Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/3TcpVtYGlxzQFNkYqekeK0aUTzQ.roa
File: 3TcpVtYGlxzQFNkYqekeK0aUTzQ.roa (raw, json)
Hash identifier: nFFvEISrxyLDpwrmue+o0Cc1skqk9bglT5ZOD41imMI=
Subject key identifier: DD:37:29:56:D6:06:97:1C:D0:14:D9:18:A9:E9:1E:2B:46:94:4F:34
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 14DC
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/3TcpVtYGlxzQFNkYqekeK0aUTzQ.roa
Signing time: Mon 10 Feb 2025 14:35:21 +0000
ROA not before: Mon 10 Feb 2025 14:35:21 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 218.168.0.0/13 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Feb 2025 23:44:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5340 (0x14dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:35:21 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=DD372956D606971CD014D918A9E91E2B46944F34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:ae:6b:4e:f7:d8:a2:93:80:ea:58:49:a5:73:
45:f7:3b:76:77:21:4f:2c:7d:d6:47:e0:82:1e:e8:
3a:6a:43:1a:65:a3:1d:70:c4:77:11:4e:f8:b6:b3:
83:c0:d4:4c:d5:6d:40:cd:27:4c:14:89:63:2f:c2:
45:9f:a2:de:51:b2:c8:98:b9:28:24:ae:de:b2:20:
fa:d9:97:d0:63:1a:75:c1:45:1f:bd:86:26:fa:02:
fa:38:40:92:20:04:00:75:71:3d:e1:66:47:3f:74:
4d:eb:0b:19:d9:d2:ac:d6:93:87:73:84:bb:39:f4:
81:0e:95:af:50:df:f8:e1:f5:43:44:4f:fb:df:be:
26:53:ff:49:59:c7:2b:45:64:85:81:26:4c:a6:1a:
db:9a:ba:fc:b5:50:a8:00:e2:05:9d:d8:96:5d:4c:
34:d3:79:fd:f4:5f:8a:b4:52:d8:9d:fd:c4:b3:8e:
65:ab:41:fa:92:8b:5f:c0:01:9b:f0:3d:94:0a:e1:
ca:8b:df:f5:92:9a:de:80:e9:61:c4:b2:e7:fb:85:
68:1d:7a:d4:9b:39:60:b6:f1:ee:0e:13:25:a2:86:
10:34:eb:a5:dc:85:c2:15:44:7a:bf:f2:85:6f:0d:
47:e5:88:7f:24:75:bd:c1:c4:74:e4:36:2c:58:e1:
9d:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:37:29:56:D6:06:97:1C:D0:14:D9:18:A9:E9:1E:2B:46:94:4F:34
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/3TcpVtYGlxzQFNkYqekeK0aUTzQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.168.0.0/13
Signature Algorithm: sha256WithRSAEncryption
95:90:c0:02:41:ef:1b:dc:66:6e:ff:88:82:27:6f:26:29:8f:
2a:66:b8:83:41:05:48:07:37:2d:d6:c9:de:08:53:80:38:5c:
92:10:88:84:bf:cd:5e:5c:78:70:e6:8a:51:d7:e4:1f:3b:bf:
f4:eb:97:38:58:e3:46:84:27:07:39:2d:87:e3:ef:28:ad:0e:
7a:a5:da:6c:05:49:bf:03:d5:48:29:fb:5c:c0:c5:83:ad:c2:
08:e5:d6:12:a5:fd:72:93:55:9b:ad:86:71:08:4b:ae:5f:f0:
38:f1:8c:bc:68:0a:de:ab:6b:e1:0e:d2:ad:6f:e7:fc:51:72:
ec:f8:b9:bc:8c:07:ed:53:cb:a8:19:c0:58:b4:ae:71:2b:38:
ad:2f:2b:36:2b:bc:07:fd:ee:8c:17:6c:f3:55:21:2e:bd:fd:
ab:60:f2:69:c7:7f:6a:5b:5a:1d:16:91:91:1f:ec:46:95:54:
f6:b3:3c:0a:9a:34:38:05:45:95:15:fb:01:39:9a:dc:0a:14:
2a:c7:eb:3a:8f:b5:7a:ec:a0:2c:00:ba:d4:a9:de:d7:fa:d6:
6d:7d:0b:08:3a:94:21:b7:7e:44:8c:2f:dd:0d:9c:e1:ac:d4:
7e:3b:35:a2:54:10:81:ab:62:2f:69:14:f5:f3:09:d1:33:75:
c9:b6:3b:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 12:59:43 2025 by rpki-client