Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/5z1Ouy6JLi6ZHuuu1zZKtWMSXWs.roa
File: 5z1Ouy6JLi6ZHuuu1zZKtWMSXWs.roa (raw, json)
Hash identifier: HTu7/RuujZWMCjE9Yzg5ScF0Cj+ADJWXeqItexjfQu0=
Subject key identifier: E7:3D:4E:BB:2E:89:2E:2E:99:1E:EB:AE:D7:36:4A:B5:63:12:5D:6B
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 150D
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/5z1Ouy6JLi6ZHuuu1zZKtWMSXWs.roa
Signing time: Tue 11 Feb 2025 23:44:16 +0000
ROA not before: Tue 11 Feb 2025 23:44:16 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 114.30.44.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5389 (0x150d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:16 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=E73D4EBB2E892E2E991EEBAED7364AB563125D6B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:59:09:33:75:c1:8e:24:7c:19:b8:6c:05:3b:
54:c3:2f:4e:28:cf:d7:fb:1c:d1:be:cb:bb:67:30:
38:79:96:2a:fd:69:2d:71:90:cb:c0:b9:a4:8a:52:
60:7b:58:df:c5:d7:cb:d7:81:32:6b:f4:ea:61:88:
71:15:c7:0e:1e:71:8a:86:2b:ad:f7:62:57:27:a3:
87:ec:0f:ad:66:9a:07:bd:43:13:4f:f0:7f:37:a6:
88:c2:d3:cb:c1:34:2b:2b:21:14:b9:3f:23:87:7b:
b9:43:7e:c6:61:21:87:d7:19:6e:06:63:e4:75:3b:
31:85:ec:e5:2c:9b:25:43:c4:f9:48:c3:ec:79:15:
3f:5e:90:92:a2:b1:60:fc:39:9a:80:81:68:29:3d:
64:ad:47:1f:73:f3:69:98:a8:7a:97:f9:84:2b:2f:
66:a2:92:69:c6:83:71:08:6e:96:d3:43:37:71:82:
06:c1:25:9f:55:96:44:c2:2f:ca:6b:a2:aa:29:de:
a8:36:9b:f0:b9:c4:bc:49:f8:70:e9:08:0a:0b:fb:
80:a6:85:4f:0a:54:2a:07:ca:3d:8c:26:2b:54:9e:
5d:b0:43:55:ad:a9:88:04:ee:37:ce:29:49:4a:be:
38:0c:f3:1e:75:4a:f5:1c:d4:21:62:4d:5d:6c:d9:
c9:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:3D:4E:BB:2E:89:2E:2E:99:1E:EB:AE:D7:36:4A:B5:63:12:5D:6B
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/5z1Ouy6JLi6ZHuuu1zZKtWMSXWs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.30.44.0/24
Signature Algorithm: sha256WithRSAEncryption
af:04:00:50:c3:6e:68:04:b1:2c:3a:0d:29:b8:06:4b:6c:0a:
fb:a3:38:d8:df:50:ef:d7:ae:88:c4:5e:17:40:01:c4:d3:d4:
c8:1e:dd:4c:f6:04:0f:fe:14:72:ba:04:c2:3f:73:84:54:05:
93:99:a3:11:6c:dc:44:f8:41:9f:f2:d7:b9:ee:09:49:95:57:
f2:37:46:45:d1:66:3d:91:f2:ae:94:90:82:31:7c:57:67:1c:
c0:63:39:d8:c3:cf:00:a3:9d:6e:b8:99:18:ca:0a:d9:59:d4:
c0:a5:73:05:e2:41:13:b3:f1:a4:11:e1:dd:c9:cd:28:75:2a:
b8:05:6d:c2:6a:37:d3:29:85:fa:c2:ca:e0:6e:c0:4d:4b:59:
b0:fe:1e:70:fc:bb:73:c6:b7:e7:23:2c:6d:a0:56:d8:be:5b:
45:31:d3:dc:93:41:92:6b:49:1a:d3:4d:53:fa:fd:7a:b3:ca:
65:4a:13:a9:ac:0c:d9:fa:5f:1e:bd:23:ca:96:0e:f4:13:4a:
db:3a:ee:fc:b5:00:b0:71:c0:20:c6:6b:8a:ee:d6:31:76:ad:
17:0b:31:dc:e7:00:8d:3a:85:e0:38:69:88:a7:64:49:31:75:
3c:5a:3e:b3:53:f8:a0:1d:ec:ca:0b:0a:99:b9:09:f1:fe:57:
d7:78:da:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 12:03:41 2025 by rpki-client