Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/8GQ2blD3KbkgC1ESI9_ebPHOX94.roa
File: 8GQ2blD3KbkgC1ESI9_ebPHOX94.roa (raw, json)
Hash identifier: vKFyEB/OL/tQTomW2r0A+rVaToeEw2JfbjxVDsddvTo=
Subject key identifier: F0:64:36:6E:50:F7:29:B9:20:0B:51:12:23:DF:DE:6C:F1:CE:5F:DE
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 159D
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/8GQ2blD3KbkgC1ESI9_ebPHOX94.roa
Signing time: Tue 11 Feb 2025 23:44:47 +0000
ROA not before: Tue 11 Feb 2025 23:44:47 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17421
IP address blocks: 2001:b401::/32 maxlen: 64
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:23:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5533 (0x159d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:47 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F064366E50F729B9200B511223DFDE6CF1CE5FDE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:d1:fc:a4:24:ae:4d:81:68:14:28:d4:d0:6c:
b4:09:ac:14:11:b4:bf:72:68:14:da:96:ba:86:eb:
7e:1b:fe:a8:53:dd:07:7c:1f:99:0e:85:5e:b2:5b:
15:0e:99:68:cb:bc:25:fd:ce:85:53:30:36:ff:de:
8e:a8:cc:08:09:e3:fb:86:89:0e:51:94:21:ad:43:
f0:71:3b:7a:69:87:5c:9b:0b:2b:14:99:df:dd:55:
56:44:ee:45:d2:8c:b5:a8:95:97:51:91:08:d4:cb:
27:db:55:aa:71:7d:8c:43:2d:1f:1c:41:16:b0:4b:
c6:d0:dd:d9:83:3c:17:24:8d:8a:8e:f4:a2:29:e4:
da:dd:06:39:2f:01:14:71:18:fc:99:19:94:0c:eb:
c4:cf:ae:d9:89:67:58:87:dd:8c:58:2c:06:ad:ce:
c6:e2:be:f9:38:3f:41:a7:51:8f:eb:a7:f7:d9:07:
53:b3:88:6a:97:08:67:b1:e2:68:1a:a9:fe:42:f5:
e0:31:22:01:cd:0f:98:39:d4:24:86:48:7d:a2:1b:
a4:00:f0:8a:85:e9:3d:68:bd:32:a7:3a:6e:42:16:
f3:8a:8b:e8:ea:b6:80:dd:6c:43:53:f7:47:ec:c6:
f5:54:f5:1a:fa:41:d3:44:7a:1c:9f:39:28:7f:fb:
ae:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:64:36:6E:50:F7:29:B9:20:0B:51:12:23:DF:DE:6C:F1:CE:5F:DE
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/8GQ2blD3KbkgC1ESI9_ebPHOX94.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b401::/32
Signature Algorithm: sha256WithRSAEncryption
29:13:a2:e1:72:ec:44:d6:80:20:81:81:db:ff:ed:a9:08:6a:
cb:4f:9e:af:27:eb:b2:bb:1d:e9:64:84:54:56:d9:95:31:ae:
13:6a:bf:81:b3:c7:da:41:64:44:68:15:8c:0c:8e:34:54:ab:
ab:09:d4:e0:a0:0f:f2:86:ae:6b:59:39:c9:0f:f0:db:19:fa:
39:34:57:8c:64:fe:f7:1b:81:dd:99:ff:32:37:43:c0:15:5d:
9b:40:4d:51:ea:5e:6f:ec:cd:81:56:c9:55:ef:fd:6e:68:8f:
f7:f6:7f:3a:a9:95:3f:02:08:e3:23:dd:7b:f1:f5:58:2d:9a:
6c:eb:af:26:48:ce:82:0e:bf:eb:6e:9d:56:43:58:8b:77:ad:
c9:14:f4:d4:04:1f:62:2c:21:11:1c:4f:ee:f9:a0:f0:45:a2:
8c:f4:73:ce:48:39:cf:96:c1:ae:8d:53:ca:f0:55:b3:1a:56:
de:9f:3e:42:5a:c6:1f:36:b5:45:25:e2:28:85:f3:44:23:49:
84:73:b1:b2:1b:98:31:d0:41:8e:6f:84:a2:39:cc:ff:95:f1:
3d:e5:a3:a6:21:cd:0b:80:b3:6b:0d:84:ee:fd:bb:aa:68:08:
0a:ab:9d:23:37:7a:a4:41:a6:24:b9:b4:d9:4a:d8:f9:79:8a:
3a:cf:6b:7e
-----BEGIN CERTIFICATE-----
MIIE0TCCA7mgAwIBAgICFZ0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTEy
MzQ0NDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEYwNjQzNjZFNTBGNzI5
QjkyMDBCNTExMjIzREZERTZDRjFDRTVGREUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC50fykJK5NgWgUKNTQbLQJrBQRtL9yaBTalrqG634b/qhT3Qd8
H5kOhV6yWxUOmWjLvCX9zoVTMDb/3o6ozAgJ4/uGiQ5RlCGtQ/BxO3pph1ybCysU
md/dVVZE7kXSjLWolZdRkQjUyyfbVapxfYxDLR8cQRawS8bQ3dmDPBckjYqO9KIp
5NrdBjkvARRxGPyZGZQM68TPrtmJZ1iH3YxYLAatzsbivvk4P0GnUY/rp/fZB1Oz
iGqXCGex4mgaqf5C9eAxIgHND5g51CSGSH2iG6QA8IqF6T1ovTKnOm5CFvOKi+jq
toDdbENT90fsxvVU9Rr6QdNEehyfOSh/+64zAgMBAAGjggHtMIIB6TAdBgNVHQ4E
FgQU8GQ2blD3KbkgC1ESI9/ebPHOX94wHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC84R1EyYmxEM0tia2dDMUVTSTlf
ZWJQSE9YOTQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAIAG0
ATANBgkqhkiG9w0BAQsFAAOCAQEAKROi4XLsRNaAIIGB2//tqQhqy0+eryfrsrsd
6WSEVFbZlTGuE2q/gbPH2kFkRGgVjAyONFSrqwnU4KAP8oaua1k5yQ/w2xn6OTRX
jGT+9xuB3Zn/MjdDwBVdm0BNUepeb+zNgVbJVe/9bmiP9/Z/OqmVPwII4yPde/H1
WC2abOuvJkjOgg6/626dVkNYi3etyRT01AQfYiwhERxP7vmg8EWijPRzzkg5z5bB
ro1TyvBVsxpW3p8+QlrGHza1RSXiKIXzRCNJhHOxshuYMdBBjm+EojnM/5XxPeWj
piHNC4Czaw2E7v27qmgICqudIzd6pEGmJLm02UrY+XmKOs9rfg==
-----END CERTIFICATE-----
Generated at Wed Apr 16 12:38:43 2025 by rpki-client