Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/nxAiATa2DCjk6GEnLGGbgVj7Zhk.roa
File: nxAiATa2DCjk6GEnLGGbgVj7Zhk.roa (raw, json)
Hash identifier: 44TMSFsAuj50rXpO2kilaX3RweDgdS3eNSckELbMXig=
Subject key identifier: 9F:10:22:01:36:B6:0C:28:E4:E8:61:27:2C:61:9B:81:58:FB:66:19
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 154F
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/nxAiATa2DCjk6GEnLGGbgVj7Zhk.roa
Signing time: Tue 11 Feb 2025 23:44:31 +0000
ROA not before: Tue 11 Feb 2025 23:44:31 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 202.39.0.0/18 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5455 (0x154f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:31 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=9F10220136B60C28E4E861272C619B8158FB6619
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:63:9d:9d:ec:69:d4:e8:09:16:89:97:59:ac:
1f:a1:3f:2d:8a:97:d6:11:ac:aa:1c:20:31:5c:07:
e2:f5:a5:64:c7:00:cc:b5:fd:78:ec:eb:68:7b:6b:
81:63:2f:47:4a:0e:54:4d:17:be:61:76:22:c3:af:
04:1f:8d:86:ef:7f:62:f6:12:a2:39:35:cf:8b:db:
c5:c9:0b:d2:79:7f:6b:69:1f:64:81:5b:b9:24:ba:
72:ba:f4:6a:d7:e4:06:c1:c8:fd:f0:a0:fe:22:a3:
10:09:0c:2c:6d:37:31:07:e0:ca:67:1b:d0:3e:14:
a1:63:dc:75:5e:bb:45:66:69:22:6e:be:30:1e:2a:
e8:97:56:c7:c2:98:93:25:db:d0:68:5c:ad:64:06:
63:4b:3a:42:87:36:80:f5:8e:63:da:6b:d8:04:63:
ed:de:1a:97:72:0e:09:c3:bd:62:f1:5e:8c:bb:32:
51:0c:cc:48:55:31:fd:7a:23:80:75:fa:d7:9e:7f:
1e:b2:b9:ec:9e:a5:e6:11:8d:47:4d:bd:ca:cd:fe:
2b:75:55:83:58:b1:92:b5:2e:bb:0f:49:ab:64:85:
dd:76:3b:63:ef:6b:a3:11:c4:15:5b:6e:8b:6d:ab:
05:88:3d:9d:dc:ef:e7:de:b9:23:bc:96:57:c3:ac:
b1:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:10:22:01:36:B6:0C:28:E4:E8:61:27:2C:61:9B:81:58:FB:66:19
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/nxAiATa2DCjk6GEnLGGbgVj7Zhk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.39.0.0/18
Signature Algorithm: sha256WithRSAEncryption
b8:bf:0f:3b:57:42:7c:19:6c:58:db:5a:81:4d:ad:24:63:af:
82:42:58:97:93:23:db:53:52:6e:9e:45:83:7e:67:fc:9d:11:
ac:25:37:bc:4b:87:51:7c:00:e4:37:c4:9d:ff:ac:2a:c2:6e:
eb:85:40:dd:9e:ea:f5:72:55:18:05:e5:9f:9f:4f:84:b7:9c:
f5:01:79:7d:03:d4:3e:90:3a:33:a9:e5:3b:0d:43:cc:8c:5d:
6f:95:d6:aa:92:1f:81:2d:98:4e:61:ad:e0:f2:a5:91:a1:19:
eb:41:92:2a:fb:9f:35:dc:3f:b9:a6:de:4a:1e:04:55:87:88:
ae:bf:f3:99:30:83:0b:b5:ce:8e:4b:92:58:5c:49:4b:51:dd:
d8:cd:1d:67:e7:e2:86:eb:7e:f8:37:23:ae:2b:54:62:b6:12:
27:9c:2e:e0:41:c7:0d:37:ab:57:b9:7d:60:63:33:00:bd:fc:
eb:eb:71:89:e3:71:b8:1c:3c:63:6e:ee:ca:60:fd:e7:77:52:
ec:62:5c:99:86:96:4e:9c:19:2a:1b:be:52:4f:04:9b:df:ae:
36:03:d6:26:d5:f3:ad:fc:c9:05:70:5f:20:55:11:6a:aa:8f:
18:7d:e9:ac:2d:aa:46:1f:d3:68:91:40:0e:44:03:27:1c:29:
d0:e5:3b:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 09:01:33 2025 by rpki-client