Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/tyg1w7q2Af0LB69mm2kQE-sGcTY.roa
File: tyg1w7q2Af0LB69mm2kQE-sGcTY.roa (raw, json)
Hash identifier: tqN+YDkdFZ5QFRtIrbYk2MwcU0VClEt4wUSdBJR2uC8=
Subject key identifier: B7:28:35:C3:BA:B6:01:FD:0B:07:AF:66:9B:69:10:13:EB:06:71:36
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1534
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/tyg1w7q2Af0LB69mm2kQE-sGcTY.roa
Signing time: Tue 11 Feb 2025 23:44:25 +0000
ROA not before: Tue 11 Feb 2025 23:44:25 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17421
IP address blocks: 221.120.64.0/19 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5428 (0x1534)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:25 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=B72835C3BAB601FD0B07AF669B691013EB067136
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:34:22:1e:e5:fe:c0:86:a5:e7:a3:e3:6c:9c:
74:cb:8d:2d:66:3c:76:7f:62:81:c4:9e:7d:c6:05:
d3:09:e8:61:61:94:cd:8f:24:71:66:1a:15:b9:e4:
6a:ef:cd:e4:ec:aa:da:39:52:b7:bd:ec:64:b6:46:
4b:99:47:56:32:0d:2c:2a:1a:db:bd:c5:09:62:59:
b7:24:cf:68:59:64:c2:16:9a:2c:a9:65:49:4a:03:
ab:c8:41:3c:a8:81:d6:51:3a:ba:c0:c6:71:66:14:
20:dd:53:8b:04:1c:6c:4d:24:d9:2a:b4:4e:22:59:
75:77:b3:70:eb:90:a0:ce:39:74:50:fd:40:ad:49:
30:50:78:0a:ff:b0:0b:f4:67:1f:2d:d2:83:f6:71:
5b:a8:3c:59:95:e2:88:32:6b:33:d7:74:27:bf:71:
9e:9e:b7:76:0e:a9:61:0c:bb:4d:05:18:a6:29:e8:
b9:8b:b0:93:19:98:4b:1c:ec:23:6e:f6:e4:20:bd:
78:33:b0:c9:06:02:12:27:b9:a5:05:fc:a9:56:13:
e1:25:d7:e7:e1:09:70:83:06:42:4d:6f:3e:7c:88:
73:37:8f:a8:64:21:a5:75:81:c0:1d:5e:5f:39:d2:
a8:1b:b2:b5:bd:c9:a4:76:ae:79:c9:db:33:db:fd:
e3:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:28:35:C3:BA:B6:01:FD:0B:07:AF:66:9B:69:10:13:EB:06:71:36
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/tyg1w7q2Af0LB69mm2kQE-sGcTY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
221.120.64.0/19
Signature Algorithm: sha256WithRSAEncryption
89:03:b9:86:c7:d2:df:92:d4:e0:78:2f:9e:ca:3e:94:ab:dd:
a7:0c:0a:74:e9:5e:a8:fb:94:0d:4b:34:b7:3f:46:67:80:ac:
fc:42:21:ae:ee:95:51:e5:ad:ae:56:49:95:11:20:d1:95:0c:
d3:d2:06:83:4f:df:94:3c:3d:20:17:4d:45:94:da:10:e4:eb:
22:54:7e:38:aa:0c:93:ca:2b:73:4b:f8:05:86:bb:30:cd:58:
cd:44:79:df:13:9a:7a:74:8f:7b:b6:fc:75:ae:61:29:fd:a3:
d5:c9:ec:10:ef:67:08:7e:0a:05:6a:c8:16:14:be:2b:70:38:
74:0e:c8:1c:0b:d0:83:3a:66:8e:b9:f9:1f:84:df:2d:05:6b:
ac:ae:9c:6e:da:ef:c3:a9:d8:9d:36:0c:cd:10:f5:04:50:f1:
ae:02:32:a0:9f:9e:f1:26:4b:79:c3:7f:86:b1:36:df:98:72:
9a:44:7c:d0:00:c5:aa:10:39:36:71:5b:f3:8c:11:1e:d7:3b:
76:cc:99:63:ee:4d:de:de:fc:46:2b:92:9d:8c:d6:fa:75:e2:
48:b3:57:d2:be:ba:d0:5e:29:2e:13:37:97:e0:36:68:2d:4f:
97:18:bf:24:73:7e:66:ba:05:a5:61:98:48:69:80:a2:1f:bd:
9b:11:0d:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 12:32:54 2025 by rpki-client