Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/hBEFgkXixihMMWv95FmWtgb78oA.roa
File: hBEFgkXixihMMWv95FmWtgb78oA.roa (raw, json)
Hash identifier: EKdFg44yP96PiHoykGXaaHhAWy2k22r5OxlZ6NufqNE=
Subject key identifier: 84:11:05:82:45:E2:C6:28:4C:31:6B:FD:E4:59:96:B6:06:FB:F2:80
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 14F6
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/hBEFgkXixihMMWv95FmWtgb78oA.roa
Signing time: Tue 11 Feb 2025 23:44:12 +0000
ROA not before: Tue 11 Feb 2025 23:44:12 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17421
IP address blocks: 221.120.0.0/18 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5366 (0x14f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:12 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=8411058245E2C6284C316BFDE45996B606FBF280
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:aa:66:e7:93:94:e5:16:73:2c:2f:2f:44:a0:
92:c3:79:cb:05:08:da:8c:3c:93:dd:77:03:52:5f:
8d:85:0c:cd:61:88:2d:14:95:40:16:51:50:94:1f:
5e:ff:e3:f8:64:3e:fe:2f:94:34:ef:fa:cc:aa:0d:
fa:bf:17:84:c5:cd:d6:b2:e2:96:ea:2b:57:fa:4b:
64:c3:b5:09:50:5d:1f:dd:a3:ff:32:c7:51:a5:a4:
2c:f2:cc:e2:cd:d3:59:a7:9f:f9:fd:25:d5:02:60:
49:85:63:dd:5c:a7:28:18:4b:1b:c8:74:34:a5:d7:
f2:f7:14:c7:f1:f3:f6:0a:d5:78:83:37:a0:4a:50:
16:4a:2b:88:18:4e:51:fe:7e:a8:10:a1:18:b6:f3:
a1:b5:c2:98:13:52:e1:80:81:e6:58:7e:90:6f:8f:
88:50:90:4b:f2:7d:75:db:f4:ae:81:08:fb:f2:fd:
8f:fa:61:04:5c:ab:fc:c6:71:f5:d3:cd:c7:06:0f:
50:bf:18:1a:56:a1:90:86:a9:e7:04:b3:31:ae:81:
32:b8:d5:a7:cc:4d:9f:44:a1:59:43:47:19:01:be:
29:80:1d:49:64:fe:4a:27:00:8f:99:06:c4:62:ae:
44:ab:8a:cb:5f:9b:ca:49:e8:d7:93:a2:5c:da:8e:
4d:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:11:05:82:45:E2:C6:28:4C:31:6B:FD:E4:59:96:B6:06:FB:F2:80
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/hBEFgkXixihMMWv95FmWtgb78oA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
221.120.0.0/18
Signature Algorithm: sha256WithRSAEncryption
0e:bf:72:57:ab:87:4b:39:42:c2:57:c1:48:ca:39:3c:af:96:
b3:91:ac:73:12:6b:c0:8b:2d:f3:2b:67:f0:28:4c:7d:c4:df:
0d:ac:a6:da:41:c0:94:45:3a:4b:56:53:ff:40:37:86:c4:14:
33:59:51:ca:b8:c5:5c:53:ec:6a:10:60:a0:b6:77:42:ec:ea:
48:4a:c9:5f:e6:66:99:6d:e9:df:b6:64:be:8b:7e:1c:41:dd:
44:73:dc:6d:6a:54:e4:bf:e5:2f:a3:7a:22:9d:7d:92:51:de:
23:97:12:c6:ee:6c:a3:da:4f:c3:82:f8:9b:eb:be:b6:be:1d:
70:de:83:e2:42:81:23:3b:e1:98:5e:bd:f0:d1:7b:86:16:0d:
6b:05:44:19:f6:68:bf:91:4b:46:d0:27:c4:0e:19:fb:97:07:
bc:60:7f:2b:64:35:ea:cf:2a:7b:75:bb:09:64:da:ae:b7:8d:
b6:64:97:42:9f:45:51:88:f1:40:35:b6:53:1a:8a:87:e2:27:
b3:b5:be:56:e5:c5:b6:82:5e:bc:a6:9b:8f:12:51:d9:76:0e:
75:0f:d5:2c:42:b6:f6:5a:9c:52:32:85:42:81:ce:1a:94:59:
9c:b0:d4:de:55:3e:40:1a:20:31:2d:34:67:59:a9:9e:15:d2:
5d:94:1d:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 13:02:00 2025 by rpki-client