Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/7C63VtubDhGgAEejs-V1gCRULho.roa
File: 7C63VtubDhGgAEejs-V1gCRULho.roa (raw, json)
Hash identifier: zmS9HlO5K7oLxFJZ+lpMFSXkFOJDASmu8TehN/SqHCk=
Subject key identifier: EC:2E:B7:56:DB:9B:0E:11:A0:00:47:A3:B3:E5:75:80:24:54:2E:1A
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1576
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/7C63VtubDhGgAEejs-V1gCRULho.roa
Signing time: Tue 11 Feb 2025 23:44:40 +0000
ROA not before: Tue 11 Feb 2025 23:44:40 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 10126
IP address blocks: 203.160.240.0/20 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5494 (0x1576)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:40 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=EC2EB756DB9B0E11A00047A3B3E5758024542E1A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:31:1a:5d:99:ee:56:3d:61:17:05:80:83:6b:
92:90:fe:6c:57:3d:6a:44:2a:cc:7a:70:7e:2f:ff:
f5:ee:cc:71:8a:37:34:79:47:07:b3:66:31:f2:0a:
b5:14:38:5b:a6:3b:3b:07:49:c5:37:bb:bb:97:2a:
24:fd:9e:c5:8c:ff:b6:4a:a8:89:cb:87:fc:2b:51:
78:3a:9b:64:1a:bc:f6:16:34:70:ca:dd:4b:ca:e6:
0d:1b:26:ea:e3:73:f3:d0:88:03:97:3f:f1:8e:ed:
65:0f:74:b4:38:74:31:a3:73:99:b3:8c:29:04:a5:
44:69:b2:32:ff:ab:dd:da:73:fc:1d:0e:0a:dc:db:
f6:65:e4:17:2f:fc:74:0b:10:05:8c:b6:a1:a5:17:
e0:e1:a5:56:04:65:08:99:6d:ee:53:ba:94:38:2e:
cb:bb:bb:5f:76:ca:fd:f0:46:b0:63:c7:90:37:ae:
da:84:39:d7:bc:cc:c2:19:bd:2a:de:e5:26:d5:98:
37:ec:f9:5b:aa:80:7f:cd:20:3d:bd:49:ab:25:37:
e2:5c:ae:94:a3:b3:b3:58:53:85:ea:b7:4d:ea:62:
6d:1e:ca:f5:52:ee:b5:bb:65:86:2c:07:0c:4a:05:
e8:33:fe:d1:7f:be:e8:3c:7a:7e:f4:c0:79:99:af:
ac:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:2E:B7:56:DB:9B:0E:11:A0:00:47:A3:B3:E5:75:80:24:54:2E:1A
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/7C63VtubDhGgAEejs-V1gCRULho.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.160.240.0/20
Signature Algorithm: sha256WithRSAEncryption
2b:c5:37:85:dc:39:07:6e:cd:f4:ab:94:ca:c0:23:85:27:ef:
b4:d0:eb:bc:57:e0:35:e3:c7:87:81:5f:ef:c8:1b:09:c6:7f:
50:c3:7c:55:f6:3d:53:0a:bc:67:9e:da:c2:a4:5f:bb:62:17:
a6:eb:85:37:0e:a5:9c:23:6d:9e:fd:59:6e:7b:a7:31:51:b6:
82:f9:1a:b4:c6:e9:33:57:2e:3e:9b:7a:5d:b0:aa:4b:f6:11:
50:72:bd:4d:a4:0b:11:ab:84:58:66:90:e2:33:1a:9b:e7:36:
9a:1d:9a:c3:5e:66:67:f4:32:90:d6:43:18:ce:83:4f:f4:a7:
31:21:ab:f8:4a:54:8e:2f:4a:58:c8:74:2b:ca:3e:79:ca:fc:
85:a6:ca:ee:d2:c8:89:aa:8d:b1:8c:57:7c:f5:16:12:c2:0b:
25:2f:58:1a:65:7a:21:e7:c0:7d:20:cc:9c:30:ad:ee:b4:e5:
cc:c7:5b:9b:63:e7:da:f6:4d:b2:c5:fd:53:94:d8:81:7b:c6:
01:72:e6:b2:27:49:b5:45:6c:7e:50:07:eb:62:2d:64:64:a7:
d3:2f:f1:09:c6:27:e3:e9:fa:9c:ab:69:6f:ac:a6:66:a7:28:
cd:2c:fa:3b:c2:2c:a4:23:74:30:33:7d:3c:e5:9c:04:8b:9a:
82:bf:6a:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 12:48:08 2025 by rpki-client