Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/pNTV6dy_nrCFBBPmiqWI3Xd9Ph0.roa
File: pNTV6dy_nrCFBBPmiqWI3Xd9Ph0.roa (raw, json)
Hash identifier: iFwph3JT1h5z4YyeaVYSFGpCBwOxKdQra0Aw6U/QOdM=
Subject key identifier: A4:D4:D5:E9:DC:BF:9E:B0:85:04:13:E6:8A:A5:88:DD:77:7D:3E:1D
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 155B
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/pNTV6dy_nrCFBBPmiqWI3Xd9Ph0.roa
Signing time: Tue 11 Feb 2025 23:44:34 +0000
ROA not before: Tue 11 Feb 2025 23:44:34 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 10126
IP address blocks: 220.128.64.0/20 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5467 (0x155b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:34 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=A4D4D5E9DCBF9EB0850413E68AA588DD777D3E1D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:52:0e:4d:5f:57:22:fe:e3:f1:b0:e5:cd:a3:
9e:3b:f2:5a:f1:7c:61:cd:f7:dd:9b:6a:dd:87:e9:
91:43:8f:e2:56:c0:17:f2:ae:54:f8:61:70:d5:6b:
80:64:29:e0:ce:7c:3a:8d:ba:0c:27:eb:f2:f4:fd:
c6:72:cb:34:27:2e:7f:d3:06:da:cc:b7:c9:b8:ac:
21:d0:b2:80:6c:f7:83:a0:47:b9:ec:2a:d2:7c:8a:
75:ca:b9:d4:24:63:73:b3:dd:d4:79:e0:3a:4d:c2:
be:3b:31:3d:84:39:a8:49:fa:57:7b:2d:6b:b5:e4:
df:25:ba:56:e9:5a:b2:16:6a:4a:af:89:db:c2:51:
ba:6b:21:79:3e:c9:48:e7:93:05:af:e6:96:dd:6c:
ab:b2:9d:af:61:89:1d:19:e2:1e:db:ba:01:7e:87:
d7:a0:61:89:0d:05:0e:36:50:d0:77:9c:35:49:f9:
46:81:88:9e:c2:38:8a:93:f9:a4:95:13:22:c9:c7:
6c:25:03:da:94:22:b8:01:c3:1a:33:7f:0b:91:1a:
ad:eb:95:50:50:84:15:86:ea:da:fb:e3:14:c5:78:
dc:72:83:05:13:e8:a7:05:49:b3:33:59:74:ff:2d:
c4:75:a0:73:a8:69:e7:00:21:b7:00:2b:3a:bb:46:
22:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:D4:D5:E9:DC:BF:9E:B0:85:04:13:E6:8A:A5:88:DD:77:7D:3E:1D
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/pNTV6dy_nrCFBBPmiqWI3Xd9Ph0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.64.0/20
Signature Algorithm: sha256WithRSAEncryption
a5:0d:4b:33:e6:07:b8:3a:7b:60:0a:7d:0c:8f:4a:67:f6:d5:
7b:1d:ae:3a:4a:57:89:4c:b7:9c:f0:0c:f8:0d:e6:55:3f:1b:
18:bf:83:ea:04:db:86:04:46:cd:0f:c3:9a:02:ea:88:92:3e:
3d:cb:2c:60:db:cd:63:e7:b9:0e:c8:b3:9e:b7:58:f3:0e:aa:
80:68:92:04:8a:0e:96:7f:ea:f8:de:af:d8:0f:df:73:2c:2a:
1b:49:7f:0d:25:a3:5f:e4:0b:51:0c:cd:0a:d0:9c:6f:46:a7:
4c:09:d8:7c:09:70:cd:31:fd:ae:0e:dc:c5:a4:6d:81:7e:e5:
9c:b7:e6:71:8d:62:6d:4f:90:fb:62:5c:e2:50:72:01:90:b9:
78:a5:42:65:b4:9b:8a:4f:0f:9a:09:c7:fd:97:f1:c1:0c:4c:
cc:40:f9:4b:e4:ca:5b:6c:b4:0f:88:04:0c:76:9d:1d:32:53:
bb:e9:f8:0c:0c:b5:77:8a:99:c1:ce:7e:b1:f5:ce:4d:c5:3d:
fd:7c:5b:93:1c:44:68:54:c7:94:6b:42:7c:0b:df:73:e5:94:
1d:69:dd:d9:8a:3a:f1:d7:53:e6:10:ae:5a:1e:ff:ca:08:50:
6c:d3:cb:df:fd:ab:f1:28:3a:1e:78:8a:57:3c:af:9a:3f:16:
90:dc:41:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 17:21:49 2025 by rpki-client