Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/CxDv507JM4wE2wdm6XtCYdKtm0E.roa
File: CxDv507JM4wE2wdm6XtCYdKtm0E.roa (raw, json)
Hash identifier: TVambjtrQvuh/kjYyhpnQa+V+GIBpHxl/y69x8pYw7Y=
Subject key identifier: 0B:10:EF:E7:4E:C9:33:8C:04:DB:07:66:E9:7B:42:61:D2:AD:9B:41
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1590
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/CxDv507JM4wE2wdm6XtCYdKtm0E.roa
Signing time: Tue 11 Feb 2025 23:44:45 +0000
ROA not before: Tue 11 Feb 2025 23:44:45 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 210.59.128.0/17 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:23:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5520 (0x1590)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:45 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=0B10EFE74EC9338C04DB0766E97B4261D2AD9B41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:1f:ea:8f:b8:94:04:5a:a6:96:01:b7:91:13:
ae:e9:71:90:b7:5a:e0:56:73:76:da:1d:25:a4:fb:
95:c5:6b:bd:fb:7f:54:a4:79:96:fc:d6:1e:31:87:
35:5d:4b:cc:a5:f5:62:4b:d4:8d:4c:41:7a:9a:b7:
91:ae:d5:a8:0b:66:b6:d3:39:8c:5e:a2:2d:2e:1c:
54:55:8d:9b:6f:02:4d:52:33:c8:4f:9a:cd:7c:2e:
de:93:8b:f5:f7:95:c8:34:54:60:d3:7e:f0:86:73:
13:b7:be:da:32:74:6a:6d:23:6b:a5:45:cb:d8:dd:
2b:e5:74:38:9e:dd:75:5c:98:49:45:56:ac:38:aa:
0a:15:e4:87:46:0a:3b:3f:00:21:13:94:95:78:2d:
27:cf:6c:23:4a:f5:a7:61:84:93:46:a6:d6:6c:2b:
b4:47:2b:5e:a7:ce:74:fb:ce:b6:ba:4d:17:35:fe:
fb:29:f7:e0:8e:73:0d:87:69:10:00:23:c8:72:1e:
42:ab:87:bd:2e:70:59:2f:4d:e5:06:94:ba:26:f0:
20:7c:bc:3d:b5:1a:21:8b:a5:63:50:c9:e8:d4:68:
93:5c:56:b0:68:8e:7f:c0:b2:8a:56:85:bf:66:7d:
ba:03:33:06:ce:17:62:18:f4:93:68:f8:bf:8e:4d:
fd:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:10:EF:E7:4E:C9:33:8C:04:DB:07:66:E9:7B:42:61:D2:AD:9B:41
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/CxDv507JM4wE2wdm6XtCYdKtm0E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.59.128.0/17
Signature Algorithm: sha256WithRSAEncryption
38:90:ac:bb:95:d3:71:a2:3c:88:a8:b9:42:d8:d9:22:50:31:
82:78:dd:58:87:fe:3e:bf:43:ce:1a:6a:a1:6b:ae:74:45:ca:
6e:7e:90:a8:78:1a:3b:8c:ca:d4:7a:a1:48:3f:08:c2:c6:32:
aa:64:e2:01:2e:23:f8:7b:39:10:fd:5b:9c:42:20:a1:1c:73:
5b:d6:80:27:70:07:d7:f6:ab:a9:bd:f7:d9:65:12:32:85:e1:
c9:77:92:4a:55:f5:27:3e:5b:33:e3:e6:9a:b5:38:a6:f8:85:
b8:44:3c:5d:2e:30:ce:2f:59:c0:95:fe:42:60:d3:04:1d:8b:
66:bd:c1:c4:4e:5c:2e:4c:e1:a9:79:a0:21:7a:90:d6:e6:59:
75:f3:d1:3d:53:9a:04:65:fc:93:73:61:f8:ef:8f:0d:54:5c:
06:4c:39:ae:d3:64:fb:0a:87:23:52:be:b7:dd:88:2d:f0:c0:
82:8a:dd:26:8e:e3:d3:9e:20:48:47:28:cf:f3:bb:10:c9:d9:
c6:a2:c8:75:99:ca:bd:69:fb:60:33:94:5b:89:56:19:25:c4:
f0:25:84:3c:84:b3:b9:99:33:3c:85:cb:35:f5:71:81:22:51:
76:23:85:cb:64:74:a3:c3:3e:1f:c4:a3:b9:74:c2:1f:71:bd:
48:01:dd:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 12:39:38 2025 by rpki-client