Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/35b8VqiT8kYjdL2ukX-9ohpwhXQ.roa
File: 35b8VqiT8kYjdL2ukX-9ohpwhXQ.roa (raw, json)
Hash identifier: uopDOQ2V6qr+JDjvEYceNe2+wgW/vdIxHHC/4uu48XM=
Subject key identifier: DF:96:FC:56:A8:93:F2:46:23:74:BD:AE:91:7F:BD:A2:1A:70:85:74
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1537
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/35b8VqiT8kYjdL2ukX-9ohpwhXQ.roa
Signing time: Tue 11 Feb 2025 23:44:25 +0000
ROA not before: Tue 11 Feb 2025 23:44:25 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 142005
IP address blocks: 210.242.118.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5431 (0x1537)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:25 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=DF96FC56A893F2462374BDAE917FBDA21A708574
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:a1:78:94:1e:6a:2e:f3:4b:99:06:8a:58:e6:
6c:0f:6e:cb:d2:37:e4:d9:74:34:90:60:bf:f2:41:
b9:82:a3:16:2d:ad:6b:e5:f8:8b:9c:d9:8a:13:39:
2b:77:a4:54:96:16:07:10:26:c8:9e:e9:eb:5b:d8:
40:c8:16:be:f4:ee:f1:8b:63:59:a4:a4:99:85:ca:
dd:5c:7e:ac:4c:e7:aa:9a:d0:da:b2:5d:a0:23:7e:
86:32:59:25:e2:1d:f7:ea:cf:fd:5c:01:04:10:92:
21:45:cd:4c:a6:1c:af:96:31:48:ae:a0:06:70:e0:
8b:7a:b4:3b:33:ce:fd:15:44:54:10:33:fc:16:ef:
e8:1d:59:f0:b8:b2:a7:45:05:2c:f4:cf:c2:30:1f:
c3:ee:98:b9:6c:43:fc:48:4c:ec:20:99:91:8f:e3:
7a:72:f4:37:b0:56:28:ea:17:a8:2c:2c:1c:bc:1a:
69:13:4f:fd:b3:1c:ec:af:9b:99:76:80:ad:5c:3a:
cb:d5:27:a1:8b:5d:02:1a:62:ed:53:c3:93:ea:2a:
2b:4e:ec:af:bd:33:00:a2:ae:fb:24:b2:30:72:23:
fc:f1:c4:17:17:13:c0:27:d7:24:ef:78:a7:05:4c:
9d:bc:c1:2a:26:0d:1f:0a:e2:e9:c9:b2:82:02:3e:
ed:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:96:FC:56:A8:93:F2:46:23:74:BD:AE:91:7F:BD:A2:1A:70:85:74
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/35b8VqiT8kYjdL2ukX-9ohpwhXQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.242.118.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:06:83:4c:64:33:ba:b9:53:06:4b:09:71:f7:14:cc:20:5e:
72:fe:c7:6e:eb:0b:94:ba:42:c2:d6:9c:a4:f9:63:b6:aa:08:
65:23:b5:8f:22:30:00:bd:4d:82:5f:8c:2f:ce:ef:f2:dd:c4:
65:8b:93:53:68:c7:0e:a4:d0:ea:ee:70:ee:ad:6f:ec:2c:ad:
e7:15:1f:fd:37:55:63:57:a1:dc:6c:60:ca:29:9e:12:bb:3c:
0e:02:8f:7f:2e:76:e4:aa:9e:ee:61:2c:83:6c:41:08:1c:c5:
7d:8e:10:a7:b5:b6:42:18:e6:f3:6c:50:44:1e:b9:bd:47:47:
2a:05:9b:92:72:d1:c5:0c:f4:f8:b8:75:c0:91:0f:3d:15:d8:
91:9f:01:05:9e:86:f0:56:35:16:f3:9f:07:be:a3:d4:3f:50:
b6:69:16:d5:8d:b9:a4:0f:18:d0:88:86:67:85:cb:1e:26:80:
a2:40:34:58:ce:a1:ca:7e:22:56:e3:89:bb:83:c5:20:52:51:
31:60:1b:83:f8:b6:aa:32:4b:a4:48:b2:7f:db:fe:68:7b:aa:
e0:b6:46:8d:84:eb:62:92:30:6a:78:a5:f9:cb:15:df:39:36:
0e:f3:c2:b2:5c:52:04:42:49:a7:09:21:57:3f:8e:22:e5:7f:
1d:dc:28:bf
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICFTcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTEy
MzQ0MjVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKERGOTZGQzU2QTg5M0Yy
NDYyMzc0QkRBRTkxN0ZCREEyMUE3MDg1NzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCuoXiUHmou80uZBopY5mwPbsvSN+TZdDSQYL/yQbmCoxYtrWvl
+Iuc2YoTOSt3pFSWFgcQJsie6etb2EDIFr707vGLY1mkpJmFyt1cfqxM56qa0Nqy
XaAjfoYyWSXiHffqz/1cAQQQkiFFzUymHK+WMUiuoAZw4It6tDszzv0VRFQQM/wW
7+gdWfC4sqdFBSz0z8IwH8PumLlsQ/xITOwgmZGP43py9DewVijqF6gsLBy8GmkT
T/2zHOyvm5l2gK1cOsvVJ6GLXQIaYu1Tw5PqKitO7K+9MwCirvsksjByI/zxxBcX
E8An1yTveKcFTJ28wSomDR8K4unJsoICPu0RAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQU35b8VqiT8kYjdL2ukX+9ohpwhXQwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC8zNWI4VnFpVDhrWWpkTDJ1a1gt
OW9ocHdoWFEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0vJ2
MA0GCSqGSIb3DQEBCwUAA4IBAQBcBoNMZDO6uVMGSwlx9xTMIF5y/sdu6wuUukLC
1pyk+WO2qghlI7WPIjAAvU2CX4wvzu/y3cRli5NTaMcOpNDq7nDurW/sLK3nFR/9
N1VjV6HcbGDKKZ4SuzwOAo9/Lnbkqp7uYSyDbEEIHMV9jhCntbZCGObzbFBEHrm9
R0cqBZuSctHFDPT4uHXAkQ89FdiRnwEFnobwVjUW858HvqPUP1C2aRbVjbmkDxjQ
iIZnhcseJoCiQDRYzqHKfiJW44m7g8UgUlExYBuD+LaqMkukSLJ/2/5oe6rgtkaN
hOtikjBqeKX5yxXfOTYO88KyXFIEQkmnCSFXP44i5X8d3Ci/
-----END CERTIFICATE-----
Generated at Wed Apr 16 12:32:24 2025 by rpki-client