Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/r04ainz34YIlF3xJUAq31Xh30i4.roa
File: r04ainz34YIlF3xJUAq31Xh30i4.roa (raw, json)
Hash identifier: YwM6JrAPanslH+aKHqOrVGyFNRqsETCUwrjrsEXcWaw=
Subject key identifier: AF:4E:1A:8A:7C:F7:E1:82:25:17:7C:49:50:0A:B7:D5:78:77:D2:2E
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 11E7
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/r04ainz34YIlF3xJUAq31Xh30i4.roa
Signing time: Mon 26 Aug 2024 05:18:03 +0000
ROA not before: Mon 26 Aug 2024 05:18:03 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131621
IP address blocks: 203.75.51.0/27 maxlen: 27
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:35:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4583 (0x11e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 26 05:18:03 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=AF4E1A8A7CF7E18225177C49500AB7D57877D22E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:64:a1:14:33:0d:ec:68:e3:46:a0:cd:92:23:
b2:ea:04:6e:08:a0:9b:e4:05:f2:1b:d9:96:db:6e:
fe:09:eb:52:a3:a9:67:4a:6c:c9:1e:f8:e5:78:7f:
b1:91:16:ae:5a:89:8c:09:1d:8d:7d:a9:4a:10:ea:
c3:68:c4:e5:1f:f3:7a:5c:9f:2c:f6:c9:e9:55:f1:
0e:1f:ab:29:f8:fd:c4:c7:05:0a:a8:0a:bf:d2:9d:
de:57:ee:c5:d2:0a:7e:70:a7:6a:cc:d2:d4:9d:2c:
a8:21:69:54:9c:60:ec:85:d0:db:4d:3b:0c:f5:90:
96:4d:9e:31:74:47:7d:b5:be:43:0d:16:7f:79:3b:
98:f3:8b:66:04:81:08:fc:1b:51:e1:bf:40:6f:2e:
d8:39:c1:f5:46:8e:16:1b:8c:37:f9:1c:93:c3:9e:
7f:b6:8e:24:2e:f7:dc:43:d7:d0:cb:c8:a7:fc:bd:
b3:db:da:48:d8:06:78:f4:49:5c:fc:2e:a7:f1:07:
69:34:58:bd:62:ad:2d:ed:24:c8:2a:37:c1:cb:e9:
f8:8e:ea:b5:5f:31:36:5e:6f:43:fa:07:75:7c:4d:
72:a2:59:87:f5:e8:8a:7b:6c:d2:28:ad:f3:5d:dd:
85:2f:91:9e:5e:4e:dc:0a:c9:19:41:51:5f:88:df:
5b:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:4E:1A:8A:7C:F7:E1:82:25:17:7C:49:50:0A:B7:D5:78:77:D2:2E
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/r04ainz34YIlF3xJUAq31Xh30i4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.75.51.0/27
Signature Algorithm: sha256WithRSAEncryption
19:ad:ff:66:03:19:b4:aa:cc:16:a3:94:e8:e1:56:2d:85:bf:
4d:8f:e3:e3:f2:f4:7f:30:40:37:54:17:8a:95:bb:4d:85:27:
1a:73:9e:a9:bb:f5:ea:b1:da:5e:57:7b:18:9e:20:a5:e7:12:
1f:06:c6:12:e1:2e:64:45:5f:50:68:fa:54:0f:08:49:b9:3a:
22:95:df:6b:36:82:16:ab:79:ba:98:d8:ef:32:60:ca:da:bc:
34:1e:97:6f:ec:11:a1:76:e9:54:f1:a0:7a:61:29:3b:f4:fe:
24:6c:4c:24:d9:85:7e:ed:5f:8e:cd:df:0d:01:ec:47:ed:97:
33:21:05:13:3d:f4:0f:5f:93:8a:ad:80:6e:3c:45:e4:3c:3a:
d8:73:50:6a:2e:74:79:63:60:9e:8e:34:a7:2b:83:99:cf:ed:
b4:97:58:0c:9b:74:98:fa:f3:f9:e8:87:eb:27:33:c3:27:7d:
c2:0b:0e:3b:e2:43:56:e7:6f:34:9a:85:aa:c8:02:ec:46:cb:
17:d9:b3:64:f7:14:2a:0e:25:c5:a6:aa:34:df:77:67:93:ce:
4c:97:b9:4c:f1:3b:09:af:f9:38:de:13:37:2e:c4:f2:a0:60:
66:49:a4:b6:47:ea:09:bc:b6:31:98:24:8e:26:30:45:27:d0:
af:da:a6:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:45:02 2025 by rpki-client