Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/soe8B7RI-_KHzufgz53BNIq4boc.roa
File: soe8B7RI-_KHzufgz53BNIq4boc.roa (raw, json)
Hash identifier: T7fHKRh4M82zf9zLvIX7mo0CoRhRfVbvFS//d+DL/kc=
Subject key identifier: B2:87:BC:07:B4:48:FB:F2:87:CE:E7:E0:CF:9D:C1:34:8A:B8:6E:87
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1539
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/soe8B7RI-_KHzufgz53BNIq4boc.roa
Signing time: Tue 11 Feb 2025 23:44:26 +0000
ROA not before: Tue 11 Feb 2025 23:44:26 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17714
IP address blocks: 220.128.48.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5433 (0x1539)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:26 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=B287BC07B448FBF287CEE7E0CF9DC1348AB86E87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:42:37:77:df:96:92:08:d3:5d:93:c1:39:14:
fe:c3:6e:c3:9a:ff:7e:a9:d9:a1:28:da:af:98:34:
f6:a1:1e:ab:3e:81:ae:a4:6c:d3:d2:b2:a8:7f:c4:
d4:7e:51:2a:b0:d7:8f:59:2a:52:c8:f2:99:0a:b7:
48:06:39:1c:86:73:32:b3:d3:1a:41:3e:4d:f2:7f:
9f:cf:c2:72:4d:89:aa:37:56:b8:dd:ca:0b:36:47:
bc:06:2a:84:1c:31:e0:0c:9a:ea:9f:75:38:51:50:
c6:c4:e0:cd:a0:a6:bb:b9:63:06:a5:28:03:a8:2b:
9e:78:c8:c0:9e:85:71:73:5e:dd:03:05:c0:24:0e:
27:8c:21:f0:c3:83:8c:e7:b7:8c:99:58:2b:13:ad:
1f:9f:6e:7f:a1:ef:e7:c3:af:cb:d4:0f:aa:14:b0:
07:6d:08:5e:74:55:c8:9d:39:96:ff:b9:b1:3e:8f:
12:04:7a:52:81:5e:89:22:34:8a:c0:69:b4:c2:c5:
bd:9a:2d:89:7b:df:bd:46:72:8b:56:e4:3c:20:f5:
f7:b9:fd:3a:df:a2:49:b4:8b:47:48:8e:6a:ee:cf:
ef:37:0e:35:57:52:e1:8a:7a:6e:34:e4:ff:c3:15:
c4:52:24:35:f1:e5:48:75:94:62:e0:ff:15:fd:bf:
5d:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:87:BC:07:B4:48:FB:F2:87:CE:E7:E0:CF:9D:C1:34:8A:B8:6E:87
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/soe8B7RI-_KHzufgz53BNIq4boc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.48.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:6d:22:62:32:96:30:30:9b:54:ff:df:25:09:fb:9d:3e:f4:
15:5a:4f:e3:ca:29:8c:e4:87:f3:59:70:2c:0d:16:08:39:fb:
2c:2b:1f:d3:f5:d4:8a:97:70:07:45:51:db:0a:b5:4e:ca:81:
26:c5:fa:d6:c5:09:5f:6b:d5:9b:08:61:ce:4a:0a:0a:31:1f:
ef:76:55:72:be:6b:04:c3:fc:fb:fe:a2:da:9a:27:93:3e:c4:
60:ff:f5:9a:62:05:61:ae:cd:4e:19:8a:da:d1:c6:ea:10:e1:
12:d9:39:0b:39:d9:4c:12:73:db:44:15:bc:68:b6:43:da:c3:
18:ec:51:3c:56:97:6e:99:f9:a6:c7:9b:6d:97:af:6c:88:44:
a8:2a:47:0b:85:42:e4:e9:06:1f:2d:fd:df:cd:af:8a:de:5a:
f7:64:d2:ba:4b:f5:39:f6:dd:ab:94:b8:a5:1e:0d:76:16:01:
f6:bb:2d:5f:72:5d:d1:ad:7a:74:62:cb:dd:0a:1c:b6:75:6b:
50:21:8c:f7:6d:58:2e:20:10:ee:c0:65:8b:af:02:48:f8:fc:
f9:7f:a9:56:8e:64:26:39:64:40:5b:ca:7e:6b:d2:94:ef:07:
b9:21:5e:f3:fb:6b:59:2d:cf:36:1f:4c:84:b3:8a:f4:33:96:
5b:f9:0c:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 12:04:59 2025 by rpki-client