:5c:2d:03:
3a:b5:f2:67:0a:c1:a7:3d:db:a2:20:c6:c2:12:42:37:f9:c0:
c6:79:fd:8a:7e:03:69:14:29:23:9f:ab:03:6b:58:cd:d8:dd:
33:6a:15:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:42:35 2025 by rpki-client