Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/2qjRgchD81QagoNtu4IESZa7Q8Y.roa
File: 2qjRgchD81QagoNtu4IESZa7Q8Y.roa (raw, json)
Hash identifier: S5WoD2WfxboJpknEwOLVLPQfx4pEzNKYU4Ofdgw080o=
Subject key identifier: DA:A8:D1:81:C8:43:F3:54:1A:82:83:6D:BB:82:04:49:96:BB:43:C6
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1567
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/2qjRgchD81QagoNtu4IESZa7Q8Y.roa
Signing time: Tue 11 Feb 2025 23:44:37 +0000
ROA not before: Tue 11 Feb 2025 23:44:37 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17421
IP address blocks: 2001:b400::/23 maxlen: 64
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5479 (0x1567)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:37 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=DAA8D181C843F3541A82836DBB82044996BB43C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:7b:8e:19:7e:bf:30:bb:d1:cd:e0:4a:9e:c3:
91:1d:04:ce:82:61:37:7d:9b:86:1d:1e:09:da:1f:
fe:fd:14:ac:3d:52:e8:14:a2:b5:97:2a:1f:3b:0e:
bb:d4:45:5e:6d:fc:1e:05:3f:25:7f:66:47:d7:72:
e0:20:33:21:89:bc:e3:15:ac:28:68:f4:f7:41:b9:
f6:4b:42:0b:e7:40:6a:00:53:0f:ff:a2:a6:f1:fd:
1a:ce:7f:c2:0e:fa:58:2d:a8:df:fa:79:39:89:5b:
7a:e7:f1:30:dd:8b:ed:cd:f6:81:59:5b:4b:2a:ff:
ee:42:8b:49:b1:95:d7:20:7b:4b:15:8a:b3:5e:74:
02:17:ee:c1:fb:06:8b:9b:1e:14:b6:1d:c9:f6:77:
c9:5c:8c:fb:b8:4a:c8:9a:79:f9:9e:96:22:29:bc:
35:b0:53:39:30:90:53:ea:58:3a:b7:79:be:fa:3c:
00:d1:fe:80:7a:ea:77:db:87:ca:5a:17:e5:62:fd:
54:1a:c5:7a:9b:cd:6a:fd:38:3c:28:2a:27:37:b2:
be:de:46:3d:d8:41:a0:44:9e:1a:9f:68:93:17:c7:
f5:d3:de:6f:3a:c3:c6:13:59:17:34:3e:a6:72:69:
42:e5:6b:c8:bc:3e:85:5e:92:87:f2:2e:bc:0f:7d:
39:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:A8:D1:81:C8:43:F3:54:1A:82:83:6D:BB:82:04:49:96:BB:43:C6
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/2qjRgchD81QagoNtu4IESZa7Q8Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b400::/23
Signature Algorithm: sha256WithRSAEncryption
29:34:64:31:23:07:28:6a:bb:2d:2b:2e:50:f9:a8:65:60:e9:
3e:5f:ad:c4:e0:97:a2:19:21:2d:92:2a:15:b9:b5:04:d4:81:
19:05:82:87:8d:5c:99:61:c7:36:a1:18:83:62:bd:4a:1a:eb:
48:98:d5:78:fc:23:68:f8:46:cf:c4:0e:84:21:2f:e7:56:c5:
91:90:89:16:91:52:02:6d:8b:e4:f4:79:e6:6c:29:0f:73:f1:
fa:ed:39:c8:94:f4:d8:98:4e:9b:d7:ab:8d:4d:67:18:71:e6:
b3:cb:75:9e:f8:3f:86:07:ae:15:11:33:b1:25:8f:24:01:7e:
ee:ad:3a:48:2d:f5:2e:cd:61:3e:7d:3a:9d:ea:bd:fd:e9:77:
98:eb:6d:4a:d5:89:94:9e:e3:42:4c:a1:04:1a:a5:05:e0:fd:
e8:01:9d:f3:a6:7f:7a:b9:8d:58:90:3d:f2:50:d6:ab:06:b1:
87:cc:82:be:f7:61:38:3c:3b:da:7b:ae:fd:30:9e:60:87:18:
6f:c6:81:33:24:e4:0f:98:8a:69:52:d3:73:60:ff:23:85:49:
05:82:66:2e:64:6d:e3:de:a4:3a:b3:9e:08:e1:ce:a9:80:0e:
07:22:41:da:e4:3f:87:8c:ac:a1:e5:a1:2f:f4:f2:d5:1b:ef:
23:bf:f4:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 12:07:30 2025 by rpki-client