Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/quVioiEUR6bSr0bmWcZnsXU-CRk.roa
File: quVioiEUR6bSr0bmWcZnsXU-CRk.roa (raw, json)
Hash identifier: +WigkF1MorlXmaF/41/ImDLTtOoBgRmh5FdgTJUW4yM=
Subject key identifier: AA:E5:62:A2:21:14:47:A6:D2:AF:46:E6:59:C6:67:B1:75:3E:09:19
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 11C8
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/quVioiEUR6bSr0bmWcZnsXU-CRk.roa
Signing time: Mon 26 Aug 2024 05:17:56 +0000
ROA not before: Mon 26 Aug 2024 05:17:56 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131660
IP address blocks: 2001:b000:591::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:35:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4552 (0x11c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 26 05:17:56 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=AAE562A2211447A6D2AF46E659C667B1753E0919
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:ee:69:ff:e5:1b:aa:6b:0b:3d:08:02:7a:ce:
0c:ca:fb:54:3e:e6:56:ed:5f:f4:bd:9d:fd:e5:0b:
1f:a5:86:37:91:c0:2f:f4:a9:5f:04:96:80:40:1c:
f1:39:42:5f:ff:c4:6d:4f:12:8a:f3:b1:f8:2b:f0:
91:23:08:3c:d9:65:aa:0c:75:d2:86:26:d4:1f:6f:
7f:d4:ee:c7:ff:a7:dc:a2:10:6b:b4:69:cd:06:44:
e7:c5:c8:7c:3a:30:b8:f0:b7:4d:9c:7a:41:11:0b:
93:3e:92:32:72:d0:20:be:48:b3:af:dc:f3:e6:98:
16:d1:66:84:af:27:58:43:9c:3a:de:92:d9:62:f4:
41:fe:10:ea:5f:a1:c6:be:e8:a7:1c:62:45:1f:5d:
c0:69:51:91:d1:22:7c:c2:0a:89:26:25:04:09:69:
6c:74:f6:fb:fa:3a:a8:7c:fe:6e:12:b6:0a:3e:1d:
ee:27:a3:d0:b2:b9:a2:f1:0a:ad:98:08:55:3a:59:
96:4c:94:c7:35:77:3d:0d:34:8a:c5:81:80:17:8e:
fc:36:dc:eb:ff:b6:4e:d6:b1:66:20:75:b4:96:11:
3d:c2:ae:ba:0e:df:44:6e:18:48:ac:13:3e:ef:24:
88:e5:90:bf:aa:09:98:aa:bc:ec:b9:72:5b:6f:67:
e2:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:E5:62:A2:21:14:47:A6:D2:AF:46:E6:59:C6:67:B1:75:3E:09:19
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/quVioiEUR6bSr0bmWcZnsXU-CRk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b000:591::/48
Signature Algorithm: sha256WithRSAEncryption
c9:4a:74:54:11:5a:c7:4a:96:e3:5b:5b:22:4f:e7:fe:2a:30:
4c:00:65:92:cd:a3:ab:99:95:d6:05:8e:6b:77:8b:d9:68:37:
0f:80:4b:f7:19:5f:43:06:2b:68:cc:fd:f8:ca:8c:a0:ba:41:
a5:a8:be:3a:d8:f6:25:db:2a:00:02:ac:cb:02:e3:5b:ab:d0:
07:50:8a:4b:e7:1b:f2:b6:8e:11:39:38:c5:e7:dc:b7:40:a4:
b5:74:ca:12:7c:10:31:7e:04:6c:c2:de:c1:39:31:c1:68:56:
ac:b1:b8:ea:ab:22:e0:e9:21:87:b8:23:dd:91:24:7f:90:1b:
ac:e7:78:48:c5:20:8b:17:2e:20:2c:9d:86:eb:29:77:e6:ad:
cd:4d:cb:95:1d:12:20:e7:37:37:86:27:20:78:55:28:ff:d0:
ad:83:71:ec:65:b8:47:af:86:24:c0:4c:5b:f5:28:35:51:d9:
14:70:cb:37:fb:67:ae:ae:51:42:a7:47:b3:3c:8a:4c:28:b0:
98:2a:5f:8a:a6:f5:15:2f:84:2a:5f:e6:92:96:8a:68:30:77:
9a:af:0b:0d:01:ff:45:8f:88:df:3f:a5:2e:4e:6e:cd:6e:1a:
13:d4:b2:91:55:75:0c:b7:61:c8:6a:c0:4e:f1:cb:f9:b4:cd:
e6:17:c2:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:10:30 2025 by rpki-client