Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/VWsHK37JjPnufwUBo0gXvp1QD_s.roa
File: VWsHK37JjPnufwUBo0gXvp1QD_s.roa (raw, json)
Hash identifier: jqs3jGZI5kZ4FQLYywiQM2mTEDK9t+KChIMRjkjFWDc=
Subject key identifier: 55:6B:07:2B:7E:C9:8C:F9:EE:7F:05:01:A3:48:17:BE:9D:50:0F:FB
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 14FE
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/VWsHK37JjPnufwUBo0gXvp1QD_s.roa
Signing time: Tue 11 Feb 2025 23:44:13 +0000
ROA not before: Tue 11 Feb 2025 23:44:13 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 20940
IP address blocks: 210.65.144.128/26 maxlen: 26
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:13 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=556B072B7EC98CF9EE7F0501A34817BE9D500FFB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:95:01:1f:6c:d0:0a:3d:8c:7c:d4:29:93:cb:
90:6b:bd:34:05:dd:3d:fe:a9:7e:4e:10:0d:c3:75:
13:db:5a:ed:8d:06:50:dd:64:c5:9c:ea:65:fe:38:
87:9f:2f:c7:d5:af:06:41:2d:fd:58:ce:1c:73:4e:
eb:ba:a4:f7:c5:c6:e9:d0:38:22:0f:e4:a3:ed:95:
be:59:04:7c:25:a2:7a:1f:8a:be:c6:50:43:d4:22:
90:6e:be:5b:89:44:5d:dc:03:36:ad:48:b7:77:92:
ad:7a:32:2f:bf:0a:1c:f9:f1:5c:89:22:db:90:6f:
6a:18:25:18:d3:5f:87:05:7e:a7:45:76:09:1b:75:
e8:10:c0:5b:18:cc:5d:e3:c3:76:0e:4c:89:f5:a2:
44:fb:0b:a1:34:99:cd:8b:51:6e:06:9c:b6:06:bf:
31:6a:d6:bb:c9:7a:7a:9a:93:40:1a:09:98:23:ef:
2f:be:c8:c6:8a:7c:a3:ab:6e:7a:78:6c:3b:59:c6:
55:16:f3:ed:47:f0:9f:82:82:8f:10:9f:69:a4:8d:
75:0e:40:40:9f:41:e7:d8:24:c3:54:a3:06:5d:69:
5c:c4:1b:42:53:36:ce:d3:ce:2a:96:28:48:a7:3a:
20:c7:73:d1:15:c6:e2:b4:49:6d:1f:ce:6d:20:0f:
94:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:6B:07:2B:7E:C9:8C:F9:EE:7F:05:01:A3:48:17:BE:9D:50:0F:FB
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/VWsHK37JjPnufwUBo0gXvp1QD_s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.65.144.128/26
Signature Algorithm: sha256WithRSAEncryption
c5:93:ab:e8:c3:d1:11:96:70:04:6e:c5:d9:41:d2:76:fa:be:
eb:42:3a:9a:96:cb:f2:22:c1:f5:ea:96:03:9d:35:03:cc:dd:
4c:03:5c:55:5e:e2:2d:71:39:77:de:4f:be:38:62:90:89:dc:
98:c7:55:88:4e:1d:7d:2f:2f:2c:91:44:7a:a3:32:94:15:1a:
61:40:7b:c0:b5:e0:b5:c6:c9:b0:13:81:b5:19:5b:d6:f3:9c:
8b:8e:80:b0:dc:cf:a0:8f:20:1b:df:64:3e:c6:86:bd:7c:b0:
02:15:c3:2a:a1:26:a7:47:22:11:b2:d0:d4:16:eb:8f:e7:bd:
fd:da:b7:8d:b9:b3:9b:d7:cd:5e:78:0f:14:6f:ec:98:a2:5e:
b7:39:39:3b:29:b4:47:7d:9d:10:b6:b2:6b:54:83:a0:21:87:
d2:2c:63:e3:7d:77:bc:aa:74:be:e6:2e:d3:4a:71:7f:48:cd:
6f:da:a2:fc:3e:d1:23:47:5b:6c:bd:4c:db:0e:cc:d2:5d:b1:
4b:11:e1:bc:11:ab:bb:3c:f6:91:ac:83:f5:98:43:19:a7:08:
44:62:43:23:8c:32:61:d0:f8:c0:57:e2:fe:24:9c:3c:18:0b:
87:44:18:08:38:e7:db:ae:22:3e:2c:d2:f1:f7:0f:bf:d2:55:
d6:55:c5:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 12:42:11 2025 by rpki-client