Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/EdAuQa--vi9lR4nj0HPXrA5K0cQ.roa
File: EdAuQa--vi9lR4nj0HPXrA5K0cQ.roa (raw, json)
Hash identifier: HtDO0G1W3rKi7Gc4uUUwgahdbBavzjsDlVXS6pAfTJo=
Subject key identifier: 11:D0:2E:41:AF:BE:BE:2F:65:47:89:E3:D0:73:D7:AC:0E:4A:D1:C4
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 156F
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/EdAuQa--vi9lR4nj0HPXrA5K0cQ.roa
Signing time: Tue 11 Feb 2025 23:44:39 +0000
ROA not before: Tue 11 Feb 2025 23:44:39 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 202.39.64.0/19 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5487 (0x156f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:39 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=11D02E41AFBEBE2F654789E3D073D7AC0E4AD1C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:89:fe:f4:82:80:cc:f3:c8:61:42:fb:03:6a:
c7:6d:2e:9c:a3:ca:66:4b:3d:ab:c6:9f:df:21:3c:
a0:31:20:ff:75:b9:dd:61:79:30:4b:09:0b:64:b0:
40:80:25:fa:83:ce:b3:b0:d6:dd:d9:d6:47:4a:c1:
b3:64:4d:13:a2:75:76:f0:22:4d:de:3f:7d:c4:37:
d0:9e:68:39:15:8f:cc:89:a8:b9:24:cd:83:9f:b4:
4d:e5:26:20:c7:a7:e9:6a:68:32:7c:b8:8c:6b:08:
77:62:57:f4:03:c5:35:ad:0c:8f:80:a6:40:dc:00:
2e:90:21:34:8a:9d:55:9f:ae:8d:51:3c:df:48:01:
eb:97:10:6b:a6:bb:ef:91:5f:8a:ae:5b:27:11:d9:
d0:df:dd:8b:6c:c1:b4:95:64:2f:08:cd:e8:9c:7b:
16:ca:f5:19:cb:a8:04:11:da:52:22:14:96:e6:6a:
97:bc:c2:29:17:f3:b6:fc:3c:c1:66:d0:6b:5e:86:
a2:54:53:95:55:8f:c2:55:e6:7f:26:70:7d:f9:11:
76:de:fc:f5:a4:70:66:04:f8:5d:55:f3:0f:1b:10:
ea:d7:b0:e2:a5:56:07:32:90:3d:58:c2:0c:88:63:
f1:63:98:2b:32:a2:82:fe:20:c9:3f:db:ca:75:ed:
25:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:D0:2E:41:AF:BE:BE:2F:65:47:89:E3:D0:73:D7:AC:0E:4A:D1:C4
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/EdAuQa--vi9lR4nj0HPXrA5K0cQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.39.64.0/19
Signature Algorithm: sha256WithRSAEncryption
a1:2a:3e:94:9d:54:b1:7c:84:17:66:bd:f5:49:6a:7a:e2:20:
86:d6:16:6e:9b:57:8d:ef:09:b6:d3:de:7c:e4:8f:c9:ab:30:
5f:05:e1:ba:69:0e:98:09:87:57:20:1a:ab:9d:f9:56:0d:aa:
bd:14:a1:b6:02:f1:a3:14:1c:0a:cb:0e:f1:5b:4f:2e:dc:0d:
ad:23:38:c5:94:8e:62:34:6d:95:10:65:73:c1:0e:51:2e:80:
de:05:34:dc:87:ef:cb:dc:db:53:d6:03:66:01:94:2f:26:17:
0d:6f:d6:2d:54:ea:1d:4c:17:a6:af:96:da:26:e3:aa:b4:27:
c7:8c:9b:51:38:5d:9b:25:16:04:28:d6:8c:8c:97:b2:a8:de:
8a:c9:e1:2a:9f:f7:62:2c:a5:93:73:c7:bd:06:5b:f9:ec:13:
bf:12:75:65:eb:f3:86:7e:79:d9:c9:ec:e5:a1:c7:9a:8d:ce:
74:e9:43:21:86:ef:35:d7:0b:57:ee:ac:92:c6:37:1a:47:e8:
42:cc:ec:b1:72:5a:af:8e:f8:ae:94:71:37:2d:bc:4f:4c:23:
f0:b1:9b:5f:b3:25:3c:58:fb:b8:68:19:3b:f0:2d:12:5b:4d:
3d:14:91:15:57:84:47:1e:fe:f9:55:8f:4f:b0:95:2e:9b:ae:
de:14:cc:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 13:07:55 2025 by rpki-client