Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/wYoEO9nM7tUJqomuF-bXtAg048U.roa
File: wYoEO9nM7tUJqomuF-bXtAg048U.roa (raw, json)
Hash identifier: vSXNNhRk3nUhZxhurxGzPCaWyZ0+HODm/Rvd7i4QLrg=
Subject key identifier: C1:8A:04:3B:D9:CC:EE:D5:09:AA:89:AE:17:E6:D7:B4:08:34:E3:C5
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 11BC
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/wYoEO9nM7tUJqomuF-bXtAg048U.roa
Signing time: Mon 26 Aug 2024 05:17:53 +0000
ROA not before: Mon 26 Aug 2024 05:17:53 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 218.166.0.0/15 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:35:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4540 (0x11bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 26 05:17:53 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C18A043BD9CCEED509AA89AE17E6D7B40834E3C5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:03:08:2a:e3:83:98:41:fa:8f:05:c2:ea:68:
f4:e4:44:df:68:59:cb:73:4e:5a:0e:99:25:3f:1f:
a3:92:ec:3d:f1:aa:63:0d:cb:fc:70:e4:ad:3c:d7:
b2:c5:f0:98:2c:11:69:fb:c5:50:7b:42:d5:03:bd:
20:f2:40:3d:a4:ed:78:8b:06:93:59:c3:28:77:3c:
29:86:17:ff:d2:e8:6e:f8:80:7f:88:73:f3:21:07:
82:34:8c:b3:82:b2:2c:08:8a:ba:03:4e:86:ef:d6:
55:d2:e3:74:1e:f6:b8:01:98:50:36:23:3b:92:1e:
65:fc:5e:c6:88:07:7f:38:be:dd:a2:aa:17:e4:1c:
2f:ea:ca:76:16:bb:02:8f:eb:bb:91:b2:bb:84:1e:
cc:95:2a:2a:20:c8:42:43:bf:dd:d1:ea:c5:8b:a7:
b6:27:00:a1:49:ac:b9:c2:b6:f6:d7:9c:75:48:e5:
b0:53:37:9c:1d:40:bf:71:a7:2b:4d:48:5d:f9:a6:
58:58:2e:d2:2d:0c:71:92:7a:9a:18:62:58:02:c3:
8d:5b:53:ac:c7:d1:e2:ca:9c:cd:37:94:ce:e9:28:
9a:da:12:e6:3d:96:f5:ec:ed:a4:ae:dd:ef:3d:63:
e7:b3:33:4c:ee:f5:0e:cc:c7:36:f7:72:ac:fd:72:
b6:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:8A:04:3B:D9:CC:EE:D5:09:AA:89:AE:17:E6:D7:B4:08:34:E3:C5
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/wYoEO9nM7tUJqomuF-bXtAg048U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.166.0.0/15
Signature Algorithm: sha256WithRSAEncryption
54:61:b1:96:f6:66:59:18:bd:b6:30:4f:87:e7:f2:ce:81:cf:
03:34:d4:7e:6f:73:f0:66:88:f2:5a:94:09:3b:61:ee:09:84:
bd:03:f8:b4:dc:aa:8c:6c:77:fe:b2:45:e7:a1:84:70:cd:d3:
4f:4a:a7:17:9b:72:f1:f8:7a:0d:6a:00:b8:46:fd:cf:44:f7:
1e:bd:6b:65:91:db:55:c4:3c:d9:25:1b:56:e0:e3:1b:e3:ba:
fe:a1:7a:89:69:20:77:a3:42:de:26:9e:50:33:f7:ae:af:26:
91:cf:01:1c:d2:d3:6e:c1:d9:69:83:4c:29:d5:f4:3c:da:ce:
10:d4:51:1a:c3:d7:16:fc:57:d3:88:30:8c:7e:d9:d6:8c:d9:
50:e7:8b:70:5d:ff:d8:db:c8:d2:a7:97:80:a6:2f:92:e3:6d:
34:ec:01:8d:15:91:2d:e2:e7:42:29:09:8d:f8:15:74:2b:cb:
0e:db:1d:1d:6a:a2:fa:e6:d7:79:1c:98:2a:4a:87:a5:87:94:
b8:f8:7a:12:86:88:86:3b:08:e9:a1:7b:5a:2c:a0:10:0c:a9:
89:fa:fb:ab:8a:33:fc:40:01:dc:ec:dd:ec:1c:4c:90:07:d1:
31:c5:72:54:02:cf:04:37:6f:23:7d:2f:53:3d:a4:69:b3:fe:
29:b1:d1:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:34:11 2025 by rpki-client