Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/tjSI2ZqiZR84l2zJz-WccT-WVx0.roa
File: tjSI2ZqiZR84l2zJz-WccT-WVx0.roa (raw, json)
Hash identifier: v5ZttrDHLbgyDWY8SZN3QffXxPtalk3c7cWc18ms9HY=
Subject key identifier: B6:34:88:D9:9A:A2:65:1F:38:97:6C:C9:CF:E5:9C:71:3F:96:57:1D
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 146A
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/tjSI2ZqiZR84l2zJz-WccT-WVx0.roa
Signing time: Mon 10 Feb 2025 14:34:54 +0000
ROA not before: Mon 10 Feb 2025 14:34:54 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 10126
IP address blocks: 114.30.32.0/20 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Feb 2025 23:44:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5226 (0x146a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:34:54 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=B63488D99AA2651F38976CC9CFE59C713F96571D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:55:2d:1c:8e:43:c5:c8:02:5b:26:5c:a6:df:
28:0d:ee:fb:25:03:f1:51:73:9d:33:3a:e4:0b:dc:
bc:ea:87:09:7f:05:7b:5f:19:d0:30:ba:ba:b8:75:
23:bd:84:dc:05:f1:b1:2c:58:f6:d6:4f:06:e7:13:
62:ff:fd:0c:25:03:d2:8d:0f:e6:20:bc:db:2c:51:
4a:2c:1b:70:15:30:c3:3e:1c:e6:93:a5:cb:03:26:
25:82:5f:2e:9b:74:ce:ba:da:ba:89:10:86:58:52:
c6:ed:50:fa:cd:80:e1:df:cf:5d:c1:bb:0e:4d:51:
7d:fd:52:5c:85:0c:39:b0:8d:8a:12:c8:9a:ea:8e:
a6:08:63:4f:c9:47:30:74:7b:4d:82:99:6b:7d:59:
7a:3c:2d:f4:ac:45:1e:dc:4c:bc:07:99:ad:d4:cb:
3c:1b:36:72:c2:c6:65:a4:57:3c:70:2e:7e:b0:c5:
93:1b:0b:bc:a0:3e:02:b7:83:1a:ba:0f:2f:0f:3f:
ac:d5:a9:bc:9b:ca:a5:48:8c:aa:e3:e7:d3:fe:61:
dd:c0:51:2b:43:12:40:59:0e:2f:11:d0:41:32:e3:
70:61:7f:50:5f:b9:3e:95:1e:41:60:c7:e9:b0:91:
de:f4:6b:31:b6:9e:a7:e2:55:4e:c2:58:56:fc:f9:
50:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:34:88:D9:9A:A2:65:1F:38:97:6C:C9:CF:E5:9C:71:3F:96:57:1D
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/tjSI2ZqiZR84l2zJz-WccT-WVx0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.30.32.0/20
Signature Algorithm: sha256WithRSAEncryption
b3:12:dd:9e:c3:13:d9:2b:f7:83:26:60:0b:6d:44:bc:39:84:
1f:6a:b1:bf:16:18:43:74:f4:78:30:70:46:42:28:81:98:14:
d2:61:f4:33:e7:ff:c5:2d:ed:fc:83:19:f5:aa:66:b5:12:4f:
bf:88:c8:da:f6:ca:81:74:25:4c:fc:51:02:24:c9:88:ee:e7:
41:38:6e:27:a3:8e:a6:6b:87:ea:31:fa:2f:75:71:a7:a1:a3:
24:a8:89:38:93:89:07:1e:fb:b3:f6:e1:68:12:fb:47:ce:79:
1c:5e:5a:58:6c:d3:29:f7:09:57:af:85:09:d4:84:cd:dd:e3:
61:ed:80:6b:79:a6:62:3b:db:04:55:f6:a9:9b:1c:86:7c:1e:
51:98:6d:56:dc:7f:48:35:3c:cf:e2:0c:e0:82:58:e8:60:2f:
39:8c:5b:9a:c3:68:9e:2f:e1:67:23:1d:0a:03:aa:e5:a8:c4:
2f:b8:9b:20:33:0d:b3:86:ea:1d:8c:54:c9:09:fe:ff:5c:fe:
15:bf:c4:31:60:9a:21:77:9a:65:e1:0a:ba:97:e0:15:50:6e:
01:43:de:ac:9f:af:14:b0:37:f3:11:5e:01:dc:28:75:a5:bf:
d8:ed:a8:99:e6:e4:17:4d:96:1c:1c:a0:b3:0b:14:0c:12:a7:
a7:09:b1:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 17:20:02 2025 by rpki-client