Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/vtsI1EgxdXPOGQn7ikJx5x-a0Nc.roa
File: vtsI1EgxdXPOGQn7ikJx5x-a0Nc.roa (raw, json)
Hash identifier: QXGr4jR2s5+CvCeLDWyb7k44m7iAaAkSBnq8RCS1Z8o=
Subject key identifier: BE:DB:08:D4:48:31:75:73:CE:19:09:FB:8A:42:71:E7:1F:9A:D0:D7
Certificate issuer: /CN=5876E4B8DFAA224C019D246931FC3CD7A4FEED2A
Certificate serial: 0D2C
Authority key identifier: 58:76:E4:B8:DF:AA:22:4C:01:9D:24:69:31:FC:3C:D7:A4:FE:ED:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WHbkuN-qIkwBnSRpMfw816T-7So.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/vtsI1EgxdXPOGQn7ikJx5x-a0Nc.roa
Signing time: Mon 26 Aug 2024 05:18:18 +0000
ROA not before: Mon 26 Aug 2024 05:18:18 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9680
IP address blocks: 168.95.245.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 12:51:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3372 (0xd2c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5876E4B8DFAA224C019D246931FC3CD7A4FEED2A
Validity
Not Before: Aug 26 05:18:18 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=BEDB08D448317573CE1909FB8A4271E71F9AD0D7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:2b:6a:aa:93:31:7f:80:b6:83:68:4c:ff:80:
ec:8c:80:9f:2b:76:c0:fc:b4:bf:00:d4:47:ad:58:
3e:72:d2:19:a4:cd:84:77:85:6d:09:4c:5e:04:7c:
d8:c7:64:98:5d:61:76:8b:66:7f:ac:40:cd:71:07:
ec:12:88:06:08:b6:8b:eb:04:b9:32:ab:15:27:f3:
52:a1:2f:a4:74:f5:a1:19:42:e2:91:46:4a:bd:17:
b0:8e:90:c3:2c:75:9a:43:32:1c:18:15:cd:fd:72:
9c:0b:63:a8:23:08:71:e4:3d:a8:7b:f7:6e:9f:40:
9c:e5:b9:8e:6a:f8:22:4b:d5:88:d5:ef:93:9d:ef:
be:14:d9:19:6c:d6:ed:13:4c:58:c4:8b:c7:8d:ab:
f9:ec:d1:7c:34:34:89:8f:5b:fa:a4:c9:e3:2a:2b:
87:78:87:05:89:3b:9f:c0:69:3e:d6:14:b8:41:28:
c9:5d:9d:44:b6:52:65:48:8c:85:20:b1:f2:c0:56:
2f:ab:04:1b:ac:ef:3e:de:41:78:33:b0:19:82:3d:
df:10:b6:e9:bc:dd:c5:e0:e4:27:83:9b:eb:2e:c6:
2b:7e:05:f0:cc:17:c7:bc:79:6f:2a:9e:7b:6a:f5:
b6:51:1b:80:02:87:2f:d4:49:99:52:24:d9:c6:74:
7b:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:DB:08:D4:48:31:75:73:CE:19:09:FB:8A:42:71:E7:1F:9A:D0:D7
X509v3 Authority Key Identifier:
keyid:58:76:E4:B8:DF:AA:22:4C:01:9D:24:69:31:FC:3C:D7:A4:FE:ED:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WHbkuN-qIkwBnSRpMfw816T-7So.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WHbkuN-qIkwBnSRpMfw816T-7So.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/vtsI1EgxdXPOGQn7ikJx5x-a0Nc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
168.95.245.0/24
Signature Algorithm: sha256WithRSAEncryption
79:7a:aa:30:87:f5:88:78:cd:99:ec:ec:a4:fe:00:d6:a2:cd:
29:73:fa:f2:2e:30:37:a0:e7:2b:84:74:05:3c:f6:b8:30:4a:
9e:f8:0c:34:d5:6a:3d:ea:df:9b:08:77:e0:de:30:36:60:9a:
20:af:6a:47:74:2d:0d:86:1f:9f:90:48:2d:93:4c:92:78:f3:
28:b3:5c:8e:6a:5f:62:c4:99:10:f8:9d:d5:4b:1a:65:f1:73:
ca:1d:98:5c:8b:5f:91:c9:72:1f:aa:5f:b3:cf:0d:63:a7:92:
6d:97:74:3a:90:f6:8c:c4:d7:09:d6:81:3c:fd:f8:31:e8:1c:
6c:14:37:f9:42:4e:48:db:8d:75:58:92:83:aa:8f:ac:92:62:
d4:7a:c7:03:22:77:31:46:f0:05:bf:e4:5b:aa:6d:74:9b:5e:
b6:ff:57:6b:8e:3b:83:96:8f:9b:3e:28:6d:23:12:e9:c7:19:
1a:a3:94:04:47:0f:ff:d3:92:3d:a6:47:1b:f9:b3:38:77:50:
70:f8:6f:19:b1:59:9b:c8:13:ba:bb:39:5a:eb:18:51:48:1f:
ad:70:98:10:42:32:e2:43:d3:3b:bb:43:fc:4e:6d:75:87:97:
f8:ab:e4:c9:6d:b9:a6:06:26:e4:d4:ee:40:1d:6a:af:ec:3e:
15:49:0d:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:21:42 2025 by rpki-client