Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/W2Sg43K4x25AgEgYiHZIGIBTTr4.roa
File: W2Sg43K4x25AgEgYiHZIGIBTTr4.roa (raw, json)
Hash identifier: D9DG6rjcAG4LzShC5K20EGGEna6b9MAyHyw0/7xdkp4=
Subject key identifier: 5B:64:A0:E3:72:B8:C7:6E:40:80:48:18:88:76:48:18:80:53:4E:BE
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1548
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/W2Sg43K4x25AgEgYiHZIGIBTTr4.roa
Signing time: Tue 11 Feb 2025 23:44:29 +0000
ROA not before: Tue 11 Feb 2025 23:44:29 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 8068
IP address blocks: 61.220.60.200/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5448 (0x1548)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:29 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5B64A0E372B8C76E408048188876481880534EBE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:1d:4f:df:c0:84:c1:35:b5:35:ee:eb:eb:cd:
cf:44:5a:b4:d6:7a:01:c1:c7:0f:12:9e:e3:5b:cb:
c9:b3:36:92:c7:f0:be:85:20:41:4e:9f:25:77:25:
9f:ae:4f:71:c8:43:ff:7d:3c:89:60:49:e4:0c:4a:
81:3e:76:25:b8:5e:60:c7:92:0e:64:e9:59:32:2a:
a8:82:b9:c9:58:8e:c7:29:dd:5f:d1:8e:91:41:3c:
a7:80:6b:72:7d:92:f2:6a:b0:21:e8:f4:57:86:a9:
c5:66:b6:b6:ac:28:cc:32:20:d6:7a:74:3c:c3:22:
bd:61:b4:57:4a:04:74:07:0f:8d:13:9e:72:2e:61:
9c:cf:cd:ed:8f:8e:2f:98:64:89:83:90:64:d7:a1:
e0:e2:77:56:0b:0e:13:e4:b8:88:97:0d:b0:34:d7:
9c:9f:5e:17:68:8d:4c:81:ac:df:9d:14:d8:06:00:
f4:8a:b6:93:d0:26:38:00:44:1e:7d:cb:75:8e:2c:
b6:0d:cf:c0:95:fb:1d:f5:0e:77:70:79:75:96:45:
35:de:82:67:e2:e9:7a:c0:ea:5a:22:63:ee:06:9a:
55:b3:8a:04:7b:63:be:68:f3:1d:b4:cb:65:55:11:
05:a7:ef:aa:76:a6:78:bf:49:f1:94:8a:79:48:15:
18:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:64:A0:E3:72:B8:C7:6E:40:80:48:18:88:76:48:18:80:53:4E:BE
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/W2Sg43K4x25AgEgYiHZIGIBTTr4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.220.60.200/29
Signature Algorithm: sha256WithRSAEncryption
d3:16:bd:86:17:6e:d4:ae:84:83:db:6e:dd:69:4f:c9:4d:37:
09:3b:bc:ea:84:df:9f:58:b7:26:60:5d:64:de:22:2b:75:df:
01:2a:4b:6d:51:c3:b9:e6:7e:2a:cf:1b:90:6e:17:8c:27:ce:
6a:01:53:d4:9c:09:5e:dd:bc:55:0d:bd:89:b3:50:a3:9e:cd:
18:7b:32:ff:7b:93:7b:ce:63:4c:18:25:5a:25:2a:d3:08:8b:
03:c9:c2:f3:46:ec:9b:ac:24:f2:92:b1:e8:49:0f:f2:f5:7c:
eb:7e:3a:1f:b6:54:61:9a:46:a3:39:e3:c9:f6:cb:a0:17:9f:
6d:a4:49:24:25:57:73:cc:b2:df:e2:8a:c4:84:a6:f7:c6:ac:
53:ad:85:c3:af:07:04:99:40:bd:1d:ca:08:b3:6a:21:33:83:
dd:c4:60:60:e2:1b:05:dd:e5:4d:9b:28:e9:e3:b7:b9:22:2f:
5c:dd:95:ed:60:3c:58:a2:1b:c4:84:40:fc:66:4e:5a:22:79:
2f:d0:08:5f:bb:83:bf:59:80:f1:70:8e:9c:72:1d:53:b2:da:
cb:97:0b:b0:ff:5a:e4:17:87:83:a3:49:71:3b:d3:1e:6a:1a:
19:36:79:47:98:4d:79:de:5f:e1:03:0b:b7:f1:b5:43:e1:e0:
14:5e:66:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 25 22:09:01 2025 by rpki-client