Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/B631SWpxEGXP0yUBOSnyG7bA_no.roa
File: B631SWpxEGXP0yUBOSnyG7bA_no.roa (raw, json)
Hash identifier: Q8QGqoWrQoHaoPSy6zjN2msmy+F5pL82g5tPfxSPkAY=
Subject key identifier: 07:AD:F5:49:6A:71:10:65:CF:D3:25:01:39:29:F2:1B:B6:C0:FE:7A
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 159B
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/B631SWpxEGXP0yUBOSnyG7bA_no.roa
Signing time: Tue 11 Feb 2025 23:44:47 +0000
ROA not before: Tue 11 Feb 2025 23:44:47 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9505
IP address blocks: 175.111.237.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:23:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5531 (0x159b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:47 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=07ADF5496A711065CFD325013929F21BB6C0FE7A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:31:98:b0:b3:6f:dc:a1:f1:90:eb:4b:d7:4a:
56:96:ac:c7:fe:29:61:fc:38:93:c6:72:1f:a0:e5:
dc:3e:a7:f7:67:6f:9b:ad:28:88:1c:f9:2f:cf:ec:
c6:87:a3:2b:fc:d0:86:e8:82:37:0f:71:1b:2d:89:
02:36:e9:73:59:18:12:c0:59:db:fe:30:70:c0:78:
90:e1:14:5c:7c:86:93:0a:0e:8f:e3:77:c7:56:d8:
b6:48:62:ed:1d:5c:52:7d:58:42:70:ac:8e:80:e3:
57:2d:77:7d:ed:2a:81:ff:3f:93:32:f0:cd:5f:6f:
39:ec:7a:ff:4d:a7:78:ce:c4:88:8d:0c:54:1d:8d:
b7:27:1a:47:d2:73:de:d0:f8:ec:41:a7:f0:43:2c:
31:61:67:02:ec:97:81:bc:27:3e:2e:de:9a:da:45:
83:2d:86:3a:27:da:e9:ac:05:e6:45:f5:27:09:9c:
6b:2a:1b:52:2d:b8:71:70:d5:7f:e5:ac:2b:26:48:
e1:23:c6:e1:52:5b:b9:c6:23:ae:20:e5:10:01:46:
40:bb:0f:e7:38:56:48:06:06:92:b6:45:d8:04:4c:
dc:e3:5e:83:d7:07:75:6a:f7:c3:cc:70:33:5a:6a:
8b:9a:ec:15:61:8f:c4:4d:d5:05:78:06:5a:a9:b2:
da:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:AD:F5:49:6A:71:10:65:CF:D3:25:01:39:29:F2:1B:B6:C0:FE:7A
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/B631SWpxEGXP0yUBOSnyG7bA_no.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.111.237.0/24
Signature Algorithm: sha256WithRSAEncryption
60:2b:28:6f:59:c3:39:be:9b:e6:09:09:20:4e:07:ff:93:4a:
9e:42:f6:23:b0:01:0f:cb:94:2e:55:60:43:b3:78:14:7c:f0:
16:0e:0b:38:42:ab:4e:53:9c:bd:92:16:2d:e4:06:4a:52:d0:
87:3d:0f:09:10:79:fb:d0:a1:82:e0:f7:92:7a:6e:cd:1b:95:
2c:3b:1f:7a:73:e8:60:bd:a2:b0:70:69:97:0c:67:5d:4e:0d:
9e:68:4d:94:c7:44:b4:16:02:3d:5e:7c:53:22:c0:b2:01:d9:
8f:49:a7:ec:ad:2c:1a:a6:42:64:44:b1:59:be:90:29:db:e6:
ff:62:74:fc:5f:f3:88:bd:81:45:3e:d7:44:f6:8f:26:bf:ab:
c7:92:b7:39:eb:a7:61:ef:40:75:7b:87:de:23:4a:cf:cb:9a:
df:8b:0d:f6:f5:2a:19:e4:37:89:87:68:78:45:b5:1c:ed:44:
52:f9:b5:cd:5a:f1:0a:0a:9e:d3:4c:3c:4f:f9:0f:d8:43:c5:
c2:9c:b8:14:84:94:f4:2b:4c:5b:85:4d:db:14:40:01:14:b7:
2a:2f:44:a9:dc:08:75:31:96:a0:74:5b:22:f0:8a:ad:68:82:
f5:c3:1e:ec:2e:53:3e:a5:44:3d:fc:f7:31:ee:84:a5:80:7c:
d8:08:55:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 11:42:58 2025 by rpki-client