Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/4-SnC2A5dKQOsMFgNtZ_32LFcss.roa
File: 4-SnC2A5dKQOsMFgNtZ_32LFcss.roa (raw, json)
Hash identifier: GCrKAXBWZHufieawzzwJx/z4uXqlKmjCJ7nbhTL5PD0=
Subject key identifier: E3:E4:A7:0B:60:39:74:A4:0E:B0:C1:60:36:D6:7F:DF:62:C5:72:CB
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 14EB
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/4-SnC2A5dKQOsMFgNtZ_32LFcss.roa
Signing time: Tue 11 Feb 2025 23:44:09 +0000
ROA not before: Tue 11 Feb 2025 23:44:09 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 218.160.0.0/14 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5355 (0x14eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:09 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=E3E4A70B603974A40EB0C16036D67FDF62C572CB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ae:62:63:94:d6:59:7e:9e:6e:9b:90:6d:8c:
cd:5d:be:11:2c:2c:a5:83:8f:da:68:7e:46:5f:de:
a4:f9:a9:64:f8:9c:36:70:2d:45:8c:83:93:b4:8d:
d7:fa:b6:80:56:67:89:7a:2d:e8:3f:b6:49:f3:40:
f5:1e:bb:e9:28:cb:72:ac:91:77:32:57:85:8e:87:
f7:65:e7:53:53:23:3c:47:7d:dd:bd:d4:0b:07:68:
35:89:b6:78:1b:f6:af:0e:49:c7:04:70:a2:2d:2e:
52:2f:0b:b6:ae:89:09:da:ba:30:60:f2:19:19:6b:
12:52:ce:30:b3:12:da:a4:e1:e6:72:21:11:46:1e:
78:c2:ef:ca:b9:de:2f:82:80:50:4a:d2:bb:f8:c4:
ea:31:a6:79:c4:f8:0d:97:72:68:02:49:f9:db:05:
d4:ee:9c:10:1d:82:90:22:0f:04:3f:25:bb:c7:7d:
75:d4:7b:bb:10:41:ce:2c:61:4b:d2:dc:b6:f6:95:
d4:76:ba:d3:49:a2:e8:5e:70:9c:92:c0:2f:31:26:
80:3b:12:d7:ca:57:2e:10:7d:9b:93:5b:66:42:4b:
64:95:e5:61:92:09:4c:7f:64:21:3a:2a:77:73:22:
51:e9:41:04:c8:e4:9d:c1:77:ae:38:f8:9f:34:52:
1f:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:E4:A7:0B:60:39:74:A4:0E:B0:C1:60:36:D6:7F:DF:62:C5:72:CB
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/4-SnC2A5dKQOsMFgNtZ_32LFcss.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.160.0.0/14
Signature Algorithm: sha256WithRSAEncryption
bf:13:4a:ab:97:81:fe:e9:bf:d7:e3:5d:a1:a0:c6:54:5b:79:
6a:20:48:81:ae:42:3a:f1:93:75:86:6e:32:57:e1:43:72:9f:
aa:69:2b:42:a1:a6:76:f6:34:23:28:7b:93:37:63:9c:68:f8:
d4:0e:dc:7d:e3:5f:30:92:ae:2d:c8:dc:ce:13:95:25:b1:46:
b5:75:c9:ee:ea:dd:64:a0:6a:d1:2c:5e:57:8b:d0:f5:2c:1a:
74:9e:da:ad:16:95:03:b5:3c:31:a8:82:fb:43:e9:08:46:34:
3c:4c:ad:03:e1:38:b5:56:5f:31:1f:0c:77:83:f5:c6:1e:1e:
e2:d6:fe:6c:f8:de:4c:e6:8e:77:eb:01:80:44:26:84:b0:a9:
17:fa:f6:74:97:d6:f6:c8:d1:fa:19:57:b9:e2:e9:1f:cb:32:
33:bb:42:0b:93:53:f1:03:24:47:81:cf:fd:58:c0:90:20:8d:
7a:a1:2f:8c:8f:5b:47:5a:1f:d0:31:19:16:c1:18:6e:39:f1:
77:72:7e:6e:26:cd:af:0a:a2:35:3c:4d:ef:07:3a:fd:ed:76:
d7:bf:9d:53:f1:32:5b:f2:0b:09:e0:9d:db:0f:5f:73:e4:70:
fc:7c:ca:ed:59:c5:ea:3c:6d:af:1c:ff:87:83:fb:4d:7c:cd:
66:cc:9b:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 12:04:46 2025 by rpki-client