Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/hY8p_7QKEyLMBaFskKaL35Euqv0.roa
File: hY8p_7QKEyLMBaFskKaL35Euqv0.roa (raw, json)
Hash identifier: 12QX/ioa9wC5k7Up6QkUdBBPo3y2KLUdY/kOUSDzEO0=
Subject key identifier: 85:8F:29:FF:B4:0A:13:22:CC:05:A1:6C:90:A6:8B:DF:91:2E:AA:FD
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1529
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/hY8p_7QKEyLMBaFskKaL35Euqv0.roa
Signing time: Tue 11 Feb 2025 23:44:23 +0000
ROA not before: Tue 11 Feb 2025 23:44:23 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 10126
IP address blocks: 114.30.32.0/20 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5417 (0x1529)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:23 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=858F29FFB40A1322CC05A16C90A68BDF912EAAFD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:c3:82:b8:d1:46:0b:d5:2b:90:7f:fb:7b:61:
b3:65:0b:4b:91:85:0c:5e:5a:ea:a2:ea:05:e1:14:
31:f6:b6:48:13:82:52:89:3f:1c:b5:f2:ad:f8:03:
2b:f2:60:e5:44:e8:2d:9f:ad:49:4d:5e:4e:2d:e3:
d8:e3:28:8d:84:4b:e9:fd:40:d4:b7:33:e2:37:4f:
b2:07:41:b1:c6:5a:5e:2b:55:17:39:00:7f:e3:c5:
3a:32:e0:16:f0:bb:d7:0d:a9:fc:da:55:ed:9e:4e:
0f:25:a8:31:7e:d7:7c:82:e7:56:6e:fa:8e:19:9a:
40:e4:c9:13:3b:76:7d:6d:37:03:43:04:32:26:e5:
f5:67:93:7b:f8:95:3c:27:cc:35:4a:39:7d:32:08:
a4:7a:8c:f6:3e:3e:97:c3:fd:d9:8a:12:c3:87:7c:
66:5b:7d:60:16:21:ce:ba:32:bc:6b:d8:fa:94:9e:
12:2b:03:da:35:d5:75:81:2f:cb:a3:69:a1:1a:6b:
d7:04:c4:38:f8:97:c6:0d:f8:1f:e0:bb:34:bf:1a:
8e:84:16:d9:c6:ed:33:5c:b3:cb:fe:67:2c:87:4f:
f9:cb:0a:2d:8e:60:8c:fe:d7:d8:48:48:e8:f5:08:
a3:47:3c:04:2d:30:33:2c:af:89:3c:84:da:8c:d0:
83:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:8F:29:FF:B4:0A:13:22:CC:05:A1:6C:90:A6:8B:DF:91:2E:AA:FD
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/hY8p_7QKEyLMBaFskKaL35Euqv0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.30.32.0/20
Signature Algorithm: sha256WithRSAEncryption
66:4e:97:20:06:7d:67:d8:b3:33:09:bd:e2:19:3e:01:6f:c9:
90:4a:09:ed:3f:77:ff:a0:98:ee:63:12:36:98:2f:81:ed:aa:
20:19:91:cb:14:eb:a5:87:56:07:78:07:88:ee:10:77:d1:42:
21:be:e6:cb:86:2f:20:d9:87:eb:89:6b:61:61:c9:83:69:29:
cb:cd:4e:5c:21:c0:89:57:b0:bb:c7:0c:5e:e8:b1:44:5d:78:
15:73:43:9f:3a:61:2e:d9:f5:cf:9b:65:5a:bc:b2:96:12:a9:
3b:f7:a1:b4:b4:23:2a:a3:7b:78:b0:99:26:77:61:8c:97:d6:
f1:8d:a9:69:81:8b:0c:72:30:4c:67:7d:93:81:81:98:a3:f3:
d6:01:02:73:f7:e3:96:01:18:c3:3f:9f:bf:e7:18:f2:98:c5:
f1:7c:83:46:1c:26:c9:10:dc:a6:8b:9d:ac:fc:15:0e:fe:21:
0c:a1:9d:cd:96:0d:2f:e0:0b:d6:73:3d:2d:e9:8d:8f:b8:56:
3f:5c:82:5a:4b:a0:fb:ed:54:4b:c3:ce:06:da:ea:34:03:32:
25:b0:2c:da:ca:19:cb:2f:d8:28:0a:89:8b:3a:44:aa:a8:88:
e8:eb:ac:74:90:7a:69:31:6a:f0:dd:9b:ba:88:7f:0a:56:c5:
a7:dd:66:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 14:25:57 2025 by rpki-client