Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/aOyDYDk920m5CQgVu58ntQQvl-Y.roa
File: aOyDYDk920m5CQgVu58ntQQvl-Y.roa (raw, json)
Hash identifier: LqMs25jkzR1lhiR3V3aTQEHccVWiR+yqk67iPkDMYIg=
Subject key identifier: 68:EC:83:60:39:3D:DB:49:B9:09:08:15:BB:9F:27:B5:04:2F:97:E6
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 150F
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/aOyDYDk920m5CQgVu58ntQQvl-Y.roa
Signing time: Tue 11 Feb 2025 23:44:17 +0000
ROA not before: Tue 11 Feb 2025 23:44:17 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 210.62.248.0/21 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5391 (0x150f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:17 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=68EC8360393DDB49B9090815BB9F27B5042F97E6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:bd:fc:e1:f9:94:f0:60:a7:4a:c0:e3:88:ef:
3e:e5:ba:a1:5e:2d:be:57:4f:ba:8c:3c:2f:a9:08:
c9:ae:aa:8f:23:ca:e2:de:82:66:e8:a6:c5:6d:69:
14:c7:5e:7d:2d:35:3e:7f:23:ea:70:7e:12:74:b1:
eb:ba:ff:b3:0f:20:42:8f:8f:da:ca:3d:f8:1c:3a:
a1:51:7f:ac:6a:f7:11:49:67:dc:3a:3e:53:b9:bf:
0f:88:76:f3:c4:a3:12:d7:d5:ea:17:b3:de:31:a3:
19:fd:62:2f:77:16:00:1a:a4:b3:d1:86:b9:72:08:
0b:15:cb:3f:55:3d:0d:26:93:18:aa:c8:18:2f:76:
38:e9:eb:32:c7:5e:4b:27:c5:2c:a0:2e:73:0a:9b:
d5:7d:29:49:ff:61:ee:25:23:8c:35:69:2f:c2:51:
9e:0a:7d:81:59:5d:37:9a:4a:c8:9f:cb:4b:af:23:
09:91:e2:45:22:30:01:f5:a7:d3:40:65:da:93:90:
a8:3e:5a:c8:a9:8e:13:25:b8:74:4b:4a:d3:92:77:
83:a9:cb:55:69:d4:7e:fd:1f:25:77:6a:ac:71:a9:
a8:0d:21:f7:a2:0f:d6:f1:c7:97:36:e7:5d:d9:52:
0b:cb:23:ee:0f:fc:98:11:57:a1:45:f0:13:ec:40:
0f:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:EC:83:60:39:3D:DB:49:B9:09:08:15:BB:9F:27:B5:04:2F:97:E6
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/aOyDYDk920m5CQgVu58ntQQvl-Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.62.248.0/21
Signature Algorithm: sha256WithRSAEncryption
86:9f:b8:8d:9f:84:1e:9d:2a:62:1c:05:52:61:d5:74:5c:7c:
7f:e5:76:d3:d1:38:ad:25:d1:1d:a8:c2:85:34:cf:88:76:b1:
1f:a7:c0:33:ce:c5:dc:6b:e3:34:c3:53:d3:45:e3:a1:b3:ed:
2c:88:0e:c6:36:4b:cb:b6:de:a8:84:c7:70:d3:4b:44:4b:23:
cb:a8:41:00:bb:eb:47:e2:e7:f9:99:05:0e:de:ca:78:c2:05:
6e:cf:b1:79:ab:3b:46:25:2d:32:2f:1d:5c:86:ae:a5:3f:a3:
d2:2e:b5:bf:52:bc:db:0d:4d:8c:e1:fe:68:47:eb:5c:62:1a:
ca:75:35:dd:f9:7d:98:19:d8:58:0a:3d:fa:3c:d3:a7:2f:da:
8f:bd:b7:3d:97:48:6c:c5:2f:51:a3:8d:4c:fe:e7:ad:20:14:
80:f3:67:a3:ec:c5:8e:00:0b:52:c0:6a:2b:bf:c6:12:87:f2:
f6:00:dd:63:64:0b:4d:76:79:b7:77:f1:e7:be:8d:79:4f:37:
9c:36:65:1d:84:55:f2:aa:27:b0:4b:f2:1d:5f:c2:a5:23:34:
43:8a:71:5e:7d:e1:3c:bc:85:dc:80:45:04:90:87:7e:08:3c:
20:4f:4b:80:e3:76:fa:18:e7:db:b9:5e:ba:37:8e:04:a6:d5:
27:75:d5:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 25 23:03:07 2025 by rpki-client