Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/o8WGDqS9UYPabG-pYeJt4n_LrAI.roa
File: o8WGDqS9UYPabG-pYeJt4n_LrAI.roa (raw, json)
Hash identifier: r4cpkVoundpM75AN+BuGSm2wUL35lRyZpRuq3RTbuks=
Subject key identifier: A3:C5:86:0E:A4:BD:51:83:DA:6C:6F:A9:61:E2:6D:E2:7F:CB:AC:02
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 122A
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/o8WGDqS9UYPabG-pYeJt4n_LrAI.roa
Signing time: Wed 28 Aug 2024 03:01:16 +0000
ROA not before: Wed 28 Aug 2024 03:01:16 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9680
IP address blocks: 2001:b000:92::/48 maxlen: 64
Validation: Failed, certificate revoked on Mon 10 Feb 2025 12:51:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4650 (0x122a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 28 03:01:16 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=A3C5860EA4BD5183DA6C6FA961E26DE27FCBAC02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:6f:cb:f2:b6:27:82:3a:fe:1e:cf:fe:e6:af:
0a:76:ef:d8:6e:0e:d4:1d:22:6f:78:e7:43:bd:85:
40:7b:7b:f8:f5:cc:7c:fd:ff:9c:63:bf:19:3d:ae:
49:37:99:4f:65:37:41:f1:ca:40:b6:d2:fe:49:88:
ec:0f:b8:50:0e:f1:c1:2c:aa:6d:6d:ca:27:cf:c2:
b3:b9:f7:58:26:6a:d3:39:88:fb:1b:26:7a:40:bb:
7d:f2:29:1a:88:de:01:c9:25:bd:db:f1:af:a8:e1:
b1:12:db:2d:63:5b:9b:aa:82:9e:01:9b:16:01:d4:
3d:2c:b7:49:e8:4c:65:0e:df:37:00:ed:27:1a:31:
5f:4f:0c:7a:e2:ff:3e:42:4b:b1:14:67:9b:7b:bc:
d7:b6:af:dd:75:d6:24:9b:15:5f:2b:d7:85:c0:95:
04:15:3c:cc:ed:47:93:ed:83:f2:48:d6:e6:7a:07:
59:39:10:8e:af:ca:e9:bb:6d:58:b0:07:8c:f2:67:
17:88:bd:fa:9d:14:b5:2a:9c:4d:af:f6:0c:30:59:
54:9a:ef:18:66:79:43:cf:12:c6:ce:53:1f:36:a0:
2e:9c:18:a0:82:1a:9c:a1:c1:fa:ea:c0:35:e6:a3:
cb:a0:97:37:76:46:3e:db:f1:b6:a9:6e:dc:4b:84:
bf:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:C5:86:0E:A4:BD:51:83:DA:6C:6F:A9:61:E2:6D:E2:7F:CB:AC:02
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/o8WGDqS9UYPabG-pYeJt4n_LrAI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b000:92::/48
Signature Algorithm: sha256WithRSAEncryption
52:6e:70:5a:ab:6f:31:06:d8:ba:1d:4b:21:ea:1e:9e:a0:ed:
3e:b1:16:c7:c8:22:29:59:1f:4a:03:75:21:5d:9c:cf:7f:5f:
23:0d:92:76:5b:eb:be:ab:c0:20:55:21:3a:ca:62:d2:d4:68:
92:04:47:4b:14:9a:4c:9b:53:c2:24:61:80:7a:2d:3e:75:d8:
f7:1f:ea:1a:75:3b:4f:ea:79:18:a4:71:32:d5:5e:af:8a:40:
af:49:aa:81:eb:c0:c3:cb:c9:9a:67:47:a0:b0:93:44:58:21:
f9:5a:9b:da:f4:5d:11:ea:56:8b:ef:db:83:5d:fa:1c:ce:ee:
98:eb:d8:a6:d5:fb:03:70:10:d1:6a:ec:b9:27:a5:a2:bf:a5:
ad:bb:ad:ea:00:26:a2:d5:14:f2:26:7c:55:6c:7c:f7:1d:e8:
76:51:a3:62:d4:30:ac:d8:a5:bd:ee:06:03:5f:0e:ea:33:4a:
dc:e2:43:53:cf:4f:82:65:23:c2:a1:91:a6:35:64:10:aa:a2:
da:26:c1:22:f0:35:68:8b:0c:82:75:20:00:f7:57:93:31:81:
1c:8c:34:3a:1c:79:ac:3a:6d:29:2d:0e:1d:a1:5a:c8:9e:73:
2a:5d:15:59:97:8f:3a:3a:d9:05:23:a0:3c:63:01:42:8e:2d:
90:e4:99:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:36:25 2025 by rpki-client