Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/zhRKJfY4ldFH78RfqaIUIukS1kw.roa
File: zhRKJfY4ldFH78RfqaIUIukS1kw.roa (raw, json)
Hash identifier: hoG8Dv/uj5Ur75aSd2AvWOpVUKza5soStcIgSdW3CYg=
Subject key identifier: CE:14:4A:25:F6:38:95:D1:47:EF:C4:5F:A9:A2:14:22:E9:12:D6:4C
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1449
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/zhRKJfY4ldFH78RfqaIUIukS1kw.roa
Signing time: Mon 10 Feb 2025 14:34:47 +0000
ROA not before: Mon 10 Feb 2025 14:34:47 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 7481
IP address blocks: 210.62.255.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Feb 2025 23:44:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5193 (0x1449)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:34:47 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=CE144A25F63895D147EFC45FA9A21422E912D64C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:6b:20:67:d7:e7:98:8c:ce:81:55:ee:0c:87:
3a:b0:0a:21:ce:4b:78:af:a4:06:91:7d:bc:82:0a:
a0:f2:4e:2b:22:66:f7:cf:38:ae:01:cd:fd:bc:db:
8b:34:1c:d0:04:56:ad:fc:62:49:2b:80:d6:ba:5a:
53:06:46:88:e8:58:5d:22:31:4c:ca:ed:f7:74:b1:
d5:7c:1e:c2:b1:c6:92:a2:9c:2e:b5:ac:5f:5f:e5:
6d:f0:88:aa:01:fc:d2:ff:0a:ac:3f:63:72:13:31:
79:65:46:b1:b2:ad:b3:ef:01:18:95:22:c2:27:a4:
92:57:c8:f7:86:b3:4e:9a:28:eb:89:05:ca:87:92:
72:b5:3e:7d:ad:4b:fd:4a:aa:d0:9b:18:c6:48:be:
25:3c:c0:93:ac:e9:59:17:ce:a6:92:40:8b:c6:53:
03:17:5c:52:96:ba:db:b1:e2:69:13:5f:52:e3:4c:
c0:6d:0f:df:4e:f0:c3:57:ac:3c:4b:bf:71:2b:a5:
b7:b2:f8:8e:71:9f:27:e1:f4:60:6a:5b:54:62:d3:
20:37:2d:29:c6:9d:77:7f:c9:75:60:e4:9e:3a:ba:
c4:d0:1a:8f:56:2f:4e:a7:df:94:b8:0e:29:95:69:
aa:4a:2c:0d:16:8d:1f:39:61:1f:85:12:a7:e9:da:
31:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:14:4A:25:F6:38:95:D1:47:EF:C4:5F:A9:A2:14:22:E9:12:D6:4C
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/zhRKJfY4ldFH78RfqaIUIukS1kw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.62.255.0/24
Signature Algorithm: sha256WithRSAEncryption
85:c0:33:4f:54:41:dd:37:f1:de:b7:c7:d9:8d:ed:90:74:15:
a3:a9:7c:af:57:31:e5:5f:23:7f:9d:41:c8:0f:1c:2a:1e:c3:
e3:25:d2:34:60:98:95:30:9d:4b:a7:9a:90:3e:9e:9c:2b:ef:
1d:38:6b:64:0e:21:ce:a6:fc:bc:9f:d4:75:36:d6:af:82:d1:
69:84:ea:66:7d:a5:66:18:a0:40:bb:99:24:4c:a6:2a:48:82:
fe:8f:fd:5d:8f:1c:71:12:ac:c8:12:26:b8:83:1c:f9:33:45:
ee:5f:10:44:6a:16:77:d8:77:78:81:6a:b5:a3:40:42:9b:9e:
9e:71:c1:4c:d0:f9:27:11:08:b8:63:1a:30:70:70:18:5b:e1:
4a:6a:98:60:2b:b6:40:67:6c:43:6d:cc:91:a2:e6:61:08:9e:
04:14:63:c6:87:0e:38:62:82:41:a6:e6:75:9c:36:b5:92:fc:
99:12:4e:f1:6c:ae:65:db:a5:62:ac:20:ec:23:72:29:4d:f9:
a4:de:7e:ff:fa:80:27:26:d4:58:9d:ec:d9:bc:16:5c:7b:09:
82:d4:92:dd:9d:60:18:ac:c0:cb:a1:dc:0b:25:b5:5f:75:c9:
52:86:d8:c3:b8:30:7b:b2:f8:4a:ad:d9:e7:22:91:63:1c:c2:
a5:45:86:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:23:50 2025 by rpki-client