Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/JsVjBIlwcyMTvhOCT8iqYe7q0wU.roa
File: JsVjBIlwcyMTvhOCT8iqYe7q0wU.roa (raw, json)
Hash identifier: aYuXMg4doqxueKTb7Tx8bOplKE7/MpyyuW5Za94UuD8=
Subject key identifier: 26:C5:63:04:89:70:73:23:13:BE:13:82:4F:C8:AA:61:EE:EA:D3:05
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1522
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/JsVjBIlwcyMTvhOCT8iqYe7q0wU.roa
Signing time: Tue 11 Feb 2025 23:44:21 +0000
ROA not before: Tue 11 Feb 2025 23:44:21 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 60.248.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5410 (0x1522)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:21 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=26C563048970732313BE13824FC8AA61EEEAD305
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:70:cd:fb:08:da:28:8b:b1:89:c9:83:43:43:
e9:32:98:64:52:aa:4d:a0:18:e4:f5:0a:f2:22:96:
b7:4b:86:d1:ba:7d:b6:76:67:b4:dc:48:89:50:90:
a6:f1:27:19:c9:b9:38:05:89:8d:63:94:00:80:85:
ac:53:31:7d:15:91:76:5d:d2:3e:79:89:bb:e3:50:
d5:8e:bf:0a:16:0d:7b:d6:ea:df:ae:e7:99:21:e4:
42:81:75:d3:00:b6:f3:68:3b:23:98:1d:20:88:cc:
9d:c6:5c:00:17:f5:70:de:de:22:5c:12:a7:26:04:
81:72:34:ed:30:b5:ba:3c:2c:a7:f9:c5:5b:11:4b:
2e:ae:34:f1:9d:4f:a2:79:b8:dc:97:51:6e:79:e9:
07:03:87:dc:62:7a:a6:db:70:ae:d3:77:44:56:06:
bd:6a:84:dd:fb:aa:13:5e:77:6a:7a:b7:a9:f4:35:
22:70:e8:54:39:25:9e:93:2d:ee:b6:7c:55:57:db:
9d:8a:26:ff:00:59:81:37:df:6c:d5:24:dc:12:ad:
0e:e8:57:10:75:e7:b4:4d:1a:ad:e7:8b:d5:f0:4c:
05:8e:d9:0b:5f:42:d1:a7:2b:18:81:5c:10:e7:49:
d0:9e:43:80:a6:f4:59:32:25:65:5c:69:c9:24:9d:
41:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:C5:63:04:89:70:73:23:13:BE:13:82:4F:C8:AA:61:EE:EA:D3:05
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/JsVjBIlwcyMTvhOCT8iqYe7q0wU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.248.0.0/16
Signature Algorithm: sha256WithRSAEncryption
40:ac:6e:ee:dc:6c:d4:a2:b2:f2:30:57:08:d7:30:f2:47:42:
a3:c1:ca:7d:31:88:4d:8b:cf:56:6b:35:47:6a:1b:21:8c:87:
2e:b6:92:0d:4e:8f:f8:03:b1:10:f8:20:97:21:ea:08:ea:90:
cc:c7:73:50:fa:d5:27:7e:f2:e3:75:6a:3f:c5:bc:54:de:e7:
0c:10:dc:e4:f5:92:b3:87:a7:1e:32:03:50:16:2b:38:52:ef:
a4:54:33:cb:10:dd:3d:0b:6d:30:f3:08:da:54:2e:42:0e:3c:
ec:16:60:c2:b2:00:ae:ba:c4:c2:9b:24:c3:3b:b8:7f:c5:25:
f7:b0:e6:9d:ac:58:0d:5b:a6:6a:46:0f:b5:80:97:64:e9:4a:
53:20:b7:f2:1e:1a:fb:b1:e7:1e:31:1c:9b:ba:d0:c0:c7:0d:
ee:f0:00:26:81:01:e5:60:d9:d0:a7:39:ff:b3:2d:c7:c4:35:
b9:b2:ec:46:1e:17:5b:9a:2d:e5:77:18:1a:5f:b5:36:10:2e:
48:61:89:f2:21:fd:71:80:fc:ee:c1:25:ff:59:5c:96:9c:5c:
51:06:e7:79:92:28:72:d6:99:22:af:8b:96:72:e4:99:9e:bb:
88:69:50:ef:11:b9:33:bf:27:31:b0:c0:36:06:ac:2d:6c:f5:
1e:6d:c0:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 12:57:40 2025 by rpki-client