Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/67m07XPhkOCatBPJoCu59sN3QcQ.roa
File: 67m07XPhkOCatBPJoCu59sN3QcQ.roa (raw, json)
Hash identifier: M93xnFsONhjArBQF+/coVj0BTBdiOy1bBdBEt7e6IIU=
Subject key identifier: EB:B9:B4:ED:73:E1:90:E0:9A:B4:13:C9:A0:2B:B9:F6:C3:77:41:C4
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 156A
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/67m07XPhkOCatBPJoCu59sN3QcQ.roa
Signing time: Tue 11 Feb 2025 23:44:38 +0000
ROA not before: Tue 11 Feb 2025 23:44:38 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 800
IP address blocks: 175.111.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5482 (0x156a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:38 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=EBB9B4ED73E190E09AB413C9A02BB9F6C37741C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:f4:40:45:d8:5d:b7:17:7c:81:71:12:cb:e3:
10:38:d0:87:b1:3f:e0:b4:7b:93:f8:70:39:5d:9d:
3c:24:d6:53:67:60:1d:a9:41:1b:b6:47:23:a0:83:
fb:83:76:48:4d:6a:46:4e:d9:81:df:74:c8:d7:83:
f6:bf:8a:76:b7:3c:9c:9b:1a:a0:c0:40:10:9d:75:
7d:a6:89:9e:e3:78:f3:86:d3:0e:c0:ef:2d:c2:e1:
7f:b4:86:bb:d2:94:4f:a6:7f:12:5b:ae:ea:84:00:
e1:aa:ac:3b:4b:eb:cc:fb:75:64:16:f5:fa:19:b1:
97:2e:9c:4b:40:c9:a6:97:10:bf:60:35:fb:6e:a6:
3f:4e:eb:4c:c5:5d:f6:1c:3e:37:12:3b:00:e3:9c:
e2:cd:b4:d9:1b:ac:f2:a3:fa:dc:10:9e:76:c9:03:
38:7b:d9:f9:ba:ef:cc:f0:bc:c6:41:cb:bd:31:9e:
dc:76:96:61:4e:a2:8b:ef:c3:f1:0b:ea:27:94:4d:
fe:c6:ab:a4:91:7a:f1:d8:cf:37:f7:21:4c:27:90:
e6:f6:6e:e5:e7:c9:f6:24:9b:88:12:9b:7f:04:4d:
bf:4f:01:94:9f:19:a5:ff:4d:ab:f3:cf:78:a2:d7:
90:87:f7:04:11:67:ea:d6:c3:e0:69:65:0a:99:3d:
31:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:B9:B4:ED:73:E1:90:E0:9A:B4:13:C9:A0:2B:B9:F6:C3:77:41:C4
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/67m07XPhkOCatBPJoCu59sN3QcQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.111.239.0/24
Signature Algorithm: sha256WithRSAEncryption
42:e8:b9:31:ad:35:92:5e:41:22:e7:24:f0:ac:64:f9:95:61:
fb:e9:f6:08:48:53:db:50:71:8d:91:dd:c6:80:af:fd:b6:9c:
90:07:69:bc:ec:3e:82:c9:96:0e:7b:9e:67:79:89:f0:9d:5a:
94:3d:f8:3d:a6:c9:e4:35:f3:a8:ad:b6:07:b5:f0:fd:b1:b3:
19:4c:e8:22:25:20:04:b6:8d:1f:ac:2d:20:0b:7c:19:27:84:
6c:c8:42:0a:6a:5e:27:6e:73:8f:81:06:10:a4:75:f8:2b:84:
a4:ba:d9:d0:1c:bb:06:39:7b:74:dc:39:4a:9b:1b:70:26:0c:
3a:2b:73:3b:37:64:c0:63:07:07:e3:fa:e5:e0:90:d3:2f:09:
4b:d0:df:14:fa:4f:45:e8:d4:54:86:84:f2:4b:0e:3b:9b:b6:
9d:b4:c5:d0:80:f4:cf:a4:10:f1:67:1a:91:1a:c3:c6:41:5d:
70:50:59:bb:1d:76:c6:f7:52:3c:a4:b6:fb:2e:5a:4c:33:1b:
66:8d:f5:0f:67:2e:c5:91:2d:42:bc:a2:51:78:98:09:d1:fe:
32:72:eb:c1:01:0c:b7:6d:8a:2f:4b:bb:3f:eb:5b:4d:43:f3:
12:61:39:2a:f9:49:00:a6:69:45:90:b1:d0:cd:33:b6:26:a4:
61:e6:25:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 12:54:37 2025 by rpki-client