Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/nVV5OMUnXq-RDHgH48X0vuHkfzo.roa
File: nVV5OMUnXq-RDHgH48X0vuHkfzo.roa (raw, json)
Hash identifier: 4bwtxRqjIzHsvuZzJUpg+VS6Oqrr+fgx08FE+9OhuXc=
Subject key identifier: 9D:55:79:38:C5:27:5E:AF:91:0C:78:07:E3:C5:F4:BE:E1:E4:7F:3A
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 11ED
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/nVV5OMUnXq-RDHgH48X0vuHkfzo.roa
Signing time: Mon 26 Aug 2024 05:18:04 +0000
ROA not before: Mon 26 Aug 2024 05:18:04 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17714
IP address blocks: 203.160.237.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:35:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4589 (0x11ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 26 05:18:04 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=9D557938C5275EAF910C7807E3C5F4BEE1E47F3A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:30:1f:6f:f0:0c:72:18:80:4a:21:ca:c7:49:
09:1b:ba:c8:a1:8e:e1:31:c2:bc:89:d4:49:b3:93:
26:9a:d9:b3:b9:a3:f8:b5:88:8a:c5:a2:fb:7d:dc:
2c:50:2b:d8:8c:5a:c8:3b:20:69:39:ad:07:00:15:
0d:9a:e7:20:5d:80:df:ca:dc:e9:e7:75:22:51:4e:
00:48:05:98:40:2c:64:c2:48:06:fe:59:70:25:c4:
e6:87:3f:d1:5f:7a:20:b3:ea:03:cd:b5:13:f5:df:
78:34:ef:6b:22:85:29:20:0b:74:a9:d6:d6:21:c4:
be:fc:ba:d7:c3:61:d7:b1:66:82:ae:e8:31:e5:8e:
57:5c:e5:8e:b3:62:bb:9c:62:07:d4:33:9f:72:eb:
37:67:02:17:71:5c:e7:e8:d6:51:00:70:ec:d1:4b:
ea:c5:c1:bf:a4:a1:ed:58:6e:c8:ff:48:ee:2a:dd:
7f:6a:4b:63:e7:3c:dc:ac:22:9f:0d:57:55:12:38:
42:0f:2f:ea:74:6d:f7:95:a1:47:f1:f1:e3:9f:f8:
e8:32:23:3d:b8:e3:aa:c2:dc:7e:04:93:47:55:49:
01:1d:b9:d4:fa:f4:5b:6d:2a:2d:41:b6:40:50:af:
57:7b:99:ef:76:e4:a9:14:f1:cf:2f:41:de:51:32:
8e:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:55:79:38:C5:27:5E:AF:91:0C:78:07:E3:C5:F4:BE:E1:E4:7F:3A
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/nVV5OMUnXq-RDHgH48X0vuHkfzo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.160.237.0/24
Signature Algorithm: sha256WithRSAEncryption
47:d5:d7:4c:47:6b:50:64:07:0a:ff:93:73:77:a0:04:b8:1b:
78:af:35:b1:48:d6:d4:09:37:97:db:bf:29:cc:c8:1a:a4:5c:
f8:52:78:a7:37:aa:4a:e8:55:35:87:0d:9d:42:86:aa:92:6f:
17:22:0b:fc:e6:6e:3c:0c:f8:67:52:88:dc:b3:96:61:7a:df:
51:e2:c2:b4:5c:6a:ea:f1:61:a3:54:9c:91:84:5a:fd:8a:bd:
1f:62:97:75:44:40:4a:4d:fb:e7:39:ee:51:a4:aa:f0:98:c9:
00:db:b8:12:5d:16:5e:6f:72:14:de:e0:70:2d:3d:84:7f:e1:
ee:f0:04:6d:4f:8c:a1:54:04:2d:6a:a4:82:d0:0d:a4:d8:3f:
70:a7:78:1e:2f:11:f3:c1:6a:94:41:99:dd:da:7f:ec:01:ac:
ae:5c:fc:6c:d1:9d:3a:bd:44:ff:6b:c4:66:3c:53:ac:5b:fe:
d7:98:aa:b0:78:76:33:96:12:15:09:39:18:ce:80:32:ed:05:
63:ec:6d:0f:e2:65:b3:0b:2c:35:a9:d3:75:d8:1a:9a:f3:cb:
b1:a6:55:87:c6:28:5f:6e:1a:04:48:bb:fc:cb:46:5e:7b:c9:
3f:bd:8d:60:b4:34:a9:0a:fb:2b:fc:0d:42:38:35:1f:a2:00:
bf:24:4e:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 17:22:07 2025 by rpki-client