Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/SSrsa0qClb9pgILdRV_wJ7l6dEw.roa
File: SSrsa0qClb9pgILdRV_wJ7l6dEw.roa (raw, json)
Hash identifier: N6U3ue+GCnmpx0dwavzP8axE5Yj/yCvEXjuskdqUDRM=
Subject key identifier: 49:2A:EC:6B:4A:82:95:BF:69:80:82:DD:45:5F:F0:27:B9:7A:74:4C
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1555
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/SSrsa0qClb9pgILdRV_wJ7l6dEw.roa
Signing time: Tue 11 Feb 2025 23:44:32 +0000
ROA not before: Tue 11 Feb 2025 23:44:32 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 142005
IP address blocks: 210.242.123.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5461 (0x1555)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:32 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=492AEC6B4A8295BF698082DD455FF027B97A744C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:fa:02:1e:95:a8:a2:bb:54:ed:c3:24:3f:33:
3e:83:c2:bd:58:8f:6d:27:b5:51:d5:eb:95:4e:8e:
4e:24:42:e0:ba:fd:85:8d:14:4f:d9:4a:a5:f8:1f:
10:43:55:63:54:84:40:86:a1:c6:a7:5e:b3:5e:62:
93:26:05:9e:6e:e1:87:ee:cf:ed:8d:39:d1:34:f3:
6a:92:a8:45:c0:87:c1:a0:17:fa:b9:cc:c0:24:3b:
75:c3:b1:52:a4:d1:e7:96:63:41:68:32:b4:cc:05:
8a:87:53:b8:ef:e5:d3:9c:2b:e9:dc:e0:47:cb:07:
25:d3:9c:09:43:0a:97:34:5c:f1:28:e1:a8:05:25:
be:d6:e3:18:cd:5b:d0:61:a4:1e:a9:ba:f0:82:fa:
a6:a3:d2:9f:38:e2:95:40:ef:d9:c3:08:9d:b9:fc:
ed:f7:65:a9:25:93:3c:87:62:4a:0b:1c:27:45:c9:
15:8f:6c:ab:87:07:d3:df:a8:c3:aa:a9:27:13:c1:
4c:fe:a6:97:8b:8b:e5:23:e6:a0:f1:38:b4:fc:31:
e1:2d:45:8f:39:94:b0:4c:8b:0c:82:e4:5f:64:b3:
a1:ac:d0:32:cd:25:cf:51:4c:99:ef:3d:45:b5:e2:
4b:d8:b6:75:fb:6d:36:bf:15:3b:04:2c:38:8b:ee:
91:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:2A:EC:6B:4A:82:95:BF:69:80:82:DD:45:5F:F0:27:B9:7A:74:4C
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/SSrsa0qClb9pgILdRV_wJ7l6dEw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.242.123.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:22:dc:0e:46:15:0a:73:76:15:0f:90:10:62:b0:53:b2:33:
b8:48:d6:f2:80:dd:b1:7e:cc:25:94:b6:2d:85:23:1d:52:79:
d9:0d:28:6a:86:bc:8a:be:df:ae:a4:73:47:82:dc:f2:69:ba:
3b:e5:fb:c1:16:bd:05:d6:b1:42:e0:f4:12:94:32:40:6f:e7:
3b:c9:b2:fa:da:1b:16:8c:0b:c6:f4:4a:b1:e1:26:07:d1:09:
fb:61:3c:9d:8b:fa:00:38:c3:36:54:2e:bb:f0:6a:14:c4:bb:
9c:b7:8e:fc:1b:dc:66:1f:8e:dd:8d:1c:59:3d:2a:59:fb:7b:
30:3a:d7:3a:89:7f:77:d4:84:70:3d:c6:10:be:c8:04:3a:5d:
f9:99:41:dd:35:26:2b:ab:bc:f2:f4:94:24:e2:dc:46:97:b9:
49:bb:0b:60:35:31:7d:33:7e:0f:12:6a:cb:6a:09:2d:6f:09:
80:7c:63:77:06:2d:56:34:2d:2d:7f:78:d8:ca:20:d8:75:92:
59:4b:96:cf:80:a0:37:f1:8e:a2:57:d0:7d:26:1a:70:54:50:
62:19:f3:79:0b:6e:a3:64:e1:8f:02:82:8e:2b:7d:df:3d:87:
66:b5:f6:07:4d:93:df:c6:17:d9:da:f2:ef:6c:6d:c1:15:f3:
ca:cc:59:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 11:23:33 2025 by rpki-client