Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/mGSBLN0c7QP8aRQoXhdo8V-8HNE.roa
File: mGSBLN0c7QP8aRQoXhdo8V-8HNE.roa (raw, json)
Hash identifier: FplOowpNnwiiRO2dDg1XqCSkbWPD6dUzqaMkr76U4gE=
Subject key identifier: 98:64:81:2C:DD:1C:ED:03:FC:69:14:28:5E:17:68:F1:5F:BC:1C:D1
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1502
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/mGSBLN0c7QP8aRQoXhdo8V-8HNE.roa
Signing time: Tue 11 Feb 2025 23:44:14 +0000
ROA not before: Tue 11 Feb 2025 23:44:14 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 36.224.0.0/12 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5378 (0x1502)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:14 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=9864812CDD1CED03FC6914285E1768F15FBC1CD1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:ef:7c:41:1f:eb:10:b9:01:ac:07:4a:76:b7:
77:0f:dc:23:87:20:ce:bd:7d:89:82:88:eb:44:01:
0b:1a:39:b0:71:5b:86:cd:de:11:03:fb:2d:02:70:
d3:3b:dd:22:df:6d:fc:db:7c:0a:87:94:e5:7f:f8:
43:e0:43:cc:88:c7:59:78:20:ef:d6:7c:d9:ef:9d:
fb:12:44:23:ae:15:86:53:51:fb:85:5f:9a:b8:ca:
50:6e:46:2c:63:e0:57:19:70:3f:a1:09:b8:dc:5d:
63:ea:6d:71:2e:1d:a1:1c:15:f1:17:dc:eb:b8:a6:
01:bb:7a:c0:3d:10:df:c9:bf:ce:20:d5:84:ce:40:
2e:de:c9:38:24:11:c7:13:3b:0b:da:a7:6c:62:85:
6a:1c:73:91:97:03:1b:93:c0:df:00:f1:28:83:72:
0f:b9:d6:16:26:41:ba:c9:4e:0f:35:91:8f:2c:f1:
a8:6e:ad:50:54:61:7f:cd:ba:82:d4:57:f8:c0:ae:
66:1c:b5:a7:40:9b:26:c1:37:63:2a:14:fd:be:3d:
d7:27:b9:78:cb:fa:d1:68:04:da:60:0f:56:09:72:
05:9b:ef:2a:d9:c2:4a:2e:68:03:23:af:94:ed:fe:
3c:a1:17:69:d6:1f:d0:96:ae:b1:a6:6d:22:3f:89:
68:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:64:81:2C:DD:1C:ED:03:FC:69:14:28:5E:17:68:F1:5F:BC:1C:D1
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/mGSBLN0c7QP8aRQoXhdo8V-8HNE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.224.0.0/12
Signature Algorithm: sha256WithRSAEncryption
68:26:8c:16:dd:fb:39:e0:35:82:18:c6:54:26:36:b8:75:3f:
0a:96:4a:ba:4d:f0:af:66:87:6d:3b:d4:60:d3:bd:8a:4c:6c:
ce:1c:2e:8b:17:4e:76:30:ee:13:a9:81:4f:73:38:0a:60:db:
13:8e:28:06:c8:49:e0:63:67:ea:aa:ce:63:40:00:75:8d:82:
04:8f:af:57:ac:f9:d1:30:06:c9:76:2a:fc:69:80:37:e4:75:
cb:ec:76:16:60:e7:1b:2f:bc:09:b4:24:72:5d:74:a2:bf:83:
5f:f5:8b:d8:a4:00:c5:37:e8:80:23:4d:79:79:c2:77:c9:d1:
28:b0:ff:46:65:03:31:0c:4c:ef:7a:4c:5f:36:45:9f:62:5a:
5b:9c:4d:eb:ed:24:06:f3:66:40:97:69:9b:36:ac:e0:47:3f:
37:e4:38:2b:17:53:6f:e0:99:9a:8c:9c:ec:74:76:00:ab:7c:
52:c4:9e:0a:ce:e9:ac:d9:a3:29:24:ca:b0:f9:d8:44:eb:55:
d7:08:fe:f1:a4:d7:b9:7a:a4:a1:ab:f2:c9:cf:db:3d:31:c2:
47:95:be:fc:ff:50:6c:11:f0:f0:ef:6b:79:b5:e5:ed:7c:44:
7a:dc:00:1b:0b:c4:42:83:74:7f:6a:bc:dd:9d:18:9b:2a:2a:
9c:0e:b7:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 17:20:11 2025 by rpki-client