Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/gYgKsC_ibh3qVj7RH5i5WAqYv6U.roa
File: gYgKsC_ibh3qVj7RH5i5WAqYv6U.roa (raw, json)
Hash identifier: pl1GYEG94cd+2dIdhW0J6ZytTXa1E7mEc3o550xQzE4=
Subject key identifier: 81:88:0A:B0:2F:E2:6E:1D:EA:56:3E:D1:1F:98:B9:58:0A:98:BF:A5
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1475
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/gYgKsC_ibh3qVj7RH5i5WAqYv6U.roa
Signing time: Mon 10 Feb 2025 14:34:56 +0000
ROA not before: Mon 10 Feb 2025 14:34:56 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17421
IP address blocks: 221.120.64.0/19 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Feb 2025 23:44:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5237 (0x1475)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:34:56 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=81880AB02FE26E1DEA563ED11F98B9580A98BFA5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b2:3a:9b:15:f1:2a:c2:91:a2:01:f0:52:08:
7c:28:b2:66:2e:6e:9d:f6:f6:58:1f:be:ca:ec:ac:
c9:90:e5:56:7a:aa:cf:95:24:95:57:e9:a3:d7:da:
eb:9d:47:17:9c:e6:51:db:52:fe:86:03:09:37:9a:
07:d5:a9:3d:58:ad:35:31:3d:da:41:a5:8d:a3:14:
b6:c7:6e:3e:f8:01:ca:45:03:b6:86:4d:35:85:80:
26:f9:0e:b6:1c:f2:04:68:7d:cf:ba:0b:f0:28:38:
69:ad:82:32:91:94:71:27:be:ec:07:30:4d:04:ed:
44:51:86:d0:ec:25:c9:58:b4:a6:82:96:13:89:95:
80:a9:e4:86:31:cc:8e:49:a1:0e:36:d3:e3:ef:e2:
be:51:1a:6d:4d:db:d4:a9:da:d3:c5:21:13:96:30:
09:29:9f:a1:73:ca:a6:ea:11:71:6d:fc:47:92:c4:
82:94:73:4a:3b:e8:71:6c:a5:77:f0:14:a5:2f:e0:
30:f7:81:cb:1e:71:6d:98:63:a7:59:fa:d9:05:27:
eb:17:d6:74:5e:6e:92:6f:69:b8:55:8f:cc:65:f2:
14:2c:e4:d4:51:07:d6:2e:80:c6:61:e0:e6:3c:7c:
5f:20:90:bf:1c:cf:87:68:8b:35:91:cc:94:fa:0b:
de:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:88:0A:B0:2F:E2:6E:1D:EA:56:3E:D1:1F:98:B9:58:0A:98:BF:A5
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/gYgKsC_ibh3qVj7RH5i5WAqYv6U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
221.120.64.0/19
Signature Algorithm: sha256WithRSAEncryption
27:8f:7a:33:86:52:b3:2c:37:d4:d6:1c:d7:24:48:dd:e9:1d:
1e:c5:07:fb:6e:2d:8c:3a:9e:86:89:58:3c:49:e9:3c:c5:ee:
5d:37:c9:d5:4d:95:a9:42:c4:19:8b:fc:e6:b3:41:bc:35:68:
8e:d3:9d:d2:c4:63:0e:ab:46:63:3d:b0:58:d2:3b:6e:ff:d5:
80:d8:43:36:fb:7f:a7:92:6f:41:13:cb:a2:f2:ea:98:62:34:
7f:bf:4d:13:d9:13:5f:58:12:b1:6e:c7:5f:06:6a:c6:79:67:
e0:fa:0d:25:9f:74:5d:83:e9:0b:16:3b:ed:68:e7:9b:8b:07:
c5:ef:d1:04:30:5a:ec:13:43:9b:97:4d:d4:81:15:0d:c4:39:
e2:93:8b:2a:2e:30:80:4e:7b:ee:c8:61:93:cb:2f:7a:96:8b:
77:47:51:65:f3:00:a2:e4:b2:8b:f7:11:e2:23:58:fb:6b:54:
a4:08:86:64:6c:cd:20:76:27:c8:d5:05:b9:dd:ec:ed:a3:50:
26:98:32:5a:c4:8a:c3:14:de:b7:10:dc:6f:23:c6:e9:e2:a5:
d2:0e:2d:0e:f7:d1:7e:78:8f:22:cc:87:75:43:68:ea:fe:4b:
5a:bf:9a:00:e6:ff:b4:09:66:af:13:34:b6:52:5b:ab:c6:d1:
f6:76:2f:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 17:20:04 2025 by rpki-client