Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/g2suFGDeACxVAvvkK0e8ixghre8.roa
File: g2suFGDeACxVAvvkK0e8ixghre8.roa (raw, json)
Hash identifier: YK+m/lIXYHL0SIf+U6EXGtsImDsJk28YkO1vwQsQ2KU=
Subject key identifier: 83:6B:2E:14:60:DE:00:2C:55:02:FB:E4:2B:47:BC:8B:18:21:AD:EF
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1535
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/g2suFGDeACxVAvvkK0e8ixghre8.roa
Signing time: Tue 11 Feb 2025 23:44:25 +0000
ROA not before: Tue 11 Feb 2025 23:44:25 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 36040
IP address blocks: 202.39.67.128/27 maxlen: 27
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5429 (0x1535)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:25 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=836B2E1460DE002C5502FBE42B47BC8B1821ADEF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:4f:64:d6:27:6a:c5:be:a6:a3:f5:6c:42:d5:
1b:01:86:00:0c:7f:2e:37:26:04:6f:15:93:fd:c9:
a8:df:59:5e:b6:b7:f8:75:be:41:78:a9:59:b1:2c:
ae:18:e7:ae:1f:e3:46:e4:c0:f1:9a:c0:12:24:06:
9b:53:66:d1:4c:4e:bc:cc:74:1b:6d:0f:d2:64:e2:
cf:1d:6f:20:b3:5e:7d:5a:27:7d:f5:ee:f7:08:e5:
71:db:00:6d:66:c9:dc:d9:77:1f:2e:39:2b:be:e8:
ae:0b:73:9a:0d:cd:c6:39:e0:76:2c:ce:76:92:66:
16:59:01:6f:37:c7:e3:b4:b5:67:7e:93:7e:d0:bb:
32:51:55:fc:27:fa:7f:8e:be:c6:2b:b3:27:75:12:
a1:87:fe:d2:2a:74:3a:60:47:09:db:e1:62:27:9a:
7b:b3:23:2f:60:c9:99:a1:6e:c3:02:82:b5:68:58:
74:9e:3b:21:02:f5:9a:73:85:ca:4f:8b:3f:25:fa:
28:25:8a:6a:cf:83:f1:05:23:b5:57:d0:02:98:5a:
d1:16:27:5d:1e:09:ba:35:dc:73:2c:53:ae:d6:19:
27:72:20:ad:b6:b7:c8:a6:d8:0f:4d:91:ce:f8:d5:
43:4b:b7:37:7c:be:f5:f0:d1:e6:4d:dc:03:fb:3a:
c8:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:6B:2E:14:60:DE:00:2C:55:02:FB:E4:2B:47:BC:8B:18:21:AD:EF
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/g2suFGDeACxVAvvkK0e8ixghre8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.39.67.128/27
Signature Algorithm: sha256WithRSAEncryption
0d:c3:b3:84:02:c2:e4:eb:ef:89:35:30:2b:dc:23:18:e4:9a:
8d:20:79:a7:81:e2:20:76:f0:75:94:c8:9b:92:5d:97:4a:2b:
e8:c6:93:25:3d:f1:54:b2:7a:3b:84:c3:a0:e7:3f:33:95:aa:
8d:14:a1:3c:7e:e2:65:0a:c6:fe:f7:e6:38:5a:71:7d:08:f2:
2e:97:39:6d:7e:5a:58:21:0a:dc:c9:bf:dd:7b:f3:50:7e:1c:
97:67:a1:3e:83:af:51:d0:18:1a:0a:35:1a:df:de:1a:59:e0:
22:91:90:f7:f8:93:0b:1c:d4:63:3d:b3:57:a6:0b:71:6c:95:
62:6f:cd:09:53:93:dc:f2:21:13:ee:aa:74:d5:0a:19:71:65:
d6:85:5f:60:ed:36:09:2b:15:e1:bb:00:0d:47:0c:88:40:80:
2f:0f:88:75:ed:2e:83:a7:86:82:e1:15:db:91:0a:a3:f2:0a:
ac:42:35:6c:8c:94:75:86:54:87:7d:a4:1a:19:9b:d5:a7:a3:
ee:c5:95:84:f6:6e:ee:b6:d4:cd:4e:c8:24:00:4d:00:4e:dc:
69:df:dc:1f:53:63:b2:36:5a:b1:00:6d:ae:90:6f:5b:7a:31:
45:1e:35:0f:62:17:4c:89:99:c7:05:74:0c:1f:52:6f:41:31:
86:2e:26:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 12:41:01 2025 by rpki-client