Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/rzwQue9_RH5UL9S1dO0kHZ8h9UE.roa
File: rzwQue9_RH5UL9S1dO0kHZ8h9UE.roa (raw, json)
Hash identifier: pWQtrkTZGyMt9xQdeJ81TlvUnpFd5HmQZUfP3kfrl3I=
Subject key identifier: AF:3C:10:B9:EF:7F:44:7E:54:2F:D4:B5:74:ED:24:1D:9F:21:F5:41
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1527
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/rzwQue9_RH5UL9S1dO0kHZ8h9UE.roa
Signing time: Tue 11 Feb 2025 23:44:22 +0000
ROA not before: Tue 11 Feb 2025 23:44:22 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 7500
IP address blocks: 202.39.32.0/28 maxlen: 28
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5415 (0x1527)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:22 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=AF3C10B9EF7F447E542FD4B574ED241D9F21F541
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:69:39:01:1b:b4:b8:17:fc:53:2f:fd:7a:5e:
e6:a2:95:8d:3c:96:37:ad:db:11:61:44:44:54:dd:
e8:25:12:de:4e:6f:79:b9:ef:bc:f9:2c:cf:03:f0:
ee:f7:d4:c6:d5:f7:c4:9a:d0:2c:33:51:48:82:0d:
7a:26:a9:04:41:af:55:81:23:8b:f2:dd:13:46:fd:
c6:58:0d:70:3b:b4:4b:ce:92:e5:28:6e:eb:0f:dd:
d7:9d:b7:fe:65:37:c5:1d:2b:8c:df:60:a0:35:83:
1f:b3:47:4e:95:20:6a:3b:9c:f6:f9:1a:d0:1e:f2:
90:5b:2c:53:14:33:30:a5:6f:34:fc:a3:1e:57:0b:
1d:50:9c:56:e9:c8:cf:fd:4e:0d:1e:e1:ac:81:ba:
cf:8b:6a:10:16:73:72:ff:89:52:e3:77:7c:b8:23:
af:ac:5b:75:b7:57:41:4d:d1:1b:bf:30:ce:d5:b7:
ae:42:5a:09:00:2c:e4:b6:61:f5:cd:bb:aa:4b:13:
5f:18:b1:52:6d:cc:03:b2:f2:ff:fe:ea:11:ad:ab:
af:25:74:4f:d1:6b:90:06:34:65:ef:e2:87:d9:f0:
7e:91:a2:34:d9:9e:14:86:24:ca:c7:cb:7c:99:f4:
f6:77:5f:49:ea:dd:c2:a4:2b:a9:9b:da:d0:68:5c:
2b:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:3C:10:B9:EF:7F:44:7E:54:2F:D4:B5:74:ED:24:1D:9F:21:F5:41
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/rzwQue9_RH5UL9S1dO0kHZ8h9UE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.39.32.0/28
Signature Algorithm: sha256WithRSAEncryption
af:c7:7e:1b:70:e1:82:c8:1a:2b:19:a8:f2:a9:84:0f:78:ad:
d3:76:9e:17:2d:a4:6b:90:db:c6:7d:71:f3:6f:e2:15:66:d3:
f6:7e:54:3d:35:d7:e6:d0:b9:4b:5b:26:e4:24:d0:1d:22:c6:
64:97:3d:3b:4b:2b:a6:c6:e6:25:51:9c:d7:70:95:b0:d7:ef:
76:1c:63:8d:0c:f9:b0:41:7d:58:12:eb:99:b4:c0:0c:56:23:
c5:a0:bc:f1:6b:14:01:b7:b2:d9:96:3f:cc:75:d3:7e:63:a3:
9f:6b:06:91:65:13:b7:7a:6b:12:84:cc:42:ce:95:a0:5e:62:
c5:27:8d:b4:5f:bd:ed:1b:5a:9a:fc:92:f8:24:8b:b3:5c:a4:
40:97:5d:fb:21:03:13:8d:46:a7:f7:fb:66:39:13:b1:69:2e:
3b:f6:21:33:c3:c2:84:03:f4:03:f6:d7:62:2e:4e:bd:73:93:
9b:69:6e:b5:83:2d:44:2f:d1:06:39:d0:2f:96:9d:2e:d4:ce:
00:d6:de:e8:eb:e8:be:e5:55:ed:6f:df:be:97:59:e8:9f:23:
bd:6d:db:72:54:e0:f5:f9:a9:4b:46:4a:e0:a3:b1:6a:14:51:
26:ba:fc:20:4d:e2:d0:4e:98:78:47:fc:ea:07:aa:7b:21:10:
bb:22:d6:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 11:41:55 2025 by rpki-client