Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/nC9eV9qy9vl8uoMz__Rh7dIMuQ0.roa
File: nC9eV9qy9vl8uoMz__Rh7dIMuQ0.roa (raw, json)
Hash identifier: i93kDWZCjZ0cwJvxcNpwksHl5+EEW7oz9ETLmPH4MsA=
Subject key identifier: 9C:2F:5E:57:DA:B2:F6:F9:7C:BA:83:33:FF:F4:61:ED:D2:0C:B9:0D
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1182
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/nC9eV9qy9vl8uoMz__Rh7dIMuQ0.roa
Signing time: Mon 26 Aug 2024 05:17:36 +0000
ROA not before: Mon 26 Aug 2024 05:17:36 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17421
IP address blocks: 221.120.0.0/18 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:35:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4482 (0x1182)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 26 05:17:36 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=9C2F5E57DAB2F6F97CBA8333FFF461EDD20CB90D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:ae:e6:78:de:56:ea:4b:5e:52:50:38:43:26:
92:82:aa:2b:2d:38:fb:35:c3:d5:5b:67:2f:aa:c0:
67:7e:10:33:15:30:54:b9:75:e6:d7:b4:ae:3b:23:
88:77:13:ec:0b:57:23:5d:95:81:41:9d:86:57:fe:
13:f2:87:bd:e2:49:0a:b1:a5:54:95:4c:65:92:0b:
76:25:82:6b:8c:46:9b:ba:30:0b:38:92:e4:f5:64:
b9:55:d9:53:02:01:4a:31:0f:c2:91:03:88:93:d1:
08:ff:32:1b:d4:c5:71:c5:4e:d0:5d:10:5f:bd:6d:
e6:7c:bf:08:d9:4e:45:70:1e:0a:c5:c7:69:b0:df:
b4:56:33:4d:a7:23:a4:32:83:8d:d0:a8:6c:7e:f8:
2e:de:7f:6d:cc:26:30:87:00:5a:84:53:7a:55:70:
07:09:c6:c1:93:e5:61:b4:32:91:b4:bf:d4:0d:46:
f8:b1:42:5b:82:57:dc:c3:30:3c:bd:9d:fb:e1:52:
bf:db:76:00:64:a0:3b:fc:5e:67:79:2a:7f:14:24:
73:c8:dc:b0:fb:c2:51:19:b9:fc:9c:52:77:77:3e:
5e:ba:b7:f5:30:6a:39:b8:93:bf:58:a6:b5:ef:25:
1b:d1:ce:63:d0:75:1d:fe:bd:07:3c:6d:2a:52:da:
89:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:2F:5E:57:DA:B2:F6:F9:7C:BA:83:33:FF:F4:61:ED:D2:0C:B9:0D
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/nC9eV9qy9vl8uoMz__Rh7dIMuQ0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
221.120.0.0/18
Signature Algorithm: sha256WithRSAEncryption
1b:be:b8:8c:03:ae:14:b1:88:88:d7:d5:1d:53:e2:3b:7b:50:
61:32:c6:9c:d3:83:d4:3e:dc:b6:aa:c2:c6:54:66:41:45:bb:
d4:f3:15:1a:65:2a:0e:ee:15:22:d8:35:6a:96:ea:8a:d0:4e:
9e:73:9f:ee:48:7f:e7:ef:fe:04:28:d4:e9:87:ae:6b:47:a5:
c4:19:13:97:71:e3:39:8e:53:4a:df:67:50:04:a9:49:ab:1b:
94:36:6a:5b:4a:d8:90:24:d4:36:7b:a1:ec:63:b6:1a:18:d3:
87:7e:77:92:bf:de:ac:b3:bc:59:c0:3f:6b:c1:80:fb:b1:7e:
58:29:a0:68:0b:71:59:d4:ca:35:24:59:c0:b7:96:b2:50:0f:
c2:f6:be:73:5c:b9:8b:64:d3:ac:c1:98:6f:23:56:4c:be:8c:
9e:73:7f:b4:07:d5:cf:a9:43:c9:aa:a1:ae:f1:dd:a0:c4:6d:
5c:cf:bc:b7:28:45:0f:35:b8:6f:a5:39:c1:7c:01:ea:fe:7b:
88:34:ed:ac:b8:22:6f:ad:fc:1d:a5:d6:10:14:7b:a2:4d:b7:
72:6c:d5:cf:96:16:49:fd:43:70:55:55:a5:40:16:ef:62:bd:
8a:47:49:27:f0:62:f8:af:17:11:d9:05:cd:dd:7a:dc:d3:91:
6d:49:cc:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:15:35 2025 by rpki-client