Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/gDnDTWEjgP4qm7VPPUgPVtLDUrw.roa
File: gDnDTWEjgP4qm7VPPUgPVtLDUrw.roa (raw, json)
Hash identifier: GQwFxPiGMnyvSk80nXjURPvF7ZTUtvIu1mPdQucq7nA=
Subject key identifier: 80:39:C3:4D:61:23:80:FE:2A:9B:B5:4F:3D:48:0F:56:D2:C3:52:BC
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1580
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/gDnDTWEjgP4qm7VPPUgPVtLDUrw.roa
Signing time: Tue 11 Feb 2025 23:44:42 +0000
ROA not before: Tue 11 Feb 2025 23:44:42 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 7500
IP address blocks: 2001:b000:19e::/64 maxlen: 64
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:23:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5504 (0x1580)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:42 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=8039C34D612380FE2A9BB54F3D480F56D2C352BC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:59:37:5e:27:f7:07:0e:f7:88:77:fe:07:bf:
d0:6f:5c:26:36:8c:94:38:e7:2c:b1:6a:b6:ec:9a:
1a:ff:ef:42:bd:c2:0c:63:dd:19:f2:e9:05:53:13:
4d:a2:2f:68:b3:ad:d7:2a:06:8b:2b:40:6e:ae:84:
28:5c:98:0f:b8:39:b9:12:d8:25:57:18:62:c9:c5:
e9:c6:b9:cd:69:93:eb:74:f2:3e:d9:07:79:91:10:
01:19:8b:95:86:3e:c9:d5:42:3b:0c:1a:73:51:c5:
03:6f:16:99:97:83:fa:24:8f:91:f8:87:77:5e:9d:
78:df:1b:c2:70:cb:c2:e7:29:8c:ba:7e:ce:b6:42:
7e:c6:8a:a4:7e:90:5d:58:11:0d:a3:90:32:d2:64:
8a:8f:56:35:85:46:72:1b:73:fb:70:5d:16:2f:51:
3d:22:3b:d8:10:ad:43:5b:dd:37:31:39:e8:a5:17:
7a:2a:ee:99:f2:6a:02:a0:75:14:0f:a7:86:ee:1b:
b6:4a:5f:66:97:b4:b2:05:8c:42:49:f8:7a:60:29:
47:a1:25:06:61:bf:13:b2:91:b2:2e:03:ae:cd:cf:
18:de:44:86:66:2c:40:fc:f8:24:a9:87:4a:28:de:
a4:03:bc:d1:8d:d2:aa:4b:5e:1f:96:8b:84:66:fc:
d5:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:39:C3:4D:61:23:80:FE:2A:9B:B5:4F:3D:48:0F:56:D2:C3:52:BC
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/gDnDTWEjgP4qm7VPPUgPVtLDUrw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b000:19e::/64
Signature Algorithm: sha256WithRSAEncryption
1f:92:cf:61:87:c0:95:be:35:85:fe:8d:1d:46:58:45:b4:45:
18:96:9d:47:13:e8:98:e5:0d:03:e8:d0:c1:b0:f3:a9:6a:2b:
a1:66:c0:35:63:95:ea:b1:65:9d:d5:66:be:63:47:a0:fb:8f:
26:b9:6a:0d:cb:80:52:00:31:7f:54:eb:15:48:f2:73:02:62:
98:ca:0e:e7:69:6d:08:e0:d7:e1:67:3c:17:a2:df:cf:8f:5f:
d7:de:6f:fc:01:9f:d6:1a:8b:89:a2:ed:0e:a7:4c:cb:bc:4a:
8e:16:66:0e:13:6e:74:f0:0d:bc:65:fc:9e:99:3c:64:a2:38:
1b:d9:1c:30:e5:89:b7:c8:09:1e:a7:7c:86:21:49:9b:3c:9e:
d6:67:f6:57:c4:2b:1e:37:e1:3b:bb:1a:72:a1:91:93:6d:fb:
88:93:95:8c:c4:b7:92:18:08:f7:b0:d9:86:aa:87:66:28:fc:
91:4e:65:3a:15:da:61:76:4b:60:2e:13:70:c2:48:cc:86:9d:
ef:ef:d3:e6:b4:c4:9f:a5:3d:ed:fe:1b:0e:b5:dd:49:d7:e1:
26:9f:ca:02:03:57:44:2b:a0:71:bf:24:8c:06:a3:95:f1:ac:
7d:a1:6b:f8:73:8a:cb:86:37:4f:92:15:11:af:87:96:38:59:
c9:d3:9c:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:28:30 2025 by rpki-client