Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/2DWCwTFMjGrqe8IsSizFn0bCanY.roa
File: 2DWCwTFMjGrqe8IsSizFn0bCanY.roa (raw, json)
Hash identifier: 2Eghd1le8ysvs5DVq2HPFsa8/Bl6mzFmpbHwxCsSZP0=
Subject key identifier: D8:35:82:C1:31:4C:8C:6A:EA:7B:C2:2C:4A:2C:C5:9F:46:C2:6A:76
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 14FD
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/2DWCwTFMjGrqe8IsSizFn0bCanY.roa
Signing time: Tue 11 Feb 2025 23:44:13 +0000
ROA not before: Tue 11 Feb 2025 23:44:13 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17714
IP address blocks: 203.78.180.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5373 (0x14fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:13 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=D83582C1314C8C6AEA7BC22C4A2CC59F46C26A76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:32:50:72:38:72:8c:44:41:f7:04:5f:69:3d:
7b:11:3b:7b:f0:a1:ca:81:e0:c4:68:b3:f4:d4:1b:
af:17:eb:54:2b:79:c0:31:ff:13:4d:7e:b3:93:4f:
18:ed:98:bc:9a:74:cd:cb:87:91:f2:c4:fe:4e:89:
5b:17:fa:b1:3d:7c:20:14:b2:b6:f9:7e:02:77:bd:
53:48:1f:2a:fa:ef:85:6f:30:90:fe:0f:00:7b:25:
25:df:ab:d3:4c:68:80:92:1c:b3:31:17:98:78:ad:
cc:f0:a0:98:7a:a0:ff:82:fd:09:fb:ef:4f:93:21:
df:65:41:ce:cc:14:7e:de:56:42:9f:c4:38:41:4d:
ee:93:d5:7a:57:7f:6a:70:bc:35:04:d6:51:cf:86:
32:ca:72:5e:4c:b7:a1:d7:0c:50:bb:11:bc:10:b1:
79:0c:48:d8:3b:a6:69:43:02:4d:8c:54:a6:03:16:
03:cb:82:47:99:c5:20:c5:32:a0:fb:77:a7:85:4f:
84:90:3c:89:15:b3:6a:c5:5c:dd:16:2e:02:35:a7:
05:fd:dc:dc:db:5a:63:92:7b:77:1a:c7:7a:aa:18:
ce:03:08:e8:35:a5:16:b5:b4:4a:53:43:fb:83:20:
20:74:b7:f4:e1:80:ef:5c:02:39:fa:c1:97:35:21:
9d:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:35:82:C1:31:4C:8C:6A:EA:7B:C2:2C:4A:2C:C5:9F:46:C2:6A:76
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/2DWCwTFMjGrqe8IsSizFn0bCanY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.78.180.0/24
Signature Algorithm: sha256WithRSAEncryption
10:0f:0a:47:e7:9c:a3:57:f1:e8:af:cc:99:41:52:68:c1:66:
23:ec:a5:b8:12:31:bb:df:8f:62:9e:e6:15:da:0c:20:94:62:
99:30:17:b2:7d:85:88:33:b7:97:44:77:3b:39:09:53:01:ae:
10:58:e0:d3:7a:df:18:6d:3e:42:cf:c3:55:95:b5:d2:5c:b0:
88:5e:c0:c0:11:56:1d:a0:d3:86:c1:f0:c5:0b:6b:f6:7c:14:
fa:a1:b1:6c:13:11:4c:5e:05:0c:15:eb:1e:d2:8f:0b:0f:dd:
7d:37:56:dc:18:10:af:f0:eb:c5:6c:11:6f:a0:41:87:90:89:
de:d5:cc:1d:fb:4d:bd:de:f2:00:3d:5a:c2:a2:5a:c8:bd:8d:
68:fd:8f:7e:7d:58:cf:75:a3:ef:f7:70:2d:52:2b:7b:54:41:
9e:fa:72:17:df:2c:a2:23:ed:ab:ed:1d:f8:7c:34:7c:16:ef:
98:c2:89:0a:48:45:3e:2e:d8:c4:a3:4c:a8:bd:cf:d4:8f:6c:
50:56:41:0a:72:a6:80:87:41:de:78:14:36:5a:b8:6d:12:48:
db:7c:88:ec:32:c1:95:79:1d:c6:53:5e:19:c8:34:26:99:54:
1e:73:86:c2:0e:14:79:b4:c5:3c:0f:8a:ae:46:29:55:b6:7d:
5d:54:80:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 11:58:31 2025 by rpki-client