Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/4FG9rjMgGHrnRaRjWXJ5zpVdTvc.roa
File: 4FG9rjMgGHrnRaRjWXJ5zpVdTvc.roa (raw, json)
Hash identifier: 3byH/a1L615bANwGL7U4Tt/rvmfODC5NxF+T7JKY4aU=
Subject key identifier: E0:51:BD:AE:33:20:18:7A:E7:45:A4:63:59:72:79:CE:95:5D:4E:F7
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1192
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/4FG9rjMgGHrnRaRjWXJ5zpVdTvc.roa
Signing time: Mon 26 Aug 2024 05:17:41 +0000
ROA not before: Mon 26 Aug 2024 05:17:41 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 20940
IP address blocks: 2001:b032:104::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:35:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4498 (0x1192)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 26 05:17:41 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=E051BDAE3320187AE745A463597279CE955D4EF7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:d3:a0:dd:40:5c:eb:1f:36:35:33:1e:6b:fe:
4d:ef:e2:31:2b:2f:10:26:8e:04:7c:47:a7:17:91:
db:99:b5:c9:52:36:c2:ad:65:69:b2:2d:75:eb:72:
70:f5:29:d2:88:6d:8a:dc:c5:bc:55:db:c9:d8:eb:
0e:11:27:84:4a:23:44:fb:56:24:f5:0a:34:11:78:
eb:20:8c:c2:c4:9d:0a:6e:11:4e:6c:8d:03:06:c2:
d6:00:4a:e6:3c:fd:f4:31:59:1e:59:00:19:6e:b1:
39:c1:8e:dd:19:6c:dd:64:4a:ff:b4:dd:cd:c2:ff:
08:91:28:92:c6:71:bf:fc:ec:de:ee:b0:fc:f9:ae:
16:82:43:7a:f7:44:10:3a:31:2b:18:c1:42:81:d2:
2b:6d:83:a8:a5:08:f8:b1:9a:2a:8a:72:6a:76:f7:
3d:2e:eb:c6:d6:fa:51:0e:99:4d:b0:ee:1d:de:db:
82:b4:76:9e:40:46:c1:3b:c8:6d:b0:d8:d5:a1:42:
2f:80:5d:c4:18:d0:7b:db:b2:92:64:7f:24:ca:42:
ee:d4:b2:25:8f:92:d7:fe:5d:ca:17:59:a4:8f:d8:
c4:ee:90:2d:c2:2c:a8:33:11:a7:94:1e:24:af:89:
46:31:47:ee:86:47:e4:5f:ce:ea:65:22:27:b1:e4:
97:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:51:BD:AE:33:20:18:7A:E7:45:A4:63:59:72:79:CE:95:5D:4E:F7
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/4FG9rjMgGHrnRaRjWXJ5zpVdTvc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b032:104::/48
Signature Algorithm: sha256WithRSAEncryption
04:04:db:7d:49:aa:ab:47:41:93:b0:23:2e:55:87:77:ce:41:
5a:ea:d1:d6:05:0a:6c:cb:ca:ec:21:0f:16:62:9e:26:c0:6f:
0e:1e:1a:11:bb:14:85:be:d5:bd:4a:38:00:64:b2:83:84:a9:
db:87:f9:c7:a9:81:e1:28:13:8c:11:78:c8:77:23:03:a6:b0:
89:31:57:1c:5b:7a:ac:7d:a9:1d:f9:ab:20:da:85:77:82:ad:
d8:39:95:5f:47:d5:10:72:d7:d9:14:63:28:f0:fa:11:97:ab:
92:39:0c:a2:4b:2c:f2:4e:29:62:f9:27:86:9b:5e:30:8e:fa:
b4:4d:94:a5:de:9b:f7:33:ec:69:6a:dd:06:56:c6:d5:99:ac:
02:0d:25:9f:bc:08:37:40:1f:b3:77:ea:40:71:02:32:2b:17:
0f:ae:d3:8f:d4:07:a3:08:3f:1a:40:a0:20:82:5d:46:b9:f9:
59:fa:3f:e7:42:8a:d0:8a:e2:9d:ce:0f:e3:25:08:0a:8b:d2:
90:09:16:48:59:ab:de:c5:b7:ee:c7:58:3c:4a:59:08:81:03:
55:b8:c9:07:7a:92:2e:da:84:8f:be:b8:73:dd:5e:66:a5:0d:
79:31:d8:05:13:14:66:2b:73:aa:ff:ba:d7:5f:b3:34:74:da:
ca:79:b7:55
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgICEZIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA4MjYw
NTE3NDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEUwNTFCREFFMzMyMDE4
N0FFNzQ1QTQ2MzU5NzI3OUNFOTU1RDRFRjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC906DdQFzrHzY1Mx5r/k3v4jErLxAmjgR8R6cXkduZtclSNsKt
ZWmyLXXrcnD1KdKIbYrcxbxV28nY6w4RJ4RKI0T7ViT1CjQReOsgjMLEnQpuEU5s
jQMGwtYASuY8/fQxWR5ZABlusTnBjt0ZbN1kSv+03c3C/wiRKJLGcb/87N7usPz5
rhaCQ3r3RBA6MSsYwUKB0ittg6ilCPixmiqKcmp29z0u68bW+lEOmU2w7h3e24K0
dp5ARsE7yG2w2NWhQi+AXcQY0HvbspJkfyTKQu7UsiWPktf+XcoXWaSP2MTukC3C
LKgzEaeUHiSviUYxR+6GR+RfzuplIiex5JcJAgMBAAGjggHvMIIB6zAdBgNVHQ4E
FgQU4FG9rjMgGHrnRaRjWXJ5zpVdTvcwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC80Rkc5cmpNZ0dIcm5SYVJqV1hK
NXpwVmRUdmMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAGw
MgEEMA0GCSqGSIb3DQEBCwUAA4IBAQAEBNt9SaqrR0GTsCMuVYd3zkFa6tHWBQps
y8rsIQ8WYp4mwG8OHhoRuxSFvtW9SjgAZLKDhKnbh/nHqYHhKBOMEXjIdyMDprCJ
MVccW3qsfakd+asg2oV3gq3YOZVfR9UQctfZFGMo8PoRl6uSOQyiSyzyTili+SeG
m14wjvq0TZSl3pv3M+xpat0GVsbVmawCDSWfvAg3QB+zd+pAcQIyKxcPrtOP1Aej
CD8aQKAggl1GuflZ+j/nQorQiuKdzg/jJQgKi9KQCRZIWavexbfux1g8SlkIgQNV
uMkHepIu2oSPvrhz3V5mpQ15MdgFExRmK3Oq/7rXX7M0dNrKebdV
-----END CERTIFICATE-----
Generated at Wed Apr 16 12:37:58 2025 by rpki-client