Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/WBmbLfwW6jNB80q7hTqmhgn_cmA.roa
File: WBmbLfwW6jNB80q7hTqmhgn_cmA.roa (raw, json)
Hash identifier: 86zbwHvn8aV2JRp3pK2RK5oHE8pLG0fLvvNC/Ji/NwY=
Subject key identifier: 58:19:9B:2D:FC:16:EA:33:41:F3:4A:BB:85:3A:A6:86:09:FF:72:60
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1589
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WBmbLfwW6jNB80q7hTqmhgn_cmA.roa
Signing time: Tue 11 Feb 2025 23:44:44 +0000
ROA not before: Tue 11 Feb 2025 23:44:44 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 103.25.236.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:23:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5513 (0x1589)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:44 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=58199B2DFC16EA3341F34ABB853AA68609FF7260
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:c8:8b:13:cd:98:56:71:03:47:bb:28:58:af:
8a:31:9f:61:89:5b:11:f4:bf:96:34:f6:88:d1:7d:
9d:01:1a:ce:9f:d1:60:bc:d5:4e:67:5a:81:c8:ef:
b0:2d:4c:12:dc:63:17:cb:4e:ab:0e:92:24:b0:95:
c6:7c:aa:9b:a8:32:a9:91:6f:1b:6f:14:c5:6a:9e:
40:b9:10:5c:e9:ac:2d:bb:9c:a8:87:2c:34:cc:df:
88:38:f1:04:8f:4c:7e:f3:3b:91:37:1c:b5:82:01:
6d:99:97:94:ab:78:2f:90:bf:4a:2f:ac:f7:47:7e:
67:eb:7d:6f:b6:b6:bc:9f:01:56:b0:f6:4a:f0:ae:
ac:55:88:1e:df:75:39:d1:85:61:d6:0b:6e:fd:25:
e4:f7:63:74:16:83:93:a2:f2:0f:1b:ba:07:1e:9b:
c0:f0:38:39:2f:c4:ed:ab:61:3c:20:40:9d:e3:1e:
e7:a4:e8:03:13:7e:d1:d0:57:b1:9c:89:24:bc:11:
6f:13:77:ab:63:e6:fc:4b:f9:24:b5:e2:bb:1b:8d:
31:24:17:92:fc:a0:9e:e4:98:1b:52:71:f1:7f:92:
f4:25:5b:79:93:07:01:ba:b5:48:ee:a4:f0:97:74:
d7:b3:65:91:93:39:e1:16:d7:16:83:2d:86:be:09:
b3:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:19:9B:2D:FC:16:EA:33:41:F3:4A:BB:85:3A:A6:86:09:FF:72:60
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WBmbLfwW6jNB80q7hTqmhgn_cmA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.25.236.0/22
Signature Algorithm: sha256WithRSAEncryption
be:04:49:b4:20:3e:73:ce:9a:72:d5:55:75:da:03:4c:16:88:
c4:f9:79:5b:1c:3e:6b:e5:06:fb:48:ea:51:f0:c3:e9:e6:84:
2b:9a:ae:55:0a:02:15:16:14:6a:0e:82:3d:6a:d0:cf:33:99:
d4:a9:a0:75:d0:f5:2b:4c:f0:75:20:54:dd:3d:4c:ff:fa:d6:
a2:ef:bd:7a:50:9a:b6:04:b2:9b:88:30:2f:cf:95:3c:aa:8d:
de:36:e0:e3:42:e4:d3:0c:87:f2:c3:a5:74:06:00:be:db:46:
88:f3:4a:e4:93:64:a4:be:92:fd:07:5d:df:af:40:22:f7:b0:
ee:c0:ce:5c:2f:bd:df:33:9b:e4:8c:4c:4e:9e:2b:68:33:5a:
e5:d7:e2:e7:e5:54:92:67:31:cd:22:8d:44:6a:6a:e9:a9:cd:
e4:09:8d:4d:12:ca:27:87:49:87:e3:1a:64:e3:5f:f8:75:fd:
ca:9f:cc:47:90:2f:f3:45:44:e4:4e:ef:3e:5e:c0:2a:36:56:
87:91:bc:45:2a:78:47:a8:76:81:48:fa:d7:e1:8d:dd:93:ed:
39:be:8a:23:03:04:b9:99:88:56:eb:36:16:64:fb:41:fa:87:
23:80:b2:cf:b7:bb:5e:08:89:25:fb:0a:99:c0:8e:1f:fc:79:
00:5e:b3:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 12:57:38 2025 by rpki-client