Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/1p_vDmgGuGEcZxW0IadHMEXFVTo.roa
File: 1p_vDmgGuGEcZxW0IadHMEXFVTo.roa (raw, json)
Hash identifier: p16bFg0xN+OlcHBR3em/WCeZNS/K6n8O8RPA8wUWbAo=
Subject key identifier: D6:9F:EF:0E:68:06:B8:61:1C:67:15:B4:21:A7:47:30:45:C5:55:3A
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 155F
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/1p_vDmgGuGEcZxW0IadHMEXFVTo.roa
Signing time: Tue 11 Feb 2025 23:44:35 +0000
ROA not before: Tue 11 Feb 2025 23:44:35 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 198949
IP address blocks: 210.242.118.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5471 (0x155f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:35 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=D69FEF0E6806B8611C6715B421A7473045C5553A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:2d:67:9e:d9:af:41:e3:b1:3d:a2:67:cb:97:
36:c6:ad:f3:69:e3:c6:8d:70:c3:77:b3:ef:43:11:
71:78:2a:fd:ee:b1:ad:78:ab:b3:a1:04:47:6f:81:
45:d7:1f:76:67:34:8a:4a:b7:7b:6a:fb:29:f7:64:
2e:c6:ea:20:97:4e:f3:3b:41:e8:04:30:3f:05:ee:
e5:8a:d1:c3:21:67:74:06:a9:dd:db:35:97:33:16:
9f:86:6f:bb:6f:d8:26:9e:19:c1:5c:f7:d6:be:ce:
ed:01:e0:b9:4f:90:e0:de:03:d3:36:f5:4a:41:84:
15:58:9d:02:30:33:e4:1b:50:be:3b:65:9e:a4:ae:
77:a4:4f:34:32:61:32:3f:9d:b6:0f:8d:a7:8f:a9:
14:ac:11:b3:be:14:68:0e:96:f1:7a:17:04:06:65:
4a:7d:13:07:81:6e:c9:88:53:db:68:ea:97:76:32:
63:db:3d:90:d6:34:07:30:ab:8e:bc:f9:da:be:b4:
13:99:43:9c:98:7c:3a:1d:67:bb:03:48:78:d7:8c:
49:0b:ba:b6:2e:1b:c0:8e:96:52:73:91:e2:67:25:
a0:9c:85:6a:69:39:1c:82:bb:ec:69:8f:27:a6:a6:
4c:08:23:43:2f:6a:5f:67:1c:7b:4b:e9:d5:5c:3f:
c2:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:9F:EF:0E:68:06:B8:61:1C:67:15:B4:21:A7:47:30:45:C5:55:3A
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/1p_vDmgGuGEcZxW0IadHMEXFVTo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.242.118.0/24
Signature Algorithm: sha256WithRSAEncryption
be:d9:bb:af:46:70:2b:e8:38:28:61:68:0a:e1:80:61:8d:c5:
98:a1:f6:6f:90:24:a7:6c:53:9c:06:eb:fa:85:da:42:31:0f:
7c:44:e0:80:9f:6b:20:ed:41:19:68:d7:ec:dc:be:21:57:8a:
6d:54:6f:3c:5a:c1:2f:65:71:bc:87:ca:5d:77:96:4e:8e:ca:
e5:17:c0:77:b5:f5:e3:a0:9a:c7:cb:7c:b9:b2:81:91:f8:8e:
1a:54:8a:51:45:1b:6d:c3:7c:f6:2e:ba:91:12:53:35:67:f9:
16:66:bc:91:d9:16:c1:86:38:73:76:e1:3d:2b:3f:1d:de:29:
9a:49:11:33:57:5c:7b:9e:9c:ab:8a:2a:9e:be:a9:4a:2a:35:
12:a1:c0:85:14:85:63:53:b7:95:fe:50:65:f9:a0:85:5e:18:
b5:68:43:a3:5f:f0:46:a2:5a:80:59:37:45:15:5a:47:86:d3:
64:b8:ae:86:0d:48:9d:9c:50:1e:6a:ae:f4:f3:d7:60:93:9e:
fa:0a:a5:88:25:7f:0b:a9:3c:40:35:dc:71:a7:35:a9:ae:9f:
25:3f:91:40:24:66:cd:ee:af:cf:44:4e:5d:19:ce:e8:34:4f:
13:83:12:0b:d1:e0:6d:4c:20:d9:e0:f9:ce:74:2b:c2:f1:b6:
93:6a:4d:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 25 22:20:42 2025 by rpki-client