Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/kP9AElqETeHbgQJ8NhqX_p92Ozc.roa
File: kP9AElqETeHbgQJ8NhqX_p92Ozc.roa (raw, json)
Hash identifier: fg4KkquY+8uy5W25ZMxNbm2AiHy7rMvcSdQl31UbvW4=
Subject key identifier: 90:FF:40:12:5A:84:4D:E1:DB:81:02:7C:36:1A:97:FE:9F:76:3B:37
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1538
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/kP9AElqETeHbgQJ8NhqX_p92Ozc.roa
Signing time: Tue 11 Feb 2025 23:44:26 +0000
ROA not before: Tue 11 Feb 2025 23:44:26 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 54994
IP address blocks: 210.61.180.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5432 (0x1538)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:26 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=90FF40125A844DE1DB81027C361A97FE9F763B37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:80:ab:16:51:ab:22:1a:d8:0c:92:6d:00:0d:
ad:88:ba:0f:2d:df:6c:77:d3:1c:52:58:d9:24:da:
b7:9c:51:c0:18:1b:ff:81:dd:ee:09:84:22:13:e3:
63:e5:f7:ed:8a:7b:57:d6:56:92:58:52:60:bf:6e:
f5:65:65:53:21:0e:04:8f:02:fa:5d:0a:f1:2c:94:
9e:20:4c:df:60:8b:48:0a:d1:65:61:21:54:e7:bb:
c1:d5:16:9c:be:5d:69:9e:04:be:ce:3f:da:4b:a8:
11:61:c3:ef:bc:aa:35:05:2a:bf:4e:a1:a8:40:4d:
77:a4:ab:39:19:04:28:ce:8d:10:f0:4b:bb:87:38:
eb:47:f9:a7:67:98:6e:c0:f8:f9:db:2a:77:e3:a4:
d0:00:83:3f:ea:6e:e9:39:90:f2:75:1f:d5:ec:ca:
40:d8:1e:29:43:d3:28:d1:66:3d:37:8e:58:8a:1f:
f2:b4:72:ca:8a:6a:d5:91:58:c2:c3:0d:ab:1c:ce:
f0:d5:7f:b5:f7:49:79:5b:f3:ec:2b:5e:53:48:38:
8b:ba:ea:8a:99:45:c6:4b:75:75:23:ea:65:00:fc:
04:53:ae:cf:b5:9e:17:b5:94:72:86:08:de:32:9b:
aa:08:c9:b1:ec:43:0b:ea:08:05:08:61:97:96:89:
18:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:FF:40:12:5A:84:4D:E1:DB:81:02:7C:36:1A:97:FE:9F:76:3B:37
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/kP9AElqETeHbgQJ8NhqX_p92Ozc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.61.180.0/24
Signature Algorithm: sha256WithRSAEncryption
47:91:71:16:38:64:0b:31:0c:78:f3:18:28:2b:60:92:d6:b6:
b1:3c:93:29:ff:1e:97:42:cd:af:c1:5c:d0:5d:d1:71:52:05:
64:73:a3:5b:29:c9:9b:ff:a0:6b:e7:f3:6d:87:8c:6a:ca:fa:
ac:8c:c3:70:a7:70:96:9b:0d:dc:97:4c:56:20:ae:45:02:3e:
42:1b:8a:92:5d:0e:69:77:fb:43:6c:59:01:ac:5d:2a:10:35:
b9:c6:4d:8a:95:44:69:9e:51:66:02:ec:e2:65:52:d1:36:e5:
ef:02:d0:3f:52:dd:f8:88:2d:04:c7:c4:a7:6f:32:d7:5c:c8:
61:ba:4d:a7:fc:14:5d:33:69:da:5b:f4:9f:76:e6:68:8f:a2:
46:3d:d2:01:cd:5c:83:7b:1e:2f:ab:5c:ff:7a:eb:13:98:14:
3f:9d:bb:a8:e3:4c:63:1a:08:0a:df:4e:69:89:35:e4:33:e1:
3f:01:da:f8:e5:97:b7:10:d6:c8:89:97:23:d1:a7:eb:89:79:
a1:67:45:5f:9e:f7:1a:07:2a:82:e1:43:a3:9e:9e:13:7a:6c:
aa:d6:fd:0e:b6:7b:70:5c:5a:b9:eb:98:cc:9a:85:89:07:85:
7f:49:ac:ea:41:e6:8a:dc:d9:0d:3b:b1:88:bd:88:c0:2d:79:
48:45:30:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:17:45 2025 by rpki-client