Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/rqSiseZR0hO028G20RXArYwZUAc.roa
File: rqSiseZR0hO028G20RXArYwZUAc.roa (raw, json)
Hash identifier: wx0N0OC36EjtPCvHRmfzxZsPo5Cor4J92JX34SnHgLE=
Subject key identifier: AE:A4:A2:B1:E6:51:D2:13:B4:DB:C1:B6:D1:15:C0:AD:8C:19:50:07
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 14B1
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/rqSiseZR0hO028G20RXArYwZUAc.roa
Signing time: Mon 10 Feb 2025 14:35:11 +0000
ROA not before: Mon 10 Feb 2025 14:35:11 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9505
IP address blocks: 175.111.237.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Feb 2025 23:44:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5297 (0x14b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:35:11 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=AEA4A2B1E651D213B4DBC1B6D115C0AD8C195007
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:fa:17:b7:b6:3f:40:de:71:c5:69:35:33:9b:
dd:47:91:9d:67:17:91:ec:f7:84:aa:91:cf:3a:b4:
35:87:e7:2c:01:9a:72:33:04:ea:8a:03:e5:63:90:
3f:d3:b3:8d:6a:38:6e:32:e6:14:a5:11:26:c4:f8:
1e:15:ad:1b:03:ad:54:d9:8f:85:ef:2f:b6:3a:b1:
a3:21:f1:31:05:60:1f:ad:09:ed:23:93:bd:36:ed:
7f:4a:3d:26:e9:6d:98:78:32:da:66:89:33:80:1c:
da:df:b5:85:3f:88:94:c5:ef:ec:82:56:77:c6:ad:
e7:a9:e4:45:38:a5:48:e5:0a:11:12:49:7c:d5:43:
0c:7e:d6:db:0e:30:59:a1:4a:43:03:1f:15:e7:88:
2d:e3:9f:10:67:6d:72:83:1e:c0:c2:e7:d5:d7:b2:
fc:bb:6b:7d:70:8b:22:ea:64:3d:c7:7c:c6:24:c3:
fd:4b:4c:15:56:00:ec:75:17:89:0c:ff:8d:d4:27:
bd:c0:51:ea:d8:d8:64:3f:36:de:f3:c2:a5:72:30:
f5:bf:3b:b9:c1:f2:61:6f:23:9a:bd:07:c7:85:b7:
ef:59:97:0f:f2:93:52:f4:21:00:ae:0a:b4:22:80:
60:d7:fa:3d:e7:26:93:c0:95:0a:ae:0a:6e:66:f5:
45:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:A4:A2:B1:E6:51:D2:13:B4:DB:C1:B6:D1:15:C0:AD:8C:19:50:07
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/rqSiseZR0hO028G20RXArYwZUAc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.111.237.0/24
Signature Algorithm: sha256WithRSAEncryption
76:a2:11:69:d8:74:f7:c5:ae:e1:27:92:9b:98:44:41:35:15:
25:72:95:28:3a:b8:6d:b1:b0:d0:d2:ab:12:ee:12:df:ec:ff:
fa:60:cc:be:6b:00:0c:23:52:f4:ee:be:e2:13:22:80:16:64:
e4:dd:c5:b9:41:8f:8d:ce:4c:7b:f6:7e:98:1b:fe:59:dc:ab:
61:27:65:ba:33:f0:c5:cc:24:d3:9d:c4:83:a4:1c:8f:0a:da:
c0:a9:df:17:e1:2d:ef:7a:03:fb:f6:d0:af:a8:64:15:52:c6:
7a:b6:aa:b9:30:fd:58:79:aa:3b:52:36:c0:70:e2:74:3a:4d:
73:58:46:d0:d3:91:04:bd:29:47:ea:1e:44:ef:28:cb:94:d6:
8d:45:88:ed:d5:51:ce:51:20:fb:29:5b:ac:4a:a8:99:da:b7:
d2:62:fb:38:da:53:66:7c:59:98:5f:53:37:47:d5:42:fd:37:
b5:bb:1d:b1:26:39:8c:aa:ec:a5:81:0e:78:0a:fc:69:12:2c:
c3:82:51:ec:5b:8a:c4:7d:ee:08:d2:32:c4:11:23:f9:35:46:
1f:88:71:e4:d6:b0:37:2a:e0:3a:98:9c:f0:2b:c3:36:ac:f5:
f3:df:d1:c9:aa:23:70:54:a0:b7:90:78:d1:58:ea:e7:70:7c:
70:c9:7f:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:33:15 2025 by rpki-client