Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/n633Xg_91shPcDLTW-cjaucharM.roa
File: n633Xg_91shPcDLTW-cjaucharM.roa (raw, json)
Hash identifier: dAY63TyRS9E6c9eLIINv+izKVaw9QSdCyeQFQi9HtIA=
Subject key identifier: 9F:AD:F7:5E:0F:FD:D6:C8:4F:70:32:D3:5B:E7:23:6A:E7:21:6A:B3
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1579
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/n633Xg_91shPcDLTW-cjaucharM.roa
Signing time: Tue 11 Feb 2025 23:44:40 +0000
ROA not before: Tue 11 Feb 2025 23:44:40 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17714
IP address blocks: 175.111.252.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:23:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5497 (0x1579)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:40 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=9FADF75E0FFDD6C84F7032D35BE7236AE7216AB3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:e7:17:e2:f8:e5:1a:b7:85:20:ee:6a:f0:2e:
08:80:68:86:05:c7:51:7d:89:9b:29:ff:b5:a6:b3:
6b:b6:87:61:ca:e5:39:d8:48:92:01:36:6c:98:3a:
55:80:b1:f4:10:e4:25:1e:61:72:3b:72:94:8b:85:
00:6a:d8:bb:a6:99:6b:90:fb:a2:c5:e8:6e:38:8f:
d4:45:f7:84:db:a6:c6:28:f4:33:3a:57:d2:d8:d9:
e3:6e:b4:2f:cd:92:15:95:82:2d:b5:a9:33:fe:d7:
17:63:9b:71:b0:5a:39:6f:7f:8d:32:1c:ae:2d:2f:
0a:b6:25:0c:62:6f:46:02:d3:3e:f4:f2:a4:04:9a:
f0:e8:31:9d:e8:14:c8:27:00:4e:17:74:45:b0:fc:
c7:2e:51:42:72:2c:f4:07:9f:78:eb:ae:30:3c:37:
ab:e4:2e:79:ce:c9:ee:c7:b0:b6:88:44:63:ed:ab:
08:80:1f:9b:f7:39:e6:82:81:18:28:05:ad:2a:7e:
bd:ce:be:e5:5b:3e:8a:4a:45:71:34:f7:71:2b:1a:
fa:f0:df:81:c6:12:e9:48:b3:85:58:55:ec:df:33:
9f:66:73:f9:f3:99:fc:31:39:7b:6c:87:f6:29:52:
78:6e:54:5d:4b:0d:0f:dd:aa:ab:b3:73:fb:94:24:
18:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:AD:F7:5E:0F:FD:D6:C8:4F:70:32:D3:5B:E7:23:6A:E7:21:6A:B3
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/n633Xg_91shPcDLTW-cjaucharM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.111.252.0/24
Signature Algorithm: sha256WithRSAEncryption
25:e2:47:d4:4d:6a:3f:2b:b5:a2:53:df:c2:80:7b:b7:18:8f:
3f:00:d6:5c:92:d0:45:27:5b:06:a4:9d:8d:1b:05:2f:8f:1e:
32:56:95:6a:20:57:01:bd:42:02:0f:4a:20:b8:6c:98:86:4a:
ff:66:e9:69:0a:62:80:67:10:83:43:b1:be:3d:bc:25:3b:f0:
34:d1:6f:5a:f2:83:7a:57:14:be:db:9e:12:d5:40:4a:43:b5:
16:9f:07:e8:34:0d:a1:23:2c:de:82:9e:26:a8:05:8c:63:2a:
33:63:3b:ad:86:83:cc:8f:61:e7:52:eb:95:70:1c:1c:31:0b:
a0:84:ec:7e:b5:53:97:5c:e4:cc:d5:b0:5c:09:a3:9a:23:94:
ab:91:ff:50:a4:ce:6d:98:4e:3a:da:21:06:75:71:3d:6b:26:
54:1c:3f:2e:54:dd:d0:bd:94:04:f0:ae:6c:f6:d1:6f:f4:a7:
83:75:8f:d3:71:cd:5f:ea:ca:75:73:fc:c0:ec:4c:2e:ff:5c:
15:1c:10:d8:db:66:ce:21:be:7d:9a:2a:7f:a3:49:cc:94:41:
b9:de:ac:1c:57:24:a4:81:34:9c:5a:3d:89:13:03:d8:2f:68:
d6:51:1e:e2:ba:7e:00:d8:de:88:c4:00:c4:52:9f:95:d6:66:
21:8f:05:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:42:36 2025 by rpki-client