Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/vMtv5A-ZlL_XWGyVuEF8zhRjKZY.roa
File: vMtv5A-ZlL_XWGyVuEF8zhRjKZY.roa (raw, json)
Hash identifier: 4C3O0qBSuCpTykuhpm9YCsJJM6bXAGwdKYseAlZe1KE=
Subject key identifier: BC:CB:6F:E4:0F:99:94:BF:D7:58:6C:95:B8:41:7C:CE:14:63:29:96
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 14EE
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/vMtv5A-ZlL_XWGyVuEF8zhRjKZY.roa
Signing time: Tue 11 Feb 2025 23:44:10 +0000
ROA not before: Tue 11 Feb 2025 23:44:10 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 20940
IP address blocks: 210.61.248.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5358 (0x14ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:10 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=BCCB6FE40F9994BFD7586C95B8417CCE14632996
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:e1:4d:6f:a7:d9:48:44:a1:8d:83:37:ab:b8:
2f:c5:aa:91:bb:ed:eb:3b:0e:58:d0:f0:26:ac:96:
46:db:ff:e8:31:2b:e8:e8:6e:6e:f3:ee:d1:de:68:
98:cf:46:05:62:1e:e2:b0:8c:ec:75:1e:7c:1c:4d:
bd:5e:2c:27:1b:96:85:ed:8d:cf:60:9e:48:b2:1f:
fa:77:cf:98:32:57:d0:39:b6:a1:a6:59:bf:fa:21:
43:66:4b:60:11:00:3f:27:d9:66:c4:52:75:5f:d9:
11:f5:0d:6f:cc:4b:12:81:97:c5:88:f9:be:42:1b:
17:ab:6f:fd:4d:1c:4f:18:de:6c:d7:98:ef:a4:af:
98:be:96:dc:d9:3a:8e:bb:54:6f:59:0b:d4:f2:ef:
8e:55:1c:d9:f6:a5:ce:da:9a:60:4d:f8:b7:cf:39:
b3:bb:34:5a:d4:0e:63:4c:72:6c:1c:ce:8f:70:a7:
6a:de:1b:02:96:e0:b7:cb:93:61:4a:16:5c:34:29:
b6:c7:20:8a:9f:39:31:93:e3:21:d7:5a:78:a1:6f:
09:18:98:ef:49:3f:e9:7b:66:e1:e6:38:85:df:e4:
c4:7a:3f:77:74:36:55:e4:c2:8f:e8:02:14:07:cc:
fa:20:78:72:61:9e:98:53:63:df:23:bf:d9:65:aa:
b6:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:CB:6F:E4:0F:99:94:BF:D7:58:6C:95:B8:41:7C:CE:14:63:29:96
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/vMtv5A-ZlL_XWGyVuEF8zhRjKZY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.61.248.0/23
Signature Algorithm: sha256WithRSAEncryption
b4:54:62:f2:78:ac:06:1c:fa:6d:75:51:8d:23:24:2e:4f:84:
d3:3b:6d:ea:08:4e:64:3a:30:ff:e4:8b:fd:42:ba:ac:d6:f1:
5a:31:ff:ba:9a:8c:60:d9:ea:8c:5e:fb:7b:53:c6:74:08:4a:
72:62:e4:82:dc:46:9b:31:86:37:ff:95:c6:14:c6:7f:c9:87:
aa:93:06:09:5c:c5:0f:40:b2:b4:3a:d7:b1:06:29:86:c9:95:
99:3b:cb:26:f2:83:47:42:12:94:2f:b1:d9:db:0a:4d:a3:6e:
0b:71:89:ea:c2:84:99:91:40:2f:d7:4c:bb:5c:88:fd:96:88:
01:58:ad:f1:7b:bb:7f:b2:1e:6f:50:92:8f:16:fc:7c:65:52:
dd:da:5e:bd:17:08:db:9b:6c:ee:38:43:92:78:fa:cf:7a:f2:
21:bb:bb:4f:68:ad:b7:47:fe:e8:78:88:38:dc:62:76:98:d9:
e0:de:b6:c3:fe:b1:e3:0d:8e:77:81:6d:3f:d4:ae:5e:20:54:
af:0d:7f:92:90:53:70:07:02:6e:44:46:71:2c:b2:0d:2d:0d:
85:a5:31:f1:db:e4:6e:db:94:08:92:b7:b3:ce:88:36:24:0d:
2b:40:95:a4:68:0b:3a:12:b0:cd:3d:5c:2f:f8:7f:f4:fd:16:
3b:11:5d:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:34:01 2025 by rpki-client