Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/7GAz-r4rlqPsm2oceIbNMEbMc20.roa
File: 7GAz-r4rlqPsm2oceIbNMEbMc20.roa (raw, json)
Hash identifier: nolDu/teYZ5nz29gZ+yAM5Cb7Ac9BkAyJvXwV7Hj9ZA=
Subject key identifier: EC:60:33:FA:BE:2B:96:A3:EC:9B:6A:1C:78:86:CD:30:46:CC:73:6D
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1552
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/7GAz-r4rlqPsm2oceIbNMEbMc20.roa
Signing time: Tue 11 Feb 2025 23:44:32 +0000
ROA not before: Tue 11 Feb 2025 23:44:32 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131621
IP address blocks: 118.168.255.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5458 (0x1552)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:32 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=EC6033FABE2B96A3EC9B6A1C7886CD3046CC736D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:76:4e:d9:d4:45:fa:72:3a:69:23:f3:71:79:
27:41:67:e4:bd:9f:70:e8:00:31:77:a1:80:8d:ca:
33:e1:e1:97:57:2a:a4:93:c1:9b:c3:a4:c1:b8:bb:
3b:f2:41:89:a5:13:f1:18:0b:1a:d9:be:b0:01:d3:
89:ee:39:8a:95:44:79:41:84:2e:e1:8a:52:ed:17:
2c:2b:e3:d4:c6:c3:35:ab:ab:f2:27:3b:d7:a6:31:
34:98:12:44:60:b5:a1:76:14:c5:f2:e0:de:ce:f7:
3e:1b:0e:c9:62:9c:c1:7f:f9:8f:27:13:3e:09:c0:
00:29:bc:70:27:09:7d:41:cc:67:19:e3:8d:f0:56:
25:a4:fa:9d:81:5f:d7:42:ac:0d:fa:63:2c:f7:4d:
ea:83:15:35:32:19:1b:21:c8:0f:79:96:60:b9:bc:
b7:35:d8:c5:be:2e:e8:4c:e1:ea:04:4e:d7:3c:59:
88:e0:07:78:8a:bd:ad:b6:7a:13:af:70:d4:db:61:
23:67:47:b1:67:08:d6:5b:39:f9:b2:57:37:d5:87:
de:27:80:ba:1e:1f:d1:58:02:09:cc:bf:82:d2:20:
cb:8b:ea:ab:9b:a3:72:df:a5:29:a7:0f:c3:f9:39:
71:e1:14:e8:ca:18:00:09:cb:98:18:62:c3:04:13:
f3:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:60:33:FA:BE:2B:96:A3:EC:9B:6A:1C:78:86:CD:30:46:CC:73:6D
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/7GAz-r4rlqPsm2oceIbNMEbMc20.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.168.255.0/24
Signature Algorithm: sha256WithRSAEncryption
cf:e0:0f:1c:81:fa:b5:6a:2d:bf:50:10:c7:d9:8d:ef:02:85:
e3:25:9c:0c:96:0b:fd:79:16:fb:78:58:53:82:ef:5f:19:e4:
1e:b9:18:52:33:ab:85:98:c8:21:42:db:a9:bc:a4:31:be:95:
60:9c:39:c5:91:f1:6c:43:10:c0:99:a6:7e:80:30:b0:ca:12:
6d:b3:03:20:b3:fc:4f:d7:6e:c8:c1:72:35:24:48:ae:44:1f:
83:af:32:45:6a:0c:bf:44:cd:1d:51:a8:b6:99:7b:aa:e4:0c:
93:bf:a1:bc:d2:0f:09:52:71:3e:b3:55:6d:68:1b:02:63:92:
0a:65:6e:95:3c:fa:9c:1f:fb:f3:26:80:1f:c6:b6:00:b6:9c:
60:4d:45:f5:29:91:3d:22:12:3b:3b:37:92:c9:48:63:da:8e:
6d:fd:21:cc:8a:e3:22:7a:f0:76:76:a7:f1:1a:39:2e:5d:b4:
55:f1:e4:d2:3a:a4:e3:54:97:3d:e1:2d:d0:af:ec:01:90:23:
ad:dd:6b:9e:5b:21:a9:83:b9:44:9c:d5:88:27:57:2d:3f:1d:
cc:66:35:85:14:0c:82:bb:2f:fd:d4:bb:d2:21:7a:4f:73:ef:
41:87:e0:36:0e:76:37:af:05:4f:ca:d2:42:25:a3:80:15:3e:
a4:6a:4a:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 25 22:47:33 2025 by rpki-client