Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/eOQHShxBfb-uJA82KyPoZhuQKnY.roa
File: eOQHShxBfb-uJA82KyPoZhuQKnY.roa (raw, json)
Hash identifier: S4Owjuyw8g50YJQXRCk84n4LhYpEcbkbPp/4jI3qm1I=
Subject key identifier: 78:E4:07:4A:1C:41:7D:BF:AE:24:0F:36:2B:23:E8:66:1B:90:2A:76
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1469
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/eOQHShxBfb-uJA82KyPoZhuQKnY.roa
Signing time: Mon 10 Feb 2025 14:34:53 +0000
ROA not before: Mon 10 Feb 2025 14:34:53 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131621
IP address blocks: 2001:b032:103::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 11 Feb 2025 23:44:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5225 (0x1469)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:34:53 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=78E4074A1C417DBFAE240F362B23E8661B902A76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:84:77:27:91:a1:f5:a8:f4:b6:cb:1b:45:82:
b0:c8:da:5d:32:f3:ad:63:c9:db:2d:f4:2e:56:67:
e4:d1:0f:cd:bb:2a:94:ab:22:d7:48:26:08:be:29:
01:e6:fc:bc:b5:5c:09:29:98:4a:bd:b3:47:21:83:
6c:38:a1:99:a2:42:4c:b5:40:2e:22:10:5b:0b:27:
f6:c8:27:2b:08:8c:47:ce:e1:5c:59:03:15:20:ef:
6f:a3:cc:0a:01:bf:37:5f:2f:74:27:1c:8d:fd:e0:
6a:63:a5:92:e8:74:5f:6a:f6:a2:b2:af:74:59:b4:
21:10:a7:e7:ad:f3:e9:e6:2a:69:fe:04:9d:aa:26:
4d:a8:0e:76:05:b9:45:dc:ba:76:f7:9e:16:e2:8e:
93:44:3c:8f:36:45:70:9a:14:32:f5:ea:5d:40:5b:
62:fb:0d:bb:a5:60:9d:d3:50:cf:ca:cd:64:37:fe:
5d:5d:40:9a:31:56:3f:15:bf:53:41:40:f3:39:ba:
67:35:04:b9:ad:bc:33:ed:d0:73:d9:6f:4c:d8:5a:
3a:5d:18:ed:53:a6:ca:67:59:cf:64:4b:b5:ac:69:
67:96:f8:d5:31:a1:7a:60:0a:3e:11:25:08:7a:8c:
bc:81:11:d7:d7:fc:b7:3b:77:f5:ec:4b:4f:29:09:
e2:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:E4:07:4A:1C:41:7D:BF:AE:24:0F:36:2B:23:E8:66:1B:90:2A:76
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/eOQHShxBfb-uJA82KyPoZhuQKnY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b032:103::/48
Signature Algorithm: sha256WithRSAEncryption
a5:35:97:98:b2:50:f7:42:dc:e5:8a:e2:bf:cf:39:d2:c4:4a:
50:45:cd:55:3b:75:74:8d:3c:74:9e:e5:89:a3:e5:09:33:74:
81:66:88:d4:5c:68:0d:89:20:88:bb:e3:e5:ea:f1:2a:ff:53:
de:bf:44:81:c9:0a:ca:53:1e:d2:ff:b6:5b:ad:65:26:c4:cb:
b6:fe:0d:a4:ae:86:3c:c7:ac:96:24:74:5a:76:a9:78:cd:52:
40:98:6d:37:6a:a9:7b:56:a2:f4:51:1e:b3:87:b8:6b:c7:64:
06:65:46:a7:f5:dd:b4:c8:d5:b2:da:ea:fc:00:5b:5d:57:49:
fb:ec:7d:f6:f4:41:31:c2:f8:f1:6c:54:9f:f6:72:92:6b:80:
db:33:63:ba:02:6c:77:0a:6c:24:96:5b:50:6e:36:da:03:1a:
d0:0a:a5:62:bf:66:67:0a:32:29:46:f8:4b:f0:27:76:f3:ef:
c6:81:dd:a1:08:f2:1d:25:7a:f2:26:b0:65:31:0d:78:6f:6d:
9f:55:01:94:5a:da:c3:2e:d2:f6:d6:5b:62:96:01:47:3f:a3:
62:3b:39:3d:70:4a:8c:93:51:84:be:e6:1e:13:3f:3b:30:1d:
f9:8f:04:17:9c:9e:0d:15:72:ba:ce:86:6f:64:ee:b1:58:14:
da:a4:62:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 25 22:26:04 2025 by rpki-client