Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/BrTsvCEDwf5f_w2UHqqqrObstd8.roa
File: BrTsvCEDwf5f_w2UHqqqrObstd8.roa (raw, json)
Hash identifier: 51s/ZJP093/B67MhWTawaFfyGFxxD94slgv7z/K+PR8=
Subject key identifier: 06:B4:EC:BC:21:03:C1:FE:5F:FF:0D:94:1E:AA:AA:AC:E6:EC:B5:DF
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1572
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/BrTsvCEDwf5f_w2UHqqqrObstd8.roa
Signing time: Tue 11 Feb 2025 23:44:39 +0000
ROA not before: Tue 11 Feb 2025 23:44:39 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9505
IP address blocks: 2001:b200::/32 maxlen: 64
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5490 (0x1572)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:39 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=06B4ECBC2103C1FE5FFF0D941EAAAAACE6ECB5DF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:af:7c:b4:2d:b7:52:97:61:91:fc:96:ed:b3:
d2:e1:08:04:af:b8:99:eb:9a:e2:9d:bb:7d:ab:9d:
7a:ec:f8:6c:7b:ff:59:89:41:1c:58:37:cf:66:e4:
13:af:c7:22:a3:6a:e0:b3:46:37:cd:21:67:ee:c4:
b4:e4:52:96:23:13:50:15:2c:af:0b:6c:e5:f8:89:
74:72:07:34:88:82:c1:14:56:49:aa:53:dc:a9:4a:
f1:8d:a1:7f:9b:2b:54:fb:c0:bd:e1:e0:25:5a:71:
f3:79:a7:b4:40:80:7f:96:bd:aa:2a:9a:e0:7e:41:
c4:99:7c:2d:39:74:fd:47:43:c5:d8:91:79:a7:8d:
db:c3:2e:01:6e:88:de:a0:d7:7d:d8:85:0a:bd:08:
33:0d:97:f5:bf:72:b1:10:92:fd:12:57:90:d9:8a:
9f:61:60:e4:34:b5:c7:2b:eb:a8:4f:9f:df:d2:d4:
3f:42:eb:61:de:77:51:0e:f1:c9:96:da:db:32:76:
9b:3f:03:83:73:bc:10:87:bd:7c:ed:85:22:58:55:
6b:12:ff:5c:0f:b2:83:bd:6e:b1:88:a1:76:91:a3:
28:9f:68:8d:39:b9:ee:7e:4d:56:75:3b:be:37:73:
f9:53:42:44:5a:bb:d5:62:38:17:1f:32:61:68:68:
6e:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:B4:EC:BC:21:03:C1:FE:5F:FF:0D:94:1E:AA:AA:AC:E6:EC:B5:DF
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/BrTsvCEDwf5f_w2UHqqqrObstd8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b200::/32
Signature Algorithm: sha256WithRSAEncryption
25:f2:7c:f0:c6:dd:8a:42:c0:7c:d2:e1:61:74:92:7b:db:5b:
73:4d:6e:2e:a1:8a:85:2e:fa:57:20:8e:08:bf:bd:16:cb:1c:
14:06:46:9a:37:7f:f9:ce:e8:44:50:eb:07:87:20:7f:04:30:
ff:18:4b:87:61:10:7d:b3:a2:da:bc:e9:72:db:31:20:7c:1f:
6f:98:a7:5f:31:96:15:f8:94:ca:d4:3d:da:9e:e6:2d:41:72:
37:96:a1:76:14:26:7d:eb:5d:cd:2c:f1:26:d6:cd:20:35:6d:
8e:6d:29:47:08:1f:19:93:a2:06:fe:ae:8f:30:fa:43:01:f5:
50:77:19:85:4c:b2:87:2c:e7:22:c6:2f:e0:4c:cf:c8:cb:10:
50:f3:dd:63:04:67:bb:f1:39:ee:d5:01:2d:08:b9:8a:55:f3:
90:42:e1:ec:36:27:b2:54:43:f5:f1:a4:d4:00:60:c1:50:76:
d0:6c:0c:35:2a:01:36:0b:4a:68:f6:59:ba:65:97:56:82:c7:
45:f7:2e:3c:8b:49:9b:80:86:bc:b1:83:1a:f2:8c:70:db:a0:
48:50:27:f2:9f:06:ef:3f:86:a3:b3:c2:42:f3:99:20:84:8f:
f9:53:ee:d6:2f:4a:eb:49:fa:3f:47:a7:35:3c:6f:88:f4:2d:
84:fe:6f:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 11:48:38 2025 by rpki-client