Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/CS4nIjJS1qAS2qYQ7fVA1zT9cCA.roa
File: CS4nIjJS1qAS2qYQ7fVA1zT9cCA.roa (raw, json)
Hash identifier: u37lOlVnC69JoXILC0BL+j/Hu1vVn/VGDnkvKbKX3/A=
Subject key identifier: 09:2E:27:22:32:52:D6:A0:12:DA:A6:10:ED:F5:40:D7:34:FD:70:20
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 14EA
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/CS4nIjJS1qAS2qYQ7fVA1zT9cCA.roa
Signing time: Tue 11 Feb 2025 23:44:09 +0000
ROA not before: Tue 11 Feb 2025 23:44:09 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 1.34.0.0/15 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5354 (0x14ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:09 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=092E27223252D6A012DAA610EDF540D734FD7020
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:68:88:cc:bb:01:99:9f:41:af:03:96:5c:1c:
6a:59:06:bc:1b:b2:33:87:1c:62:74:fa:f6:be:50:
ce:d7:01:75:a4:d2:5f:49:42:3f:55:1c:21:80:07:
2b:fc:50:10:28:18:a1:cf:e2:d2:22:0e:a8:a1:cb:
76:29:a7:fd:c3:0c:f1:36:91:82:66:49:b3:40:b5:
db:3a:d8:2e:1f:2e:65:06:b7:82:8d:70:bc:67:e8:
17:e2:20:d1:68:0d:89:db:a6:35:f8:cc:e5:1f:d7:
50:35:aa:fd:48:04:d0:9c:c3:3f:f1:5a:00:00:d3:
6b:7c:58:97:c1:00:bc:11:5b:0a:8c:b2:d9:43:7f:
26:70:19:6d:f2:ca:21:7c:42:2f:64:07:97:5a:cb:
92:21:44:80:8b:c3:e0:c2:45:3b:e1:80:71:3c:7e:
f3:49:b9:8b:81:5a:1b:69:1c:9d:ab:90:e1:9e:b0:
fa:cf:8d:83:50:3e:57:59:42:d2:6c:1a:5e:28:43:
aa:2b:df:50:77:b9:3a:97:55:87:84:96:35:90:81:
7f:18:3b:5b:c8:19:05:4a:6f:d6:3e:39:13:cf:4a:
cd:d1:f5:96:f3:eb:2d:c4:bc:7e:71:41:ad:60:0c:
01:86:68:6e:23:bd:47:06:30:97:ca:a1:2a:18:6a:
bc:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:2E:27:22:32:52:D6:A0:12:DA:A6:10:ED:F5:40:D7:34:FD:70:20
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/CS4nIjJS1qAS2qYQ7fVA1zT9cCA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
1.34.0.0/15
Signature Algorithm: sha256WithRSAEncryption
a6:75:cb:f4:76:d5:55:7b:b1:c5:0b:6a:62:98:a8:c2:85:aa:
ac:e6:9a:e7:4a:18:73:bf:f3:bf:a8:ac:61:8d:4a:3f:20:1d:
56:2e:03:96:37:5a:d5:3d:dc:af:f8:f0:27:2d:f6:17:79:2a:
b9:65:e7:99:0d:d8:4e:63:4f:56:af:95:5d:de:b3:19:ad:8a:
91:e9:df:63:e8:81:10:76:99:b1:e7:61:37:e3:fc:4e:68:1b:
bc:82:92:65:59:39:80:3e:dd:dd:df:c8:1b:57:e8:eb:c3:80:
b4:f9:0f:fa:4e:be:5b:38:a8:5f:f5:2d:e1:dc:18:0f:81:17:
ee:e7:ed:0b:06:f9:e4:4c:34:27:e7:fb:2d:1c:fa:87:f1:ad:
05:88:ed:30:6e:8b:16:11:15:cc:91:a0:7c:d8:fd:85:2c:b6:
e2:64:2d:c9:56:31:03:dc:60:41:76:64:16:ab:67:14:0b:65:
54:7f:0b:5f:94:0c:3c:43:31:b2:ea:0b:87:42:d7:c7:31:74:
fc:80:f6:67:c7:2c:0b:68:07:9c:75:ed:c4:a8:70:70:8b:7c:
8d:7a:01:05:10:d0:6f:c8:bb:85:31:64:23:4b:3f:f1:37:d4:
15:59:ca:2f:d1:9d:02:9c:94:f8:ef:c0:ac:58:75:6f:1c:9d:
fe:a4:62:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 11:22:37 2025 by rpki-client