Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/a4L3m_hNROCek0Xvb7-ICqlNLuM.roa
File: a4L3m_hNROCek0Xvb7-ICqlNLuM.roa (raw, json)
Hash identifier: gdniRR87c0UHzLl5+Ouq5avj0TgVQSGTdW4n8QHFutQ=
Subject key identifier: 6B:82:F7:9B:F8:4D:44:E0:9E:93:45:EF:6F:BF:88:0A:A9:4D:2E:E3
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1570
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/a4L3m_hNROCek0Xvb7-ICqlNLuM.roa
Signing time: Tue 11 Feb 2025 23:44:39 +0000
ROA not before: Tue 11 Feb 2025 23:44:39 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 36040
IP address blocks: 202.39.67.192/27 maxlen: 27
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5488 (0x1570)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:39 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6B82F79BF84D44E09E9345EF6FBF880AA94D2EE3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:66:b7:75:79:f6:e0:b2:16:3e:4f:ed:ed:fa:
ae:53:55:f7:d2:68:ba:9d:a1:be:6e:7c:d5:69:f1:
8a:49:8f:9f:1d:e5:96:31:01:ae:d9:ec:de:1e:e1:
c3:58:dc:28:9f:46:72:b3:bb:69:55:43:cd:26:c2:
97:01:c4:6f:20:83:05:92:57:da:76:0e:84:49:bc:
1f:6c:69:85:c5:69:ad:4c:d0:ee:b6:11:4d:28:0b:
31:b0:ef:88:1e:1c:75:86:57:5b:8f:d7:c2:35:92:
90:04:82:72:0d:2b:b0:f8:e6:20:e6:8f:ee:1f:12:
63:db:95:f8:85:f8:ed:9b:2b:7d:93:c1:44:0a:21:
81:18:d4:2f:6f:1f:6d:d2:3a:2d:e3:62:9e:61:46:
9b:53:9d:fb:44:8d:e5:62:5c:b6:a3:6a:f9:d6:10:
21:1e:05:e2:b7:35:0a:51:8c:7c:eb:43:bf:df:62:
f7:a9:35:19:01:4e:a9:60:5d:3d:97:56:62:dc:72:
9e:a0:08:ee:00:dc:ae:f5:6f:c8:d3:16:34:f1:a2:
ff:ca:b1:04:68:b5:84:24:24:31:0a:f5:23:c2:e7:
ea:14:28:94:06:6d:dd:57:e9:cd:a0:17:70:f0:8c:
0d:84:ae:50:9b:eb:53:8c:70:6c:d9:15:64:ab:91:
eb:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:82:F7:9B:F8:4D:44:E0:9E:93:45:EF:6F:BF:88:0A:A9:4D:2E:E3
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/a4L3m_hNROCek0Xvb7-ICqlNLuM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.39.67.192/27
Signature Algorithm: sha256WithRSAEncryption
b9:90:7d:32:1d:5a:15:65:3a:d9:20:a7:61:52:af:77:78:14:
b3:22:29:17:f6:94:43:0a:21:17:27:a5:52:fc:50:92:91:53:
26:da:6f:d2:06:b4:86:5b:fd:af:7b:8b:90:17:53:b0:af:54:
5b:8d:e8:63:ad:a5:06:8a:72:39:5b:11:4e:4c:15:e6:20:68:
bf:a4:e1:03:3d:88:12:d2:6d:61:ba:a8:bc:58:f7:bd:3e:d3:
b5:c4:15:03:3f:ac:63:d5:31:35:93:45:ed:84:cb:26:3b:a8:
cb:4b:a8:43:ef:ec:13:de:bb:74:ce:08:f2:c4:44:10:49:07:
dc:9e:05:09:6d:16:e5:88:21:88:0a:68:cb:98:58:fe:4d:65:
36:9d:e1:62:0a:fc:ba:95:a0:2d:e5:83:b3:66:42:eb:97:7d:
48:fb:54:b9:14:82:8f:4f:eb:f1:e4:09:14:46:91:dc:2d:db:
3f:4d:c9:fc:52:aa:a6:16:c1:fb:ff:87:dc:b0:d4:28:55:da:
4c:9d:2f:95:d4:50:98:b4:37:eb:da:d2:dc:bb:4f:76:6a:bd:
8d:f5:02:96:6f:66:f3:7e:8c:7d:c2:26:ef:0a:84:51:c8:e3:
19:64:e7:d3:9b:2f:93:f1:50:c8:e0:99:d0:09:a4:d2:63:4f:
ae:7b:f1:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 11:28:26 2025 by rpki-client