Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/BlNOEgszboRN94J6oGdN3MNHOzA.roa
File: BlNOEgszboRN94J6oGdN3MNHOzA.roa (raw, json)
Hash identifier: PMjYymvEj4TU5m33r8znSGlmN6l4/X4rif5WwErOfrs=
Subject key identifier: 06:53:4E:12:0B:33:6E:84:4D:F7:82:7A:A0:67:4D:DC:C3:47:3B:30
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1514
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/BlNOEgszboRN94J6oGdN3MNHOzA.roa
Signing time: Tue 11 Feb 2025 23:44:18 +0000
ROA not before: Tue 11 Feb 2025 23:44:18 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9680
IP address blocks: 2001:b000:591::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5396 (0x1514)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:18 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=06534E120B336E844DF7827AA0674DDCC3473B30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:3c:ee:f4:0b:15:45:6f:3b:46:c5:df:29:17:
e1:cb:d4:52:c5:a9:a3:70:6f:84:57:ae:ff:eb:d8:
ca:93:85:ce:92:54:4f:30:8e:4b:a8:79:9c:e2:fb:
19:9a:87:3a:18:08:e4:67:50:da:24:60:e5:8f:62:
00:e4:ec:05:bb:ac:27:5e:a1:92:14:f7:da:d5:0b:
af:80:30:5b:ce:26:00:ab:93:ea:de:01:da:65:e0:
96:d1:53:43:7f:67:22:80:9a:2d:e5:50:3e:fa:c2:
bc:a8:60:db:e4:9c:16:22:d4:75:07:ad:e3:e5:9e:
3c:5b:28:cd:47:11:37:53:fa:31:96:23:72:24:20:
fa:2b:77:94:d5:33:a0:dc:27:6c:8f:64:72:fe:ec:
20:f4:d4:b0:f3:28:23:4a:61:b0:49:06:b9:be:f2:
67:d3:5c:6a:a3:34:4e:c2:46:c7:91:83:bf:5f:98:
03:03:d0:c4:3e:11:21:8c:15:b7:ed:97:64:22:6c:
e7:61:05:80:29:c3:2b:f9:bb:fe:31:fb:42:b0:b2:
3d:ec:30:b5:c7:f5:05:71:22:4e:2f:91:9a:d4:a3:
32:ad:d5:69:f4:7f:49:ea:65:c0:4a:c0:56:b3:2c:
15:a4:ed:81:8d:5c:58:ff:84:b3:f8:61:14:88:0f:
f5:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:53:4E:12:0B:33:6E:84:4D:F7:82:7A:A0:67:4D:DC:C3:47:3B:30
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/BlNOEgszboRN94J6oGdN3MNHOzA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b000:591::/48
Signature Algorithm: sha256WithRSAEncryption
25:43:ba:f9:6e:73:1e:33:29:9d:6e:95:db:72:d9:9d:bf:fc:
04:90:e4:17:b3:ea:d5:59:66:21:c1:14:45:4a:e9:9e:c4:26:
e5:57:26:eb:1a:51:e8:37:12:d7:4b:1f:1f:26:9f:d0:6c:62:
6f:b2:71:41:de:9b:5a:f6:f2:8d:61:15:aa:fb:f9:03:0a:fe:
93:d7:c5:de:9f:f8:23:fc:a2:25:1c:d5:ec:38:d8:50:9f:a1:
8b:32:19:68:87:fc:ca:4c:64:dd:6f:98:5f:28:a9:44:a3:36:
54:61:4e:97:1f:08:d4:50:56:0b:9a:bc:ec:9b:69:62:5b:ce:
cf:39:11:6f:d7:18:4f:ce:2e:f9:72:a4:21:39:3c:0c:0d:1b:
82:2f:8f:02:b9:7d:16:ed:d4:d3:fa:8f:c1:43:75:00:03:e8:
eb:51:28:ad:61:d8:be:9b:81:d4:48:13:59:7c:7b:44:ec:31:
0c:9c:a3:7d:c8:b3:56:4e:19:35:88:4e:73:0b:b6:d4:6c:01:
20:9d:ff:0a:90:c9:24:70:63:f0:1a:87:42:f8:f2:8c:32:10:
fa:95:5e:24:7d:0f:da:8c:5e:38:d8:97:dc:18:69:a8:4a:45:
64:66:49:6d:4f:79:81:c9:0f:03:79:c6:de:af:17:2f:9c:1e:
3e:22:89:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 12:54:36 2025 by rpki-client