Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/ipyXihp_oy4cnsTknSeLJ0PZgw4.roa
File: ipyXihp_oy4cnsTknSeLJ0PZgw4.roa (raw, json)
Hash identifier: fxagNI11EaOvPavowTi0dKagMmZeBMfbRy+4rRGT3WI=
Subject key identifier: 8A:9C:97:8A:1A:7F:A3:2E:1C:9E:C4:E4:9D:27:8B:27:43:D9:83:0E
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1586
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ipyXihp_oy4cnsTknSeLJ0PZgw4.roa
Signing time: Tue 11 Feb 2025 23:44:43 +0000
ROA not before: Tue 11 Feb 2025 23:44:43 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 211.72.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:23:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5510 (0x1586)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:43 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=8A9C978A1A7FA32E1C9EC4E49D278B2743D9830E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:7f:02:69:5c:69:ef:fa:11:37:34:13:cf:48:
f2:2f:57:ab:85:01:5a:e6:32:bf:c1:15:1b:e4:3c:
ce:f2:18:b5:07:4c:5f:7e:1d:6c:60:b6:4c:a2:f0:
82:45:bc:eb:b7:98:20:f3:cc:ce:97:6f:dd:66:35:
c2:9a:91:3a:7d:71:fe:99:60:e5:24:3c:78:81:57:
ef:6b:4c:8c:69:03:72:30:60:15:1f:33:ce:47:79:
ee:24:e3:86:e9:31:a5:83:75:a5:34:98:14:91:1a:
24:0d:e6:8f:41:fb:b9:cf:6b:67:52:28:5a:6d:01:
a5:48:30:60:05:3f:56:24:4a:8e:0e:2e:0b:f2:89:
22:79:7e:50:d3:3b:b9:fd:45:03:02:6e:84:d2:74:
95:fc:b8:af:ba:08:5a:23:73:77:b5:8d:9d:3a:9a:
9f:52:ce:43:d2:bf:15:16:91:fa:cf:90:3d:21:b5:
6d:60:65:f6:88:1f:19:2f:24:5a:d6:52:49:09:94:
5a:68:05:27:09:ae:73:d4:60:36:55:2b:68:d5:92:
c7:05:22:ab:32:c5:9c:2d:37:35:ee:23:02:ed:a0:
be:69:7e:71:10:4c:59:e3:c0:57:5d:61:05:36:46:
c7:1e:cc:c4:8d:03:5a:3e:af:1b:56:89:13:1a:33:
b1:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:9C:97:8A:1A:7F:A3:2E:1C:9E:C4:E4:9D:27:8B:27:43:D9:83:0E
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ipyXihp_oy4cnsTknSeLJ0PZgw4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.72.0.0/16
Signature Algorithm: sha256WithRSAEncryption
48:3d:db:54:56:d9:d0:b8:17:bf:29:e8:44:de:f0:1d:57:98:
af:de:20:23:e7:d1:41:b6:91:01:12:63:07:cd:19:cb:c6:43:
80:51:df:55:19:50:a1:eb:cd:84:ea:1d:e3:07:60:4e:24:9c:
bf:53:90:39:ed:7c:65:03:dc:6f:dd:f0:32:57:8c:ba:de:a0:
53:6c:72:be:1d:65:3f:50:fc:84:bd:5f:d4:98:5c:68:63:41:
98:4e:7b:b0:96:48:93:13:04:d1:7f:ed:d3:75:7b:8e:95:a0:
11:cb:83:f1:89:08:48:b7:20:90:5e:17:f0:bb:d5:27:66:94:
5a:1c:cc:2c:40:c6:2b:24:82:d8:a1:6e:9b:85:82:8f:1a:36:
57:5f:24:3c:47:f5:8a:ec:eb:11:60:b9:14:ce:02:b5:e0:3f:
10:f4:a0:3d:32:90:b0:68:1d:e1:74:ef:5c:3f:c7:51:de:90:
3d:4e:1e:e2:65:4d:a8:2e:da:d3:2e:e8:c8:2f:70:d7:7b:8a:
b0:98:58:31:ce:01:3a:72:0a:61:c7:57:1c:e2:88:b2:60:f7:
0b:e5:96:ce:eb:79:a1:d8:4d:49:64:28:82:5b:12:9b:3e:9e:
81:b7:0b:e7:2d:eb:17:54:0b:9c:2c:62:2f:ef:91:94:4e:f7:
91:73:a4:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:28:18 2025 by rpki-client