Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/lyplpAWDqfEhDkOYyzLTiCYe8b4.roa
File: lyplpAWDqfEhDkOYyzLTiCYe8b4.roa (raw, json)
Hash identifier: 7YtL1Rj99btrllqKfnWfIKYRztBebalVB0Yv2YkltIQ=
Subject key identifier: 97:2A:65:A4:05:83:A9:F1:21:0E:43:98:CB:32:D3:88:26:1E:F1:BE
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1504
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/lyplpAWDqfEhDkOYyzLTiCYe8b4.roa
Signing time: Tue 11 Feb 2025 23:44:15 +0000
ROA not before: Tue 11 Feb 2025 23:44:15 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 211.22.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5380 (0x1504)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:15 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=972A65A40583A9F1210E4398CB32D388261EF1BE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:ca:83:2e:58:c4:04:65:58:81:d3:2d:90:3f:
5e:3f:e7:09:9d:9d:f9:c0:11:eb:98:f1:c6:e8:c5:
4a:43:0a:f1:45:9b:d9:33:96:14:d6:5f:04:2d:3e:
01:c6:12:2e:2b:75:85:98:40:ee:69:95:0e:a0:f7:
65:39:5f:b5:35:88:ac:f2:90:9c:10:bb:0a:87:26:
04:79:99:4a:56:14:47:b7:09:ba:0f:fa:b7:61:c3:
c7:f3:84:92:8c:cc:04:2a:19:8b:80:0f:6b:23:40:
24:21:99:95:bf:ca:a8:02:24:74:89:33:24:f5:87:
ff:90:2b:95:09:07:70:e0:6b:c3:56:5e:fa:58:fc:
a4:b5:9c:75:40:85:f9:b2:82:95:9b:71:78:f0:dc:
c1:aa:0b:dd:6d:16:03:e0:9c:48:40:ca:73:0d:94:
05:9d:a7:1b:b0:b2:ca:f1:77:43:10:cd:f0:11:e9:
10:5c:51:4d:25:9a:cd:d5:5e:5c:ff:63:60:13:70:
95:66:47:d1:53:43:a4:47:0c:23:ed:60:dc:21:9e:
d5:3f:6f:c1:97:ac:0e:e5:28:93:d7:8f:7b:1b:27:
07:af:e8:46:6a:0a:05:75:a3:b4:5e:ff:eb:4b:1c:
43:94:3c:b2:f3:54:a1:f7:70:38:10:8d:56:85:7a:
fd:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:2A:65:A4:05:83:A9:F1:21:0E:43:98:CB:32:D3:88:26:1E:F1:BE
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/lyplpAWDqfEhDkOYyzLTiCYe8b4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.22.0.0/16
Signature Algorithm: sha256WithRSAEncryption
b0:6f:7f:a4:9d:04:30:fc:95:e4:34:47:26:de:f3:e3:c9:ed:
54:05:21:64:87:6a:ed:68:bf:33:11:fe:bc:db:91:d6:df:b5:
67:76:4f:06:b0:b4:be:e4:49:1a:d6:90:0f:24:5a:67:f6:be:
39:30:6d:f3:1b:70:9d:f6:3b:c0:4b:34:29:4d:17:9b:91:cb:
4f:63:9d:dc:df:cc:fd:9b:24:d9:5b:95:e2:59:05:7d:09:74:
35:bd:62:e0:70:a7:26:cd:35:f8:98:b4:18:53:f4:30:ec:79:
d7:33:ad:27:6d:92:cb:8d:d4:19:84:ce:16:f8:ad:ad:a1:f2:
d9:b8:95:83:28:10:2f:4d:01:43:98:f4:ee:49:32:d9:c9:7f:
c6:e3:7a:f2:65:2e:99:7d:1e:47:49:72:82:27:b4:17:9c:62:
41:a6:b0:a0:5e:52:c9:3a:fc:95:53:b0:3d:07:4a:bd:03:b3:
9d:d8:22:01:10:d6:3e:37:50:45:6c:82:05:df:df:7a:4c:30:
c5:87:45:b3:15:69:25:48:2d:6b:89:21:80:3e:d1:21:f6:4c:
63:7d:e8:65:31:fb:dd:d9:89:0c:ab:92:80:0a:f6:b4:f1:51:
e5:ec:2f:28:fb:7b:5d:97:38:1d:61:5e:c3:bc:26:55:ca:bc:
8c:64:b2:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 12:37:36 2025 by rpki-client