Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/fCxAzVFEeqDoxcfO1QBARca8TK4.roa
File: fCxAzVFEeqDoxcfO1QBARca8TK4.roa (raw, json)
Hash identifier: 8PJHea3iSj0GShGEcSjzXQACbsClQz7JxMPkP6Tsu7Y=
Subject key identifier: 7C:2C:40:CD:51:44:7A:A0:E8:C5:C7:CE:D5:00:40:45:C6:BC:4C:AE
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1561
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/fCxAzVFEeqDoxcfO1QBARca8TK4.roa
Signing time: Tue 11 Feb 2025 23:44:36 +0000
ROA not before: Tue 11 Feb 2025 23:44:36 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 118.168.0.0/14 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5473 (0x1561)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:36 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=7C2C40CD51447AA0E8C5C7CED5004045C6BC4CAE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:9b:8d:92:18:64:eb:71:bb:ca:40:f5:0c:d3:
94:91:4d:08:c9:43:1e:98:97:a1:8d:18:14:f8:eb:
d6:6e:a1:33:1f:c2:82:a8:ec:e7:61:ed:fa:79:8d:
57:fc:1b:d8:e7:bb:dc:bc:cc:95:d7:74:fc:eb:1a:
da:11:2e:c9:03:36:84:86:7b:c0:01:27:2e:f1:c2:
39:75:fe:5d:6c:b6:ed:08:6f:7e:89:39:39:3f:f0:
9d:00:92:37:ae:eb:1a:08:a7:cd:c4:cf:de:17:d2:
8b:9e:23:b2:10:2d:d4:2d:9d:3c:b5:38:b4:1e:ca:
24:c2:25:23:7e:47:20:ea:02:3e:59:b2:7b:08:cb:
37:6d:da:94:cb:97:88:c9:8f:7c:fc:ce:b6:48:7b:
26:42:58:36:56:4f:0d:47:5e:58:c9:03:07:d7:7d:
6a:a7:f4:79:95:fe:59:24:70:6c:70:d3:b4:2f:f9:
3f:c7:b3:7c:b2:a6:e6:41:86:e2:1b:d9:9a:80:90:
e4:ab:f3:19:fc:c1:9f:3f:5b:a5:a1:c4:d0:a8:8e:
f5:53:35:ec:70:74:16:aa:44:00:60:9b:76:9f:f9:
1e:be:25:c2:2e:e9:a7:e5:c0:9f:16:b0:14:71:90:
ef:19:fe:ee:19:1f:53:38:9c:e7:63:8e:00:cb:cb:
d9:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:2C:40:CD:51:44:7A:A0:E8:C5:C7:CE:D5:00:40:45:C6:BC:4C:AE
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/fCxAzVFEeqDoxcfO1QBARca8TK4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.168.0.0/14
Signature Algorithm: sha256WithRSAEncryption
84:41:69:55:78:2c:07:0e:32:1d:ef:3b:c5:9d:af:ee:94:15:
ef:82:0f:74:e7:15:44:b4:13:c2:64:c6:40:6f:3b:c1:3e:43:
f7:6d:a0:11:f4:23:36:b7:d4:c8:70:b3:56:d6:51:ff:6a:f4:
66:6f:2e:85:8a:b6:88:f9:25:5e:9f:33:e7:8e:1c:e6:59:51:
11:09:b4:2b:b7:62:02:58:82:9d:a3:50:ff:c0:02:d4:47:72:
d8:bd:89:a3:2c:dd:5e:97:0d:05:d9:5c:6c:76:bd:5e:a8:3e:
90:e1:6d:dd:50:55:b5:bd:7a:19:92:62:e7:87:ff:40:81:18:
f0:0f:6c:65:4d:fa:73:2a:48:06:f5:b2:9d:23:65:2c:8d:ae:
d5:e9:f1:b6:f3:70:95:b9:7d:d4:3f:d5:2b:30:5c:c8:1f:c2:
de:07:3f:02:01:db:04:32:2b:98:f8:70:6a:dc:1b:b9:d5:94:
08:7a:94:c2:d0:8b:ee:75:f8:9d:ca:30:ba:91:80:aa:3b:8c:
07:f5:d7:db:9d:e7:44:03:1a:aa:8a:1e:3a:77:fe:15:a5:7b:
fb:34:fd:16:55:9e:c1:a7:2e:6c:97:d0:29:ca:b6:1f:de:22:
33:3a:07:4d:2c:f4:7c:f3:d1:f9:5f:db:20:cc:e1:c8:c0:a3:
5a:54:df:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 11:46:07 2025 by rpki-client