Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/8MheVI8icKmBMwxJQEscCXDT8mc.roa
File: 8MheVI8icKmBMwxJQEscCXDT8mc.roa (raw, json)
Hash identifier: Cp57Zo8be8TA7hICSjkg4s/l4j3NsQ0YfcB6PYCsv4s=
Subject key identifier: F0:C8:5E:54:8F:22:70:A9:81:33:0C:49:40:4B:1C:09:70:D3:F2:67
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 14F2
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/8MheVI8icKmBMwxJQEscCXDT8mc.roa
Signing time: Tue 11 Feb 2025 23:44:11 +0000
ROA not before: Tue 11 Feb 2025 23:44:11 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 20940
IP address blocks: 2001:b034:700:600::/56 maxlen: 56
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5362 (0x14f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:11 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F0C85E548F2270A981330C49404B1C0970D3F267
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:49:d2:6d:62:d4:ac:ad:a1:f7:19:57:12:83:
74:f8:8d:cb:67:6f:e8:aa:b0:44:ec:30:36:27:8f:
e6:d5:65:37:47:90:d1:39:61:9e:f4:fc:61:03:c5:
fc:0f:7d:72:74:e6:d1:55:67:d0:b9:de:36:d7:e8:
f2:95:ac:8e:42:77:bb:9c:a1:b9:a1:21:d9:55:21:
0c:f8:43:6d:38:81:f0:d9:08:70:5c:74:81:54:ea:
8d:ad:df:0f:32:71:1d:03:0f:ce:90:a0:1f:cb:61:
20:c9:80:aa:97:b7:01:bf:d1:05:b1:64:4d:c3:0a:
7d:d8:f0:70:54:de:33:c2:84:68:a1:dc:ae:23:4a:
eb:57:a6:3a:25:fa:9e:fa:e0:cf:c9:04:5d:2e:6f:
d0:7b:ee:f1:fe:49:6f:70:86:99:b4:b9:0f:22:2c:
9b:17:82:9c:73:f6:d9:de:21:b8:bf:e2:3e:aa:d5:
2c:84:be:61:18:eb:ed:67:3f:c7:e7:b2:21:b8:9e:
5e:68:a4:72:20:28:64:57:23:a6:cd:3f:bb:14:00:
ce:dd:42:07:e9:a8:2e:7f:cd:ed:96:30:8a:62:4a:
d3:78:bf:57:59:da:44:e8:f5:3d:20:4d:d0:a8:97:
4c:64:48:41:03:93:17:a0:b7:d9:71:c3:74:0b:11:
51:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:C8:5E:54:8F:22:70:A9:81:33:0C:49:40:4B:1C:09:70:D3:F2:67
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/8MheVI8icKmBMwxJQEscCXDT8mc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b034:700:600::/56
Signature Algorithm: sha256WithRSAEncryption
a4:70:37:24:e6:86:98:28:50:a5:35:ff:4f:f0:b5:65:8f:d4:
c0:eb:ca:81:0d:06:5f:8b:31:c5:da:4a:bd:9c:07:49:92:e2:
94:27:61:51:0f:6c:95:95:b8:dc:2b:36:79:8d:9b:10:8e:eb:
7f:b0:d1:fc:ad:cd:97:c6:75:fa:55:08:73:7d:95:4d:56:f5:
96:e6:53:42:9f:a4:7e:10:a0:80:4c:68:aa:03:45:82:3d:31:
d2:26:68:87:58:86:7b:d6:cc:09:2d:c0:0e:6f:eb:99:f2:ad:
93:63:f8:56:7a:0a:48:4f:ee:9b:24:b0:74:36:1c:4e:24:85:
4a:89:8f:d5:16:fe:16:0b:e1:bb:af:37:f8:33:84:c6:be:f2:
bb:a1:78:e9:28:e4:08:07:a4:3d:ca:f6:cb:2d:53:04:6b:2b:
c6:fd:9e:61:dd:a5:43:de:cf:a2:58:b3:cd:5a:15:e1:d7:55:
0c:5e:8b:3e:11:0d:7f:af:13:ef:82:d1:e1:f5:df:80:6e:5d:
36:10:ef:b6:af:2d:c0:a3:d1:a0:1c:6a:60:05:2b:c9:7d:75:
01:6e:62:f3:40:04:f8:07:cb:25:9a:ca:cb:57:7a:de:3a:d7:
88:79:ff:22:d8:17:76:3e:90:95:04:4a:76:cb:d8:a9:2f:01:
ba:b4:9c:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 12:39:38 2025 by rpki-client