Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/tM8Ro3V5qVh5B5t4R-1ReqLg2dU.roa
File: tM8Ro3V5qVh5B5t4R-1ReqLg2dU.roa (raw, json)
Hash identifier: z0L1fqm2z/pgG+jeqRLuaq0rywUgMbWA0OPQyPWFljM=
Subject key identifier: B4:CF:11:A3:75:79:A9:58:79:07:9B:78:47:ED:51:7A:A2:E0:D9:D5
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1549
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/tM8Ro3V5qVh5B5t4R-1ReqLg2dU.roa
Signing time: Tue 11 Feb 2025 23:44:30 +0000
ROA not before: Tue 11 Feb 2025 23:44:30 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 142005
IP address blocks: 210.61.114.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5449 (0x1549)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:30 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=B4CF11A37579A95879079B7847ED517AA2E0D9D5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:6f:17:dd:58:de:79:a0:fa:05:99:3b:6e:10:
59:fa:8f:d3:81:5c:60:76:b8:9c:a8:cf:7c:28:df:
99:0f:74:a8:af:bb:37:84:77:5d:bc:c2:85:4c:97:
38:15:13:4f:d2:d3:10:22:d3:bd:7f:62:e9:f3:e1:
c8:f6:94:ea:fb:b5:46:84:9c:4f:9c:85:14:e3:c9:
aa:98:0a:28:0f:08:0d:76:14:ed:65:4c:e2:00:a0:
11:be:ba:85:3f:9b:05:22:48:ec:98:28:74:9d:ce:
fe:54:f1:7f:97:52:86:80:69:ad:06:31:f0:9d:f2:
a4:21:6d:0c:54:80:00:28:25:f0:21:d9:ce:03:ee:
e5:ba:ee:23:a7:86:15:17:88:46:d9:48:78:e2:1b:
69:c3:4c:4d:da:79:8a:f2:fe:49:8a:15:1a:91:48:
e3:b9:f6:af:bc:e6:4e:1b:d8:c5:bf:02:f3:d2:6a:
bb:a2:40:be:ae:a2:d0:b0:28:6e:93:b9:88:19:62:
09:44:73:a6:e4:0a:73:bf:8d:27:30:2f:7c:5f:ea:
cc:11:e2:b9:17:96:12:c5:7e:c8:d8:79:8f:ea:f0:
e0:76:a4:41:1d:09:70:78:4b:4e:78:48:85:03:0f:
bf:e1:7d:a5:9e:e1:d6:e9:88:28:a8:19:2d:77:c2:
20:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:CF:11:A3:75:79:A9:58:79:07:9B:78:47:ED:51:7A:A2:E0:D9:D5
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/tM8Ro3V5qVh5B5t4R-1ReqLg2dU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.61.114.0/24
Signature Algorithm: sha256WithRSAEncryption
c6:b8:52:1a:99:c9:19:10:b1:10:ca:c9:25:5f:c5:bb:cf:d6:
41:54:0f:54:15:1c:a4:d0:8e:39:07:53:f1:cb:e8:57:84:f4:
fd:21:82:8e:6a:48:29:3f:04:ce:95:47:c3:59:95:4d:88:83:
11:c2:03:d1:f7:9a:0b:57:db:e8:b8:58:c0:2d:71:6a:58:4f:
2f:f5:2e:8b:df:c6:36:d2:ff:a5:68:3a:88:07:db:8d:b4:d3:
c1:23:a6:77:82:1b:a2:d3:78:ac:d7:5a:e0:aa:f5:76:d7:a3:
3e:d3:ae:4b:34:75:26:8d:a7:9b:63:58:8a:c2:e1:a7:53:ce:
7b:fb:c6:f7:70:42:7b:56:c3:38:12:a9:11:48:cc:56:84:78:
62:db:ec:48:70:90:21:e7:3d:09:ee:bc:28:1e:7a:fa:2f:9d:
65:2b:15:36:8f:bd:da:2e:31:a2:5b:54:a2:aa:04:60:e8:11:
b1:41:f6:9f:a5:50:8f:5d:56:cf:bf:a3:7a:89:00:84:e8:af:
62:ed:1e:1a:29:35:fa:fb:7d:e5:e2:d3:45:5f:b7:64:25:40:
44:70:79:1b:cc:1e:76:9b:96:96:aa:46:63:df:97:10:5a:03:
b5:3f:0c:51:ea:26:f6:52:8f:c4:af:a6:6f:ef:0f:25:66:86:
54:90:70:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 11:41:56 2025 by rpki-client