Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/ziZmKNGFE1XAl0tSiiUWjymz5dU.roa
File: ziZmKNGFE1XAl0tSiiUWjymz5dU.roa (raw, json)
Hash identifier: CQndfEQ7p53OzzdSEvzupqnbc75pAM/2/LJgQ9LXF/A=
Subject key identifier: CE:26:66:28:D1:85:13:55:C0:97:4B:52:8A:25:16:8F:29:B3:E5:D5
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 147D
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ziZmKNGFE1XAl0tSiiUWjymz5dU.roa
Signing time: Mon 10 Feb 2025 14:34:58 +0000
ROA not before: Mon 10 Feb 2025 14:34:58 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17421
IP address blocks: 2001:b401::/32 maxlen: 64
Validation: Failed, certificate revoked on Tue 11 Feb 2025 23:44:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5245 (0x147d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:34:58 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=CE266628D1851355C0974B528A25168F29B3E5D5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:50:f9:e0:f7:39:15:6b:69:a8:92:0c:b9:60:
9c:1f:96:2f:94:f2:a4:3a:8d:62:46:e2:3b:2e:80:
67:63:a7:5d:34:9f:a4:ca:ee:2d:14:53:fd:64:17:
57:9a:94:16:35:f6:31:6d:fd:08:29:00:d9:f8:ce:
7e:b7:fd:c2:14:f8:68:25:b0:aa:3f:b8:0b:59:80:
48:4d:ac:ae:cf:26:08:83:f0:f0:52:1f:6e:8d:3d:
4f:3f:6b:82:9d:13:5f:c4:50:1a:d2:7a:dd:66:d4:
6d:d4:6d:bb:ed:d3:7f:40:b5:61:00:b6:40:88:94:
4a:bb:db:42:0d:ba:fe:a4:e6:35:1a:2e:f1:3f:ef:
e2:4f:27:b1:a4:fe:1f:5c:9e:8c:f8:bd:99:e1:45:
79:6e:f7:26:d9:92:7b:03:d3:b9:1f:2f:c2:a6:c7:
f8:7f:ea:ef:71:c8:92:35:1a:64:f4:98:d6:ce:db:
18:35:e5:96:fa:3f:c0:b0:e5:bd:00:1f:ab:4a:00:
4a:f1:eb:e5:49:8d:54:aa:f1:e8:b4:a2:95:39:89:
92:1a:ef:3b:e5:cb:93:b1:6e:60:6a:eb:d3:ac:60:
dc:e7:46:81:19:d3:86:d3:83:16:86:e8:2d:9b:bf:
8c:03:08:91:49:30:25:67:67:ca:2b:77:22:4b:c4:
85:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:26:66:28:D1:85:13:55:C0:97:4B:52:8A:25:16:8F:29:B3:E5:D5
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ziZmKNGFE1XAl0tSiiUWjymz5dU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b401::/32
Signature Algorithm: sha256WithRSAEncryption
1b:a8:ad:03:bb:09:77:17:77:fc:9f:c1:29:59:55:02:50:9c:
dc:db:63:98:6d:f6:cf:cd:2c:64:6a:7c:be:74:ae:05:73:69:
7f:a1:0d:08:ec:37:7f:91:12:ad:3d:c6:75:9b:79:ff:62:60:
e3:8e:10:2a:5a:cc:73:ee:ff:16:2b:80:c2:e8:4b:83:b1:96:
0c:50:70:01:7b:2d:78:cd:f9:16:a7:bf:2a:55:54:01:6d:16:
2c:87:1f:9f:78:70:b3:9f:bd:66:a3:12:fe:f4:55:8b:db:b3:
42:be:e5:b5:e2:bc:55:88:17:86:5b:48:7d:ff:37:cf:8b:ad:
f3:71:9a:17:6e:f7:c3:4c:89:1c:11:ec:3e:d7:80:74:3e:be:
5b:6c:e3:04:62:89:f7:7e:9c:fe:7c:f1:11:60:32:b9:e3:d6:
37:14:15:a5:11:e8:b5:57:51:49:0f:84:14:c3:96:e4:2a:54:
4a:8e:9b:f9:3a:77:0a:ba:a8:9d:46:81:a4:5b:5d:4a:29:19:
ec:ca:aa:ac:8f:23:3d:ae:b8:1a:6f:dd:67:39:28:16:5e:6e:
b7:eb:c1:9d:7c:41:9d:1b:52:b4:f5:d0:d3:10:91:03:67:b4:
45:25:d8:6d:66:53:cb:f1:93:79:3e:52:89:d6:14:5f:05:17:
9a:22:11:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:45:26 2025 by rpki-client