Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/XfXaYPzWNf3gbCSDDe7YWaE0bP0.roa
File: XfXaYPzWNf3gbCSDDe7YWaE0bP0.roa (raw, json)
Hash identifier: atwaEOmIT2th3D9CaT5FK1zSzIqCkstzboKdI65QZM8=
Subject key identifier: 5D:F5:DA:60:FC:D6:35:FD:E0:6C:24:83:0D:EE:D8:59:A1:34:6C:FD
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1557
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/XfXaYPzWNf3gbCSDDe7YWaE0bP0.roa
Signing time: Tue 11 Feb 2025 23:44:33 +0000
ROA not before: Tue 11 Feb 2025 23:44:33 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 36040
IP address blocks: 2001:b032:c0ff:2::/64 maxlen: 64
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5463 (0x1557)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:33 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5DF5DA60FCD635FDE06C24830DEED859A1346CFD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:01:9e:0a:f7:50:22:77:56:fd:d5:92:e7:b7:
71:7c:ad:62:a3:38:94:aa:29:f6:ea:ff:a7:28:c7:
39:77:49:bd:07:15:a0:01:d3:7a:0e:2a:52:63:2a:
8e:87:1a:72:11:94:ac:f2:d4:89:3d:b6:d9:e2:c6:
ec:ea:9d:b4:3a:a9:b4:c0:b7:9b:8b:70:47:39:09:
1d:13:08:69:11:8e:03:54:c6:d9:92:7b:3b:78:fb:
1c:4a:04:78:99:e7:ef:65:73:bb:56:f9:54:b2:b3:
3c:fa:6d:b1:c8:e4:87:c2:78:cd:05:0d:9d:56:5e:
26:51:3b:ba:89:1d:9a:16:10:5c:8f:76:47:2d:f3:
5b:ab:8c:cf:56:09:e1:9e:eb:b5:8c:c3:cf:e9:06:
05:d3:13:99:b6:e0:4d:05:84:55:c9:83:cf:08:da:
80:4c:38:a1:06:3d:16:f3:4d:ef:d8:ea:d8:d0:9a:
9b:dd:67:97:39:51:bf:d2:73:70:7b:0a:e0:dc:21:
2b:bf:a6:33:8f:97:d4:b2:ff:5f:a9:5c:13:51:d1:
56:5e:7a:e7:b3:73:c1:d7:c3:25:a1:81:ea:a2:d9:
e6:ce:b5:94:ac:e7:25:6b:13:6d:4e:ca:a7:7d:a6:
a3:71:20:a8:cc:19:6a:2a:e9:88:b0:2e:2f:da:8f:
82:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:F5:DA:60:FC:D6:35:FD:E0:6C:24:83:0D:EE:D8:59:A1:34:6C:FD
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/XfXaYPzWNf3gbCSDDe7YWaE0bP0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b032:c0ff:2::/64
Signature Algorithm: sha256WithRSAEncryption
2e:0e:86:b1:bb:c3:fa:31:36:e0:31:c5:3e:35:a4:ea:31:4b:
1d:99:46:4d:49:58:99:53:49:b1:83:2f:6b:c2:c2:ef:cc:76:
14:8a:97:bd:26:a4:4f:d4:55:43:d3:85:c1:cc:72:9b:5d:e9:
a1:52:dc:49:a6:7f:e2:20:4a:bc:9c:39:93:49:61:c0:8a:da:
7d:7f:99:5a:b5:d5:3e:4c:fa:96:aa:ca:97:e1:ca:c9:91:15:
19:52:ca:3b:f8:ea:86:b8:ec:52:3a:85:14:82:41:f1:aa:52:
a8:62:b9:82:94:b0:c3:24:c6:85:86:74:8c:68:57:97:8a:e4:
ba:86:15:51:e9:af:98:96:83:38:b0:76:91:ff:42:69:bb:11:
c4:f8:a2:f3:ae:8c:2f:ed:5f:11:ee:1a:c5:b7:71:21:dd:79:
09:85:32:64:b7:8f:b5:56:63:d9:0b:b1:32:6b:7d:dc:b0:b2:
b8:3a:28:f7:f7:ca:3c:51:f8:7e:73:da:38:6c:a5:f5:c9:63:
74:04:ab:9f:2b:1c:13:ee:20:ab:24:01:5d:ef:7f:37:36:e9:
0a:45:7a:82:6f:8a:55:d8:b7:66:29:25:6d:dc:d1:43:b8:84:
83:5d:b3:7c:04:a8:7c:7d:b3:9f:11:55:79:7c:7f:9a:16:eb:
6c:15:8f:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 25 22:46:22 2025 by rpki-client