Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/j75MNwKH3UbwFh4rMNiFdpkNYP8.roa
File: j75MNwKH3UbwFh4rMNiFdpkNYP8.roa (raw, json)
Hash identifier: s0WjE4afaQa71agruHOckkoLLRLDBNOv4TSlMB/J94Q=
Subject key identifier: 8F:BE:4C:37:02:87:DD:46:F0:16:1E:2B:30:D8:85:76:99:0D:60:FF
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 153C
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/j75MNwKH3UbwFh4rMNiFdpkNYP8.roa
Signing time: Tue 11 Feb 2025 23:44:27 +0000
ROA not before: Tue 11 Feb 2025 23:44:27 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 10126
IP address blocks: 220.128.56.0/21 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5436 (0x153c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:27 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=8FBE4C370287DD46F0161E2B30D88576990D60FF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:95:88:1d:56:0e:1b:13:17:a2:73:dd:3f:7f:
95:8f:be:3f:16:d6:c8:44:e1:e2:08:4c:1f:23:18:
7c:5c:16:08:bb:b4:f0:32:c3:f7:b7:17:b5:ad:81:
f9:88:14:1e:6f:31:21:8d:5c:3e:e7:81:23:f5:09:
f6:e0:48:60:76:78:55:1b:74:61:06:3f:c3:dc:74:
dd:3c:ff:29:53:b9:75:cf:1f:4d:f4:dd:62:70:f0:
a9:ab:62:16:80:2e:2d:3d:75:d3:a4:52:a6:45:7b:
23:9f:88:1b:bd:33:bd:85:34:2a:cd:6a:83:86:a8:
22:cc:75:3c:4b:95:42:f7:b4:60:3e:c3:4b:b0:69:
1f:65:fa:fc:44:d0:f8:7d:2a:7e:fd:9a:6b:52:29:
26:9f:74:8f:08:26:64:69:e4:d7:bb:f8:0a:db:a7:
2f:5e:0b:7a:c4:49:b1:cb:da:d0:ea:a6:7f:36:d0:
91:13:4b:81:7f:a2:9c:31:8d:83:67:bd:00:7c:3a:
88:2e:ae:36:7e:a3:40:45:98:16:f3:7c:ef:74:c9:
34:d2:1e:93:2c:7e:a0:d4:a3:95:a7:4c:67:3f:0a:
19:0e:05:b8:c7:22:63:b3:de:a2:3f:ff:d8:77:62:
f3:5b:8d:d2:20:cb:f0:21:21:b3:bd:82:cf:93:74:
74:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:BE:4C:37:02:87:DD:46:F0:16:1E:2B:30:D8:85:76:99:0D:60:FF
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/j75MNwKH3UbwFh4rMNiFdpkNYP8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.56.0/21
Signature Algorithm: sha256WithRSAEncryption
07:9e:ab:00:d6:56:46:5b:ca:85:be:86:e7:ea:10:fe:15:f3:
f1:84:cc:d4:46:b4:cc:9c:c2:c6:6d:80:e7:56:b5:85:e2:b5:
a3:a9:04:17:bd:e0:41:56:f2:3a:58:92:db:16:e5:6a:03:61:
11:4b:57:cf:d9:1b:ef:3e:b3:c2:69:8b:c0:e9:e7:fa:90:79:
94:d3:67:60:c7:1a:00:99:1f:f8:a3:6f:7d:f7:d1:5c:70:98:
eb:12:38:3b:24:95:92:27:f4:a1:56:6a:ef:00:56:31:08:5e:
76:53:59:22:db:06:73:52:8f:4b:98:ce:88:b2:05:82:86:19:
3b:17:1d:2a:b9:67:64:8e:2a:4b:c9:64:d5:cc:d6:2e:25:94:
26:1b:5b:16:09:06:ca:e0:9d:fd:c0:ec:cb:49:35:8f:b8:6d:
95:65:2a:97:66:fe:2b:0c:c5:19:34:05:f1:92:ee:5d:12:62:
bf:39:3b:c5:98:20:dc:8f:21:84:e1:56:b7:29:7f:f7:f8:3e:
a7:25:6c:9b:e8:b9:15:62:80:a5:42:f8:97:64:74:38:ba:20:
5e:0f:a3:e7:99:5f:e6:0a:9b:32:42:e9:05:ff:10:2b:70:30:
51:4b:ea:5d:1d:d7:6c:6c:bf:2b:3d:d9:8b:b1:37:11:20:00:
f6:9d:df:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 12:36:31 2025 by rpki-client