Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/HALPkkkzqspWjRDsXk3rW0lmnts.roa
File: HALPkkkzqspWjRDsXk3rW0lmnts.roa (raw, json)
Hash identifier: DQuyrjAVlaUhhZT8UUx5dsZmR2psppwGaTCGTn5n6ZM=
Subject key identifier: 1C:02:CF:92:49:33:AA:CA:56:8D:10:EC:5E:4D:EB:5B:49:66:9E:DB
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 157C
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/HALPkkkzqspWjRDsXk3rW0lmnts.roa
Signing time: Tue 11 Feb 2025 23:44:41 +0000
ROA not before: Tue 11 Feb 2025 23:44:41 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 210.242.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:23:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5500 (0x157c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:41 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=1C02CF924933AACA568D10EC5E4DEB5B49669EDB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:3b:9a:65:5e:db:e9:40:62:dc:60:e5:33:fa:
dc:ff:a9:ab:42:f4:b6:42:35:c5:ed:9a:b6:e3:78:
71:53:96:0e:65:7b:92:55:a7:cb:f1:e1:78:2e:fd:
2a:63:b6:ef:ed:4e:00:8d:60:17:ba:bf:f8:07:bf:
c2:25:5b:3a:e1:ee:49:6c:26:3b:38:ff:17:b1:71:
c4:d2:0e:8d:01:4c:d1:77:21:5f:fc:d0:f4:65:95:
c2:8d:3e:52:b7:70:d7:48:35:16:84:6d:c2:85:3a:
ad:14:0f:ac:4e:96:da:87:6d:0e:a6:2a:c9:b9:4c:
ae:3d:03:a3:c5:18:d2:5e:55:d1:83:56:6d:b7:c1:
99:eb:65:da:14:c2:0d:e6:23:b8:f6:f2:35:a4:a4:
d5:aa:46:0f:42:b4:9c:97:72:2f:c4:99:d3:7b:5f:
46:c5:88:46:b5:a3:3d:7c:b1:fe:d5:51:fb:87:45:
f4:1e:6e:1e:56:3e:e0:2a:0b:18:d9:fe:eb:bc:26:
cc:c3:ba:48:c8:94:44:2c:a6:75:6d:3c:b9:57:f5:
05:4a:30:1e:c0:f6:a1:e6:41:bb:58:d6:42:e3:38:
93:7e:59:56:df:23:9b:f6:24:5e:c5:9e:93:0c:2c:
66:a6:cb:9a:4c:00:9b:cd:ef:c0:c3:dc:09:4d:34:
6b:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:02:CF:92:49:33:AA:CA:56:8D:10:EC:5E:4D:EB:5B:49:66:9E:DB
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/HALPkkkzqspWjRDsXk3rW0lmnts.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.242.0.0/16
Signature Algorithm: sha256WithRSAEncryption
95:36:4e:64:44:db:0f:ce:bb:68:be:59:7c:50:cd:24:5a:0f:
1d:ac:1e:dd:56:dd:f0:88:47:71:2e:0b:cf:0e:6b:5e:03:58:
be:15:bd:0f:0a:40:c8:f4:b3:9b:30:f4:b8:00:47:e1:f1:fd:
24:0a:74:04:4e:96:49:93:63:f6:bd:81:cf:73:8e:11:fb:cc:
01:f8:d0:e9:e2:ad:46:35:f6:0a:d2:2a:13:05:91:a4:20:1f:
d7:b2:4b:a0:cc:1e:e9:e4:14:5c:5c:8d:42:9f:16:e9:c4:8e:
ec:cf:46:e1:7e:9c:f9:1c:d2:2e:0b:ba:08:fc:a1:e5:51:24:
22:d8:26:1c:de:5a:cd:2c:40:38:57:d1:c1:68:22:da:91:dc:
5c:a8:8c:51:dd:2d:2c:33:81:ed:37:49:7f:33:f9:45:02:31:
e3:43:53:7f:f2:16:56:cf:46:c9:65:5f:1c:49:5c:9a:24:aa:
15:16:64:08:f1:98:2e:ef:0f:c4:01:da:5c:52:bf:68:e4:0e:
26:e7:82:a3:4e:f9:28:d3:c7:af:13:8b:af:72:cb:27:ab:68:
12:37:5e:ee:12:17:fe:5d:22:97:ad:a6:8c:99:51:21:4b:b5:
c3:f2:29:8a:d1:14:c2:9a:0b:88:28:f2:65:7f:4f:f9:ec:70:
34:b2:d1:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 12:59:43 2025 by rpki-client