Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/0-033THvTX5d6XvfGjyImPXAHNA.roa
File: 0-033THvTX5d6XvfGjyImPXAHNA.roa (raw, json)
Hash identifier: FWHi0MkvE+sjA/77TXTuxeRiWnGBPh9wuO/nA7JnIuY=
Subject key identifier: D3:ED:37:DD:31:EF:4D:7E:5D:E9:7B:DF:1A:3C:88:98:F5:C0:1C:D0
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 150E
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/0-033THvTX5d6XvfGjyImPXAHNA.roa
Signing time: Tue 11 Feb 2025 23:44:17 +0000
ROA not before: Tue 11 Feb 2025 23:44:17 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17421
IP address blocks: 116.59.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5390 (0x150e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:17 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=D3ED37DD31EF4D7E5DE97BDF1A3C8898F5C01CD0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:29:28:2b:f0:37:3e:23:69:56:c5:e3:01:3b:
77:cc:56:d1:94:65:8c:8c:34:19:19:c6:7e:fc:1c:
f4:52:33:fb:92:2f:08:1d:a2:1a:cc:55:7a:48:5a:
4d:9b:7b:54:4f:a1:38:12:e6:7b:e9:12:60:55:8e:
6e:ec:48:e7:a7:1a:97:37:c9:7a:01:93:3e:04:84:
c3:ea:bf:b6:49:e4:ac:dd:59:c3:76:96:d6:0d:ac:
ee:4d:4a:80:d5:c0:c7:d4:ab:20:3f:dd:52:21:d9:
00:3c:73:34:fb:1d:6a:63:f1:dc:91:25:56:44:e4:
dd:d7:d5:18:18:ac:6a:0e:a7:2e:77:e9:11:8c:d8:
f1:ee:8b:38:24:79:ca:7a:2b:bb:18:6e:41:2f:c8:
90:6d:12:23:b6:96:23:c7:fc:7f:97:f4:8e:70:0a:
04:22:b6:5d:9c:f9:4b:7f:9f:59:10:7e:f7:b1:2c:
d1:ec:35:7a:98:b3:19:12:a1:31:29:3a:9f:c2:01:
b9:c0:54:e6:ad:c7:78:73:10:fa:73:33:ab:6b:44:
a1:4c:22:d1:9e:db:34:d8:45:17:5c:d4:2c:4c:6f:
f3:a9:73:8a:a7:2a:42:08:57:2a:86:e5:09:a8:11:
7d:ed:e7:1a:ff:91:21:8d:a5:f6:f5:be:ec:2e:bd:
7e:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:ED:37:DD:31:EF:4D:7E:5D:E9:7B:DF:1A:3C:88:98:F5:C0:1C:D0
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/0-033THvTX5d6XvfGjyImPXAHNA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
116.59.0.0/16
Signature Algorithm: sha256WithRSAEncryption
0b:02:2b:62:69:ad:94:81:01:4f:59:18:3f:08:ee:44:ac:07:
08:39:94:29:19:8a:83:b4:cf:15:37:b2:bc:b2:20:55:c6:c5:
28:1b:b9:aa:26:ea:df:ea:1e:67:f5:a6:d4:45:f1:0a:2c:c8:
e3:1d:88:d2:10:a2:bd:ed:bf:e2:7b:ad:85:cc:42:e6:2d:43:
f0:a8:8f:43:c7:03:4c:e9:1b:3e:9e:cc:df:b0:73:ce:3e:f7:
7c:48:7d:ee:e0:75:65:bd:b8:c3:04:cb:f3:bc:6e:67:5e:d2:
b8:95:3b:af:78:01:46:24:60:87:cb:14:a9:6f:95:82:ef:90:
e4:a3:32:84:96:df:45:90:38:a2:53:b7:f1:5b:f8:bf:8f:ec:
cd:43:8b:2e:eb:8b:31:c9:99:dd:3c:2c:33:64:1b:36:45:af:
65:f6:b3:f3:03:30:ae:41:34:69:6d:19:31:2e:db:d8:76:5a:
d4:8c:6a:84:68:6f:f4:7d:67:49:ab:5b:7c:f4:b1:29:2e:5d:
e7:7c:15:3b:0a:2a:b6:7b:fa:57:eb:48:f8:be:c8:54:25:88:
d2:98:db:85:a1:29:09:af:7f:11:1e:c1:a3:66:8b:8f:cd:a8:
6d:70:f4:51:50:85:80:a4:20:0f:37:cc:70:5d:b5:d9:6e:30:
2c:1b:19:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 12:49:11 2025 by rpki-client