Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/YnlhawFbm8u3XVJh0TgEKczLHYk.roa
File: YnlhawFbm8u3XVJh0TgEKczLHYk.roa (raw, json)
Hash identifier: XofUeEECfqaM5pNezQN+vqrQ1rMIpCOZJPgdZphYkTs=
Subject key identifier: 62:79:61:6B:01:5B:9B:CB:B7:5D:52:61:D1:38:04:29:CC:CB:1D:89
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 158B
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/YnlhawFbm8u3XVJh0TgEKczLHYk.roa
Signing time: Tue 11 Feb 2025 23:44:44 +0000
ROA not before: Tue 11 Feb 2025 23:44:44 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9505
IP address blocks: 175.111.240.0/21 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:23:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5515 (0x158b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:44 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6279616B015B9BCBB75D5261D1380429CCCB1D89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:7e:52:cf:39:57:33:56:b0:82:a4:86:26:0c:
53:0c:4f:92:c8:17:b4:d8:52:e6:c2:80:70:2b:d8:
ef:14:de:be:fa:99:7e:5e:61:94:44:cf:9f:7f:32:
0c:f2:8b:8a:cd:9d:c2:64:2b:d1:7a:de:a1:57:ae:
a5:6d:41:de:2d:19:3d:87:92:1e:66:df:d6:00:a9:
11:12:b4:6b:b0:a1:be:0a:fe:f3:ea:fd:2c:52:aa:
50:f6:38:81:96:71:71:3f:26:8f:7a:f1:44:c1:74:
23:35:1a:33:f4:f0:e1:2f:ba:f4:db:3c:4b:97:1f:
f7:9d:1e:df:72:ac:97:61:6b:4f:75:75:13:8b:b9:
b8:61:56:7b:56:d6:0f:fe:bb:30:09:19:95:34:5c:
3e:c6:14:0a:f3:1c:09:f1:a7:7d:10:b7:df:8c:99:
ff:a2:cc:b9:92:25:12:d4:59:f8:02:43:0e:3a:68:
51:ec:d6:8d:06:ca:be:41:ce:ce:2e:18:4d:56:4b:
5a:47:81:c2:9d:79:86:2b:35:61:da:33:aa:f8:01:
e9:14:69:2e:ca:5f:6c:56:e2:8c:c5:2e:6c:2b:3f:
af:53:00:79:cd:7e:c4:66:dd:5c:15:2c:50:d6:2a:
94:9b:63:ae:1c:be:b9:cc:2f:40:ac:55:46:8c:a4:
ec:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:79:61:6B:01:5B:9B:CB:B7:5D:52:61:D1:38:04:29:CC:CB:1D:89
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/YnlhawFbm8u3XVJh0TgEKczLHYk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.111.240.0/21
Signature Algorithm: sha256WithRSAEncryption
8a:ff:51:6f:39:9c:21:f3:d0:91:eb:d3:74:db:d1:15:e8:83:
42:4d:5b:f9:33:a0:97:95:b9:cf:e7:69:5d:6d:27:0e:68:11:
d1:c3:f7:58:9d:43:c0:ad:a5:54:fe:3e:52:09:87:e1:05:0c:
d9:fa:ba:15:35:3a:c7:d3:6f:fe:90:4d:36:e6:cc:5c:f5:00:
35:ab:77:1a:ad:67:34:60:3c:0f:5c:69:87:da:ee:4e:9f:6a:
67:64:f1:c6:1a:a3:3e:6a:bc:5e:2b:64:12:be:9c:3f:db:9b:
05:6b:f4:ad:73:5b:9b:dc:8b:6d:a4:b9:1e:b2:25:52:1a:3e:
b7:ac:d7:c6:eb:08:13:dd:69:31:3f:75:10:ef:d9:fc:f2:f9:
ce:1b:e9:5e:62:fa:fd:b6:5c:a5:8c:87:02:37:dd:b5:17:c4:
ae:44:aa:0e:a8:77:b2:2d:99:e0:9d:f7:fb:c1:f6:8a:cf:90:
c5:1b:60:36:6b:34:44:f1:5c:35:86:12:5b:56:0f:14:14:07:
f0:04:d7:b3:c1:03:f1:3f:53:df:1b:40:22:d8:5d:b5:56:36:
32:fa:2e:9c:1c:5b:f0:f6:d8:b0:c1:3b:aa:ec:3e:c7:dd:3b:
dc:6a:34:19:65:98:56:63:d9:37:72:6a:51:18:e6:37:96:71:
9a:72:8d:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 12:25:30 2025 by rpki-client