Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/tbbVM-x5htjGkvHlX7_ZZee6Srs.roa
File: tbbVM-x5htjGkvHlX7_ZZee6Srs.roa (raw, json)
Hash identifier: dJI1KdZn64pzvhNCAXHnjekv8DPgXbR6mYAMx+BCkQ4=
Subject key identifier: B5:B6:D5:33:EC:79:86:D8:C6:92:F1:E5:5F:BF:D9:65:E7:BA:4A:BB
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1256
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/tbbVM-x5htjGkvHlX7_ZZee6Srs.roa
Signing time: Tue 15 Oct 2024 08:17:32 +0000
ROA not before: Tue 15 Oct 2024 08:17:32 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9505
IP address blocks: 175.111.238.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 12:51:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4694 (0x1256)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Oct 15 08:17:32 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=B5B6D533EC7986D8C692F1E55FBFD965E7BA4ABB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:5f:c4:a4:2d:17:cb:59:54:02:14:2b:4d:93:
47:68:52:b4:25:2a:d4:a0:5c:7d:c2:fe:c1:9c:f6:
2b:03:9f:46:01:3b:ff:cf:3d:27:19:4a:2d:ba:6f:
fc:94:fc:a8:bc:49:02:bb:c5:60:61:63:1f:35:b2:
fc:31:c6:8b:63:88:17:fb:9e:94:07:45:f7:a0:d9:
71:8a:8e:30:1f:d6:d2:a8:7e:1e:93:3b:6f:b7:80:
ea:5e:36:20:03:93:41:15:48:72:cc:f5:81:03:24:
22:ba:7b:69:9d:18:3f:dd:7b:5b:1f:c8:63:b5:ec:
ea:e9:ea:4d:6a:37:26:a9:f0:69:00:ff:5c:31:c8:
3d:d8:53:14:47:ad:54:d1:9a:81:f2:61:c5:6a:81:
db:8a:8c:bd:a4:79:62:0d:94:0e:48:84:66:8d:e0:
8d:d6:8f:a4:04:aa:c6:5b:6a:4e:4f:ff:95:ab:47:
89:d9:ac:de:8c:23:f3:f9:8e:36:30:b6:7a:85:fd:
b6:94:23:a6:da:09:d6:f5:fd:4c:5e:17:44:2a:8d:
2a:56:fe:b6:ea:82:f7:e7:1a:3b:2b:ff:89:7b:a9:
54:07:d8:03:31:f6:be:f4:d3:d4:e4:46:a0:f5:88:
22:2b:03:85:a2:70:16:e7:48:d3:6a:fb:23:2a:9d:
b2:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:B6:D5:33:EC:79:86:D8:C6:92:F1:E5:5F:BF:D9:65:E7:BA:4A:BB
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/tbbVM-x5htjGkvHlX7_ZZee6Srs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.111.238.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:f9:e7:80:0e:a1:c3:2c:c8:a6:89:30:5e:d2:52:c3:3a:e2:
0a:ed:b1:2a:c7:49:f8:0a:f7:ef:ce:95:ee:d9:55:7e:57:87:
3d:40:6f:37:de:9f:dc:f2:cb:66:35:e9:01:0e:1d:71:f9:65:
cf:97:76:ef:7c:d0:03:08:35:0a:00:27:fa:e8:6b:94:de:62:
b6:e7:c8:9f:83:e3:3e:99:6b:21:a0:33:9c:e5:bf:7e:c9:35:
bd:65:03:ed:a8:ff:e2:19:d0:b6:b9:37:4d:f5:9d:4e:f1:86:
b1:9b:a1:17:d2:0a:5d:92:a1:1a:8e:6e:6d:c4:6a:6c:60:8f:
de:ce:47:75:b5:66:bc:1a:5e:77:df:a3:80:07:1e:d4:dd:f1:
43:b1:cd:47:72:9f:06:38:3a:01:cf:c4:a3:15:53:15:d2:36:
14:f5:7d:36:4a:32:5a:02:a2:d3:09:6a:40:b2:50:2d:63:48:
de:25:12:96:20:6c:e8:05:a2:4f:8a:b6:8a:79:20:15:df:0a:
70:a0:61:14:08:01:ac:fa:8f:6c:39:c6:3e:9d:ed:b2:a5:83:
0f:cd:fd:94:71:a9:c7:6d:e5:d2:38:b9:2d:8c:64:f5:f8:f1:
04:61:ff:49:48:fe:aa:fc:2f:1d:71:83:bf:7a:f6:83:0e:4d:
bd:ea:e9:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:20:37 2025 by rpki-client