Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/wzT4sr2JLbSYxGj-nGBdEkglH0k.roa
File: wzT4sr2JLbSYxGj-nGBdEkglH0k.roa (raw, json)
Hash identifier: 3jFwm9ggJWkkrqA8JF+nXatR6+R2IDAIKLd4qTvVoV0=
Subject key identifier: C3:34:F8:B2:BD:89:2D:B4:98:C4:68:FE:9C:60:5D:12:48:25:1F:49
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 14E8
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/wzT4sr2JLbSYxGj-nGBdEkglH0k.roa
Signing time: Tue 11 Feb 2025 23:44:08 +0000
ROA not before: Tue 11 Feb 2025 23:44:08 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 220.128.64.0/18 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5352 (0x14e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:08 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C334F8B2BD892DB498C468FE9C605D1248251F49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:f3:ae:c9:77:59:44:62:3a:bc:93:d9:e0:fd:
f0:a3:3d:10:fe:07:5e:4f:c8:52:26:58:a8:84:b6:
be:a0:1b:72:dd:b9:25:6e:43:b7:fb:87:e0:bc:75:
4e:84:fb:80:52:3c:ef:0b:f1:5d:a6:5e:b7:f7:fe:
cc:01:14:b1:8f:79:67:f2:bb:fa:aa:77:c4:63:6f:
50:e7:1f:b3:83:98:41:48:a9:43:b0:48:db:fa:a3:
b8:c9:4d:fc:a7:d9:18:08:31:79:3e:1e:0c:39:79:
13:22:9e:bf:e1:a7:9b:cf:61:90:c0:18:b9:6b:b8:
c6:fe:d2:34:e1:8b:f1:a3:22:44:d1:e3:5b:4d:e5:
ce:d8:6c:e7:7a:45:fb:3a:37:09:b5:fd:1d:82:ee:
16:fe:97:f4:4e:8b:ac:e7:47:33:ca:8a:61:24:9c:
78:bc:05:50:24:70:89:6b:aa:98:1f:c6:8a:c3:7b:
e8:01:3f:40:21:4e:11:dd:3e:63:c8:0d:61:f2:8b:
a2:e9:30:92:b0:91:8d:0e:bd:3e:2f:a8:84:0a:55:
bf:2f:26:24:95:f3:f0:c5:75:63:d8:e9:ed:1e:e3:
4b:5c:29:ff:2a:70:23:75:3c:54:8f:74:26:82:0e:
2e:33:1e:00:e0:ce:ed:98:f7:08:97:3d:25:9f:95:
56:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:34:F8:B2:BD:89:2D:B4:98:C4:68:FE:9C:60:5D:12:48:25:1F:49
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/wzT4sr2JLbSYxGj-nGBdEkglH0k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.64.0/18
Signature Algorithm: sha256WithRSAEncryption
10:f6:af:89:66:41:3a:3c:4d:80:66:6e:c0:9c:9d:9c:64:8d:
26:01:f5:d5:51:f9:85:c6:7e:e3:7f:e5:24:f4:7c:93:b4:01:
13:ae:4e:26:42:2d:63:0a:2b:23:ea:43:ea:fd:e0:bb:47:8a:
a4:ab:44:d5:85:4c:3e:3b:90:26:55:82:a0:2f:c0:8a:47:c8:
c9:d2:bc:2e:df:d9:5c:ad:a4:a4:9c:05:c5:e0:5a:81:9e:5d:
75:4f:dd:15:6a:f5:90:76:92:fb:40:87:80:ba:56:90:3d:22:
ab:0e:1e:31:9e:f8:bf:58:dd:55:42:aa:74:f4:5c:a4:fc:38:
d0:9c:25:a2:1f:94:53:8b:ff:8b:20:e8:0b:04:1d:59:70:c9:
0a:28:43:00:fe:a1:fb:0f:1f:9c:02:49:7f:2b:23:a4:8e:fb:
22:38:65:16:f3:36:e6:36:ac:ed:c8:01:c4:53:48:01:c1:7e:
5a:bb:4b:ff:23:5e:a7:a0:d4:0b:22:44:71:13:39:ab:b1:4d:
65:4b:4b:af:eb:86:03:c9:4a:ad:35:5f:5f:b2:78:2e:1e:c4:
50:fa:90:7a:9a:5a:df:2a:37:15:e8:38:70:15:e9:61:c4:dd:
7c:f0:c1:d5:9e:f1:e0:e4:06:42:ec:d5:41:7a:91:b4:e2:db:
04:eb:45:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 05:29:48 2025 by rpki-client