Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/OV48aWltxR2FvYmXD9xbhIyEu4Y.roa
File: OV48aWltxR2FvYmXD9xbhIyEu4Y.roa (raw, json)
Hash identifier: 0OKj0Ffm92ZX+fXrmVm65AiMplZq0ULQzNr2suw/Lz4=
Subject key identifier: 39:5E:3C:69:69:6D:C5:1D:85:BD:89:97:0F:DC:5B:84:8C:84:BB:86
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 157F
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/OV48aWltxR2FvYmXD9xbhIyEu4Y.roa
Signing time: Tue 11 Feb 2025 23:44:42 +0000
ROA not before: Tue 11 Feb 2025 23:44:42 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 60.249.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:23:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5503 (0x157f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:42 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=395E3C69696DC51D85BD89970FDC5B848C84BB86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:ba:0d:8c:94:13:0c:bf:f1:58:a4:d4:da:d3:
6c:16:76:27:08:88:a5:b2:b0:89:1c:60:84:61:45:
39:20:7b:8f:c5:57:8b:da:18:a6:60:b7:f9:4d:4e:
62:f7:92:fe:f4:b2:17:a9:b2:a4:44:a4:4c:5f:9a:
64:e5:bb:00:59:b3:29:15:fc:6b:7b:9f:3c:df:0f:
2b:9a:de:2c:fe:c4:64:6b:6d:b2:d8:3a:88:3c:ea:
03:9f:b1:4e:c8:3f:e3:18:31:ba:7e:4b:11:8e:05:
2c:91:ea:50:39:81:57:15:df:f3:4d:c0:39:bf:c4:
9e:f2:ff:0e:d0:72:79:24:b5:05:f9:0c:6d:92:99:
8f:e9:ff:54:11:1c:8f:dd:97:31:a0:48:0d:7c:44:
e4:d5:05:49:9e:79:ce:82:c0:6e:24:c5:f4:58:96:
7f:72:60:9a:e6:31:7f:dd:41:42:7b:10:c7:9e:7d:
d1:c1:96:d3:9e:ee:cb:1f:b6:cb:e1:e5:1c:8a:da:
24:b3:86:85:fa:c5:84:b6:d4:0b:b0:f5:a3:5d:ce:
1c:34:d0:d4:ef:9e:19:44:91:f8:dc:9c:35:92:57:
c1:0f:47:01:9e:65:2b:27:67:c8:74:bf:1f:e2:c5:
f3:7b:8f:6e:54:96:b3:72:3a:af:ee:4e:a5:9a:e4:
6a:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:5E:3C:69:69:6D:C5:1D:85:BD:89:97:0F:DC:5B:84:8C:84:BB:86
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/OV48aWltxR2FvYmXD9xbhIyEu4Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.249.0.0/16
Signature Algorithm: sha256WithRSAEncryption
90:3b:12:d1:34:59:be:43:48:7e:fb:18:81:9d:f5:e1:4e:49:
80:26:54:01:25:dc:92:36:b4:2a:90:b0:4f:fc:35:bd:88:e5:
98:07:4c:db:bb:c7:fb:82:c5:86:6c:00:7d:b1:da:d8:2a:d8:
8a:b7:e6:92:cf:2a:88:b1:15:e6:5f:ab:a4:5d:97:c3:f0:91:
07:f7:ac:14:e6:85:58:69:7f:d6:c0:b5:5b:f8:7a:5e:a7:4b:
53:56:bd:8b:41:ae:86:7e:34:bc:8d:10:53:5b:3c:ff:c3:c9:
30:d4:8a:e4:26:42:6c:ed:91:a3:56:dd:92:76:47:4d:94:5b:
99:c2:ea:7d:92:55:f6:d5:38:b9:81:8a:c4:ac:18:f3:81:23:
29:5d:56:1f:a7:8a:40:d3:b1:04:32:17:61:74:0d:87:8c:20:
ff:57:0d:54:a1:9d:39:49:26:7e:89:dd:6f:a7:b4:71:81:87:
4c:8f:02:e3:de:80:3e:8d:ad:11:7f:21:a0:86:8a:a8:26:49:
91:5d:c9:31:9a:f6:72:f8:90:8b:a6:c7:7c:de:b4:64:0d:f0:
f1:6f:30:6a:fb:cd:09:36:92:af:c7:a3:7b:c2:c6:cd:ea:ed:
b8:4b:84:c9:77:77:5a:4d:34:84:da:e2:d9:24:c4:f9:cd:06:
fa:7e:40:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 12:36:29 2025 by rpki-client