Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/0GS1JVCQ1KXpmBPvz-q0YfzdEwY.roa
File: 0GS1JVCQ1KXpmBPvz-q0YfzdEwY.roa (raw, json)
Hash identifier: cfKtuD2g3tWNQT9+nQCBIs7LSGdc0+lcFxUY72WwJYw=
Subject key identifier: D0:64:B5:25:50:90:D4:A5:E9:98:13:EF:CF:EA:B4:61:FC:DD:13:06
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 151A
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/0GS1JVCQ1KXpmBPvz-q0YfzdEwY.roa
Signing time: Tue 11 Feb 2025 23:44:19 +0000
ROA not before: Tue 11 Feb 2025 23:44:20 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 198949
IP address blocks: 203.74.176.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5402 (0x151a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:20 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=D064B5255090D4A5E99813EFCFEAB461FCDD1306
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:79:64:02:ff:57:5c:8a:8e:6b:bd:ac:72:de:
d3:61:7e:23:00:34:79:c9:f6:fa:07:9d:00:dd:14:
2b:cc:e0:d2:ce:54:90:95:e9:65:1f:70:55:64:82:
23:5d:2e:d7:b0:66:d6:41:91:f3:e2:27:ef:c5:5c:
20:b3:0f:76:b4:ca:ff:2d:94:d2:bd:d3:c1:6d:11:
d7:01:87:80:a2:64:3b:a6:cc:17:c8:9f:8e:aa:65:
da:09:d2:e9:49:31:a5:b3:5f:c5:18:6e:71:f3:1c:
46:ba:bd:5f:cb:91:88:5e:10:84:9c:91:b0:56:dd:
68:b8:a6:b8:92:4c:df:91:4c:c5:7e:43:d8:9f:aa:
dd:50:bf:8b:4e:54:4d:b5:7c:54:df:32:ec:cb:4e:
d3:4b:1c:84:e4:5f:46:f4:6e:67:c7:59:e3:af:d3:
65:84:b9:33:76:53:ef:c8:6a:4f:4d:d5:99:fb:5f:
91:a0:41:f7:74:60:b2:a8:9c:05:7c:2e:00:a6:bd:
53:61:43:3f:00:23:13:36:42:20:9a:4e:8b:fb:08:
20:0c:64:77:a4:37:75:ab:6f:d2:fe:c2:b2:10:84:
78:f9:8b:6c:9b:13:b1:f1:d6:b4:f4:f6:21:9f:81:
ce:c9:b4:d9:44:6e:ac:4c:e4:7f:d0:80:dd:36:3a:
0f:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:64:B5:25:50:90:D4:A5:E9:98:13:EF:CF:EA:B4:61:FC:DD:13:06
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/0GS1JVCQ1KXpmBPvz-q0YfzdEwY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.74.176.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:a3:bb:a1:fa:de:0b:d5:8f:5c:fb:38:f5:6d:a3:97:31:7d:
f6:50:0f:f7:05:96:34:4c:6a:7b:d4:7c:6a:f5:5c:c7:72:d6:
31:6e:21:ad:77:ae:42:4e:5a:a0:68:e7:de:75:87:fe:39:54:
47:6f:c1:90:69:1f:97:ab:17:17:0f:f7:43:c6:b0:be:27:c8:
f3:38:15:c1:5d:d2:f3:7b:b9:b8:65:bc:b4:f9:9e:a4:be:fa:
83:da:50:21:89:d2:c6:93:38:bd:81:9a:5f:14:f5:2f:17:fa:
b7:e7:08:4b:00:f5:e9:1d:6e:f3:47:a1:32:68:e8:20:60:89:
7d:31:0f:84:24:e0:65:99:05:36:1d:68:01:1d:7d:cc:2d:7f:
8b:39:22:bb:3c:96:e3:10:4e:f9:fb:5a:09:66:4e:33:0f:f9:
dd:9b:be:1b:73:14:20:bd:ca:d6:30:23:5b:9a:c2:94:7f:09:
52:75:1f:fa:6f:80:c7:d8:09:66:12:99:e0:31:ff:fb:5b:11:
d7:72:2a:78:e5:a8:87:57:b9:5a:37:cb:69:78:73:9d:99:49:
98:ba:48:9c:fe:5f:6c:d7:82:e4:f3:de:68:20:c8:67:ab:d3:
7a:57:20:fa:dc:b3:c9:ed:27:0a:d8:83:9e:f0:1a:70:a3:eb:
9f:50:04:7a
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICFRowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTEy
MzQ0MjBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQwNjRCNTI1NTA5MEQ0
QTVFOTk4MTNFRkNGRUFCNDYxRkNERDEzMDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDReWQC/1dcio5rvaxy3tNhfiMANHnJ9voHnQDdFCvM4NLOVJCV
6WUfcFVkgiNdLtewZtZBkfPiJ+/FXCCzD3a0yv8tlNK908FtEdcBh4CiZDumzBfI
n46qZdoJ0ulJMaWzX8UYbnHzHEa6vV/LkYheEISckbBW3Wi4priSTN+RTMV+Q9if
qt1Qv4tOVE21fFTfMuzLTtNLHITkX0b0bmfHWeOv02WEuTN2U+/Iak9N1Zn7X5Gg
Qfd0YLKonAV8LgCmvVNhQz8AIxM2QiCaTov7CCAMZHekN3Wrb9L+wrIQhHj5i2yb
E7Hx1rT09iGfgc7JtNlEbqxM5H/QgN02Og/VAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQU0GS1JVCQ1KXpmBPvz+q0YfzdEwYwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC8wR1MxSlZDUTFLWHBtQlB2ei1x
MFlmemRFd1kucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy0qw
MA0GCSqGSIb3DQEBCwUAA4IBAQB8o7uh+t4L1Y9c+zj1baOXMX32UA/3BZY0TGp7
1Hxq9VzHctYxbiGtd65CTlqgaOfedYf+OVRHb8GQaR+XqxcXD/dDxrC+J8jzOBXB
XdLze7m4Zby0+Z6kvvqD2lAhidLGkzi9gZpfFPUvF/q35whLAPXpHW7zR6EyaOgg
YIl9MQ+EJOBlmQU2HWgBHX3MLX+LOSK7PJbjEE75+1oJZk4zD/ndm74bcxQgvcrW
MCNbmsKUfwlSdR/6b4DH2AlmEpngMf/7WxHXcip45aiHV7laN8tpeHOdmUmYukic
/l9s14Lk895oIMhnq9N6VyD63LPJ7ScK2IOe8Bpwo+ufUAR6
-----END CERTIFICATE-----
Generated at Wed Apr 16 12:33:37 2025 by rpki-client