Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/jJZ8vaaaRGp0v2PCDcTFteodr3g.roa
File: jJZ8vaaaRGp0v2PCDcTFteodr3g.roa (raw, json)
Hash identifier: qPJPaIjGNnBQZ9eEjH0QjMvf7pyOPDRjTBFwg5gY+Mo=
Subject key identifier: 8C:96:7C:BD:A6:9A:44:6A:74:BF:63:C2:0D:C4:C5:B5:EA:1D:AF:78
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 153F
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/jJZ8vaaaRGp0v2PCDcTFteodr3g.roa
Signing time: Tue 11 Feb 2025 23:44:28 +0000
ROA not before: Tue 11 Feb 2025 23:44:28 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 142005
IP address blocks: 210.61.107.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5439 (0x153f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:28 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=8C967CBDA69A446A74BF63C20DC4C5B5EA1DAF78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:74:52:5f:f8:a9:c2:05:86:1f:bd:c8:c5:de:
e3:7d:6e:e7:06:fd:a5:e5:af:86:83:6b:d7:4c:78:
ce:8c:b6:2b:9c:b2:4a:e2:e5:84:37:df:ea:8e:13:
be:43:60:3e:81:95:fa:29:f8:33:05:0a:29:d4:58:
24:49:87:c1:0c:90:81:c0:e3:b1:3f:65:8f:fe:2d:
01:6a:65:8c:79:c1:a8:52:47:04:46:ef:79:bb:78:
92:1a:7e:b4:51:98:9a:c1:cb:19:03:23:df:a7:ca:
8e:86:da:0e:d2:1e:d4:8c:84:94:0c:b7:75:b4:c1:
77:a9:1b:3b:f6:f6:d0:d4:eb:b2:66:9a:b5:45:3b:
84:d9:64:ab:26:90:94:20:c1:f0:ad:18:97:2f:6e:
23:fa:17:0f:f6:4a:60:f9:ac:63:a9:a1:e1:21:03:
5a:da:5d:39:39:d4:26:1d:10:dc:91:10:4b:51:fd:
90:80:86:2a:be:55:3e:99:51:4c:02:b1:14:49:24:
48:07:9a:5e:c5:9b:18:86:82:93:9e:b6:39:b1:40:
30:e1:c8:f3:7d:7a:e2:fb:18:4d:14:54:cb:99:be:
1f:5b:75:ef:71:98:b7:3a:eb:6c:fc:50:02:24:06:
7f:10:96:d6:49:17:bd:ae:db:d3:65:83:f4:5e:6d:
20:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:96:7C:BD:A6:9A:44:6A:74:BF:63:C2:0D:C4:C5:B5:EA:1D:AF:78
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/jJZ8vaaaRGp0v2PCDcTFteodr3g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.61.107.0/24
Signature Algorithm: sha256WithRSAEncryption
66:f1:a9:13:30:ba:86:a4:28:87:10:a2:a6:1f:69:a3:ce:12:
16:c8:b8:c6:1c:2d:15:d2:46:09:5e:c1:55:e5:73:52:5f:76:
2e:fd:12:b8:c5:76:79:f9:d8:60:b4:7b:4c:7e:16:07:5c:c3:
e6:e6:42:61:2b:ad:eb:69:a7:73:73:97:c1:9a:34:19:e5:f0:
60:fa:c8:c3:f2:b8:23:3a:3c:8c:e9:95:17:63:8b:55:32:50:
33:62:57:4a:c7:6a:65:9f:b2:a2:17:05:24:cb:4f:bd:05:42:
c4:5f:6c:69:3f:1b:4b:65:e7:d2:7b:2a:e7:98:9d:f6:5a:51:
96:dc:ad:0b:03:ae:5c:a5:49:5c:bf:d2:15:08:73:e3:b7:21:
eb:19:71:c3:dc:7b:ce:55:32:43:73:f2:ed:21:e6:a1:a1:96:
91:1a:23:80:05:bf:1f:d3:ac:5e:30:ce:b9:23:50:04:7e:f5:
16:9c:95:4f:0b:3a:44:d9:6c:ad:a5:b4:9d:9d:c5:ae:fd:e9:
f0:d8:d8:e1:65:0d:c8:88:d9:94:27:a4:2b:db:e4:b7:b1:6d:
2b:f4:9d:77:8f:09:71:1f:91:7b:85:ec:4a:f1:bb:74:2e:f8:
e0:60:0f:4c:04:36:42:4d:3b:6b:11:ba:55:66:2c:81:69:25:
0e:27:20:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 11:25:58 2025 by rpki-client