Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HYA/5TmIJU8HHq29mWqQMYD55A_Nb2A.roa
File: 5TmIJU8HHq29mWqQMYD55A_Nb2A.roa (raw, json)
Hash identifier: py+flD9G8/Ft3ax19PfhsiTcxPK6l0ecE8NOT/DThd4=
Subject key identifier: E5:39:88:25:4F:07:1E:AD:BD:99:6A:90:31:80:F9:E4:0F:CD:6F:60
Certificate issuer: /CN=0EAE2D331F2C4280C16AA8BAFE16FDDCCE3715B4
Certificate serial: 0C58
Authority key identifier: 0E:AE:2D:33:1F:2C:42:80:C1:6A:A8:BA:FE:16:FD:DC:CE:37:15:B4
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Dq4tMx8sQoDBaqi6_hb93M43FbQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HYA/5TmIJU8HHq29mWqQMYD55A_Nb2A.roa
Signing time: Wed 13 Nov 2024 02:19:35 +0000
ROA not before: Wed 13 Nov 2024 02:19:35 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4780
IP address blocks: 114.29.240.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 13 Nov 2024 05:43:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3160 (0xc58)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0EAE2D331F2C4280C16AA8BAFE16FDDCCE3715B4
Validity
Not Before: Nov 13 02:19:35 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=E53988254F071EADBD996A903180F9E40FCD6F60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:56:74:64:9c:06:59:82:e3:cf:53:f3:42:00:
1d:f5:de:7b:bb:79:3e:12:37:0e:62:ac:4a:5d:5b:
e1:4a:5b:a2:7a:cd:55:7b:cb:2c:ce:c3:92:f4:3f:
d0:37:a0:eb:8b:c3:ad:86:47:17:e6:78:c9:d5:9d:
9f:e4:c3:90:c3:1d:b0:3c:38:70:94:dc:d2:a1:44:
1b:01:b9:cf:d7:e8:23:16:68:aa:37:26:65:f5:8f:
4c:43:6c:20:ae:34:28:b0:25:17:63:c5:06:07:c8:
2c:65:bc:8a:d3:ae:26:db:cc:4a:3c:c7:07:4c:95:
49:1d:9a:82:9e:07:f7:78:29:b6:70:3e:bd:df:2e:
53:fb:21:8a:7e:7c:8b:9a:5e:a1:f6:48:a8:11:0a:
3b:6a:3c:56:23:42:2d:92:50:03:17:c5:2f:86:4d:
1b:83:9b:30:9a:d4:54:2e:ba:a6:fd:09:e6:db:6f:
6d:a3:9c:b5:61:04:c5:53:d7:b8:22:f2:50:92:6a:
20:61:48:2f:f5:6d:28:1a:be:ac:ec:c0:e2:07:44:
3c:c3:4a:da:d7:aa:bb:6f:5a:e2:d0:6c:32:57:e3:
6e:20:06:e5:66:2b:be:22:f1:5e:da:8e:22:2c:4e:
07:48:bf:30:aa:18:a8:0b:12:5f:ce:a8:51:70:1a:
20:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:39:88:25:4F:07:1E:AD:BD:99:6A:90:31:80:F9:E4:0F:CD:6F:60
X509v3 Authority Key Identifier:
keyid:0E:AE:2D:33:1F:2C:42:80:C1:6A:A8:BA:FE:16:FD:DC:CE:37:15:B4
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HYA/Dq4tMx8sQoDBaqi6_hb93M43FbQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Dq4tMx8sQoDBaqi6_hb93M43FbQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HYA/5TmIJU8HHq29mWqQMYD55A_Nb2A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.29.240.0/22
Signature Algorithm: sha256WithRSAEncryption
65:7a:44:86:13:87:51:7a:4d:c9:17:e4:6d:7d:05:dd:b3:63:
e3:41:05:ff:dc:43:8b:3b:6d:d8:14:53:2c:2e:b4:ed:a3:e3:
76:b7:b3:fd:aa:32:d1:86:73:73:98:6d:7a:6e:5f:dd:d8:65:
05:6f:94:d6:54:4c:04:4b:c4:d4:6d:70:8a:65:59:8f:a8:cf:
e8:c1:57:67:5c:2a:ad:ec:aa:3e:b6:e6:40:71:63:d4:d4:f1:
c2:30:be:e0:63:3d:e1:78:38:5f:f6:c2:af:f2:a3:13:cc:a1:
1f:ff:d7:93:09:89:26:01:54:3c:5f:e6:f7:04:49:20:9d:80:
e5:96:5a:14:da:53:38:d6:ea:c4:cc:c4:e7:06:b1:a9:9e:fe:
93:72:e7:ce:ef:d4:28:fa:3f:69:19:47:5d:0a:54:ef:61:13:
36:91:67:6f:48:0d:7c:cf:0a:cf:66:fe:4d:79:98:40:a2:12:
43:11:d2:16:c9:b7:4c:45:be:09:ab:30:29:77:74:e0:82:f2:
a3:f2:56:f5:fb:ad:12:f6:d6:b1:89:9a:48:8a:34:4b:60:ff:
06:66:ee:87:f4:4c:91:08:04:51:01:c1:4a:4f:1f:d9:20:c8:
de:ed:f8:82:ab:15:85:03:fc:0b:76:31:a5:65:8f:4e:88:b2:
2b:01:35:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:44:30 2025 by rpki-client