Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/t876Z6VAGNF99bh2i4TmpSSamHI.roa
File: t876Z6VAGNF99bh2i4TmpSSamHI.roa (raw, json)
Hash identifier: 2DZCtDEsq3XGPsra1vaD/wS6x6mNfSi9K2xGjdja6Rs=
Subject key identifier: B7:CE:FA:67:A5:40:18:D1:7D:F5:B8:76:8B:84:E6:A5:24:9A:98:72
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 11A5
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/t876Z6VAGNF99bh2i4TmpSSamHI.roa
Signing time: Mon 26 Aug 2024 05:17:46 +0000
ROA not before: Mon 26 Aug 2024 05:17:46 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 20940
IP address blocks: 210.61.248.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:35:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4517 (0x11a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 26 05:17:46 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=B7CEFA67A54018D17DF5B8768B84E6A5249A9872
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:d8:12:77:98:35:6d:aa:ca:ca:f5:26:d2:63:
85:e7:f3:6a:be:89:fa:35:ca:a9:7f:fb:11:48:f6:
d4:8b:2e:54:3b:c1:c4:29:40:80:99:ea:17:f3:60:
87:b3:40:b6:82:a1:b8:75:29:55:f4:26:5b:e5:fe:
7d:cf:6a:24:26:e0:75:0e:90:97:1a:1b:f7:eb:9b:
c7:8a:ce:82:4b:5f:fa:0b:93:a8:8b:fa:8e:c9:c3:
4c:b8:c1:05:89:b9:70:15:77:42:31:20:bf:4f:6d:
e0:76:0a:ed:37:37:52:a3:b6:97:f5:4f:41:1d:2e:
59:95:9e:d7:1b:28:1a:47:ab:04:b1:73:b9:44:45:
bc:59:31:3c:10:a7:90:13:5b:d8:c1:7c:68:7a:8c:
36:19:59:e9:b9:fc:f7:15:c1:63:4d:6f:ca:14:79:
0e:ea:7e:1e:4f:ad:f4:a5:b7:7e:a4:f3:23:37:a9:
77:7a:60:28:57:6c:2b:6d:04:3d:c7:01:67:67:3c:
a3:c7:dc:08:64:35:0b:51:0a:ad:33:1a:6a:b9:b4:
70:ea:b5:ba:c4:68:5e:f5:b5:65:f2:1f:95:75:1a:
91:5b:2d:f6:8c:16:a1:54:c6:2e:81:cf:1a:54:b1:
8b:b1:7b:84:5f:6e:44:91:14:ae:73:3d:32:93:13:
56:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:CE:FA:67:A5:40:18:D1:7D:F5:B8:76:8B:84:E6:A5:24:9A:98:72
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/t876Z6VAGNF99bh2i4TmpSSamHI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.61.248.0/23
Signature Algorithm: sha256WithRSAEncryption
98:a9:31:9b:32:81:29:0c:d9:d4:11:20:fb:3c:c3:af:3b:1f:
cc:cd:cf:d8:ca:6a:e2:95:8d:e7:71:e8:bf:ca:06:cb:06:16:
94:ce:f0:18:35:9c:92:e2:0d:af:de:2a:ed:8d:96:df:70:2d:
43:45:e7:16:1e:2a:3b:08:7c:09:48:08:b0:f9:79:f4:00:bf:
45:b8:41:e0:39:56:2c:39:ca:b4:29:6a:dd:3b:43:f1:48:89:
88:19:b1:b8:7b:11:68:aa:1b:93:b0:5d:07:45:ce:4b:2b:be:
93:6d:ea:f9:b5:47:69:fb:bd:9e:5d:72:84:80:f3:3f:57:85:
d7:72:70:6d:5d:f8:b1:6e:5f:56:01:f8:ed:d4:a6:93:28:6d:
9e:35:59:b3:6d:9d:5d:0f:04:14:ef:20:44:79:ff:b6:b7:fb:
db:08:70:d1:47:5a:b1:e0:cd:2a:a2:a9:63:e7:8a:3b:74:7d:
7a:ee:2b:d6:f6:12:55:2c:d1:c8:ef:fa:c9:12:36:d1:86:95:
33:8f:25:d4:75:26:f0:c0:b6:ec:97:c2:65:fb:31:f1:1f:60:
a6:cc:08:00:ce:95:90:57:55:9c:18:ef:14:f9:27:d0:8b:2b:
55:15:7d:95:1c:4d:7a:07:ab:67:42:27:08:61:75:98:78:4a:
e3:c3:b5:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 16:34:32 2025 by rpki-client