Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/qMwn_MbXF7EO-3SDB8XnJpKVRrU.roa
File: qMwn_MbXF7EO-3SDB8XnJpKVRrU.roa (raw, json)
Hash identifier: s5W8cCLxs0MPOi0Y/omwLbTBWxjAQiQnJuKHlXZLttg=
Subject key identifier: A8:CC:27:FC:C6:D7:17:B1:0E:FB:74:83:07:C5:E7:26:92:95:46:B5
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 11D8
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/qMwn_MbXF7EO-3SDB8XnJpKVRrU.roa
Signing time: Mon 26 Aug 2024 05:17:59 +0000
ROA not before: Mon 26 Aug 2024 05:17:59 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 2001:b400:e9f0::/44 maxlen: 44
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:35:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4568 (0x11d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 26 05:17:59 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=A8CC27FCC6D717B10EFB748307C5E726929546B5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:ab:01:5d:3e:69:67:4d:8f:49:6e:d1:ac:35:
10:29:86:32:91:8a:72:f0:70:cb:b1:b9:d3:ad:ee:
19:32:4d:c0:ff:0a:9e:a8:fe:79:8c:1c:0d:b7:2c:
36:1c:4f:a1:30:2c:4b:3f:7c:23:a1:e0:e5:4c:a6:
9b:30:1e:b3:4c:0e:99:77:82:e3:29:78:0e:5f:0a:
95:85:97:03:2c:24:ef:59:70:3f:b0:b3:2a:32:21:
95:58:8b:7f:dd:fb:2b:72:bc:eb:2c:7e:ed:59:9d:
eb:be:ae:18:77:49:28:a1:3c:f0:50:dc:c4:76:d9:
35:3e:7c:3d:93:91:c0:20:61:02:3c:73:c1:db:c6:
ec:f1:95:53:a5:85:42:9f:15:bb:71:d7:e4:d7:e5:
be:f2:51:04:93:6d:83:08:e6:a7:0b:d0:d9:80:09:
b7:51:e2:07:7b:c0:8e:a2:30:f2:0c:f2:10:f7:ac:
5d:25:ae:8d:58:c2:37:3d:33:41:05:16:06:39:35:
2c:2f:2a:fa:70:75:3e:8a:a9:63:67:65:45:0b:ea:
24:fe:80:19:6a:ab:d8:85:e3:a4:94:c7:95:13:ed:
85:95:86:fb:18:6a:5d:33:bd:99:4b:b9:6e:61:44:
3b:56:7b:d3:49:b1:e9:4c:4e:99:78:fa:d8:20:34:
0e:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:CC:27:FC:C6:D7:17:B1:0E:FB:74:83:07:C5:E7:26:92:95:46:B5
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/qMwn_MbXF7EO-3SDB8XnJpKVRrU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b400:e9f0::/44
Signature Algorithm: sha256WithRSAEncryption
2a:5d:77:1c:d0:02:c5:c2:ad:ff:14:f9:c5:49:56:4c:95:de:
6e:d3:42:8b:d0:65:e3:5b:05:f2:75:15:48:d6:4e:24:b7:10:
d9:57:4d:b1:cc:8c:b0:43:df:bd:c6:e5:d8:30:77:fa:3f:f0:
ad:ab:ff:31:d9:dd:3a:0c:b9:6a:e4:a5:ea:09:bc:7b:85:ba:
e5:d5:ef:74:63:86:79:54:f4:ec:d1:aa:66:b3:53:8c:78:6c:
f7:0f:8e:bb:72:40:4c:96:d9:51:24:bd:2b:05:e4:b7:cd:67:
23:a3:7f:e1:a8:26:ec:b1:9e:a6:34:0a:da:d6:a1:e7:7c:ba:
f5:b2:74:1c:28:94:ae:08:9a:3f:18:d3:9a:e4:83:8b:1c:1b:
66:6e:7c:af:53:e1:4e:19:87:bf:35:2e:49:1e:3e:29:e6:08:
72:46:85:01:47:87:93:9c:a4:14:1e:93:36:88:56:8a:09:1d:
10:36:00:ef:2c:e4:b0:9a:1e:98:c4:8d:44:36:e5:1a:fb:7b:
52:33:38:74:3a:46:20:64:08:b6:0a:16:fe:cf:ec:1c:e4:82:
10:83:62:b6:04:60:11:cb:db:2c:2d:e4:24:c8:b0:d8:59:4c:
17:92:a4:b9:74:ce:ab:fd:1a:74:91:c8:9a:a7:f6:4d:d8:4e:
8c:f9:c1:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:35:32 2025 by rpki-client