Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/CdQglCzJoFNYcRmyQMhonzUj9Hg.roa
File: CdQglCzJoFNYcRmyQMhonzUj9Hg.roa (raw, json)
Hash identifier: fVI8WUrb2hxRwrlKKYo0qphUqYibBpTITfR3ucP+v0w=
Subject key identifier: 09:D4:20:94:2C:C9:A0:53:58:71:19:B2:40:C8:68:9F:35:23:F4:78
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 143B
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/CdQglCzJoFNYcRmyQMhonzUj9Hg.roa
Signing time: Mon 10 Feb 2025 14:34:44 +0000
ROA not before: Mon 10 Feb 2025 14:34:44 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 142005
IP address blocks: 210.242.186.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Feb 2025 23:44:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5179 (0x143b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:34:44 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=09D420942CC9A053587119B240C8689F3523F478
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:3b:9c:9c:72:69:d3:01:0b:4f:f9:c1:d0:71:
ab:6c:17:31:4e:22:f5:94:d3:51:5d:c1:59:bf:50:
a4:7a:01:ce:0c:ea:54:ef:4a:a7:a0:1d:9f:50:e2:
86:39:fd:29:6a:fe:ea:bf:21:8f:62:a0:ee:f6:10:
9a:f6:00:71:29:c4:37:a9:dc:ec:14:47:00:dd:6e:
19:79:83:4e:06:1e:4c:db:56:55:9f:48:31:5d:6a:
61:9e:bc:a1:ab:76:50:d3:17:7b:bf:40:5d:89:e5:
51:c3:ce:b6:d1:42:de:6c:c4:ba:89:e7:1a:0e:ae:
f5:5a:e4:88:92:8f:bc:ac:33:a6:83:fd:99:90:57:
56:da:58:c6:1f:a6:4b:3c:8b:2c:0f:0b:96:13:53:
a0:16:f8:e9:d4:25:bf:ec:1f:5e:69:67:93:d7:3b:
50:02:8d:98:00:f2:c7:49:b4:d4:43:84:4d:5b:2c:
f7:d9:23:e2:a8:89:cd:69:f6:bf:6e:ee:15:8d:2f:
cf:97:3a:dc:8b:a2:30:32:22:ab:c1:58:b0:0c:48:
25:68:1d:6c:bb:f1:e5:78:e7:cd:2a:28:d4:29:8d:
bf:ec:e9:77:a3:2e:65:d6:9e:df:f8:59:2e:1f:e2:
4a:5d:5b:92:31:d5:5f:dc:7d:1d:ee:66:ba:fa:fc:
a5:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:D4:20:94:2C:C9:A0:53:58:71:19:B2:40:C8:68:9F:35:23:F4:78
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/CdQglCzJoFNYcRmyQMhonzUj9Hg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.242.186.0/24
Signature Algorithm: sha256WithRSAEncryption
50:ce:d7:73:34:88:27:d4:c0:bb:c0:77:06:ae:f7:29:fc:75:
cf:36:eb:31:8d:b1:56:2e:51:0c:13:ba:99:e2:b3:e2:c1:c8:
5a:9f:ef:2d:fa:43:11:01:cf:cd:d1:3e:1a:d0:c3:2f:07:59:
f7:28:0f:6f:d0:9f:5d:67:1e:0c:93:1f:27:c5:6e:c4:0c:29:
a9:71:59:5f:76:b0:23:ac:33:c0:eb:f8:a9:14:bc:c1:f7:e5:
8c:c1:a7:a1:41:85:9d:97:e2:c2:6f:99:1d:d3:55:79:c3:0a:
83:b0:b0:7b:b8:58:88:ed:84:89:8c:fb:ca:d5:28:22:d1:ea:
d1:83:b4:3c:21:d7:4a:98:52:e5:64:95:3a:6e:1d:13:7c:54:
0e:2d:08:9a:22:c6:bf:85:6c:f3:b1:aa:1b:3c:0d:aa:5f:43:
a3:cf:0f:05:35:09:76:7e:77:ae:7a:7a:f4:5c:08:2f:4c:e6:
bb:b9:1a:9c:39:69:eb:55:4a:e9:e1:f3:a7:e8:9e:cb:bb:aa:
e7:a9:f6:6f:78:38:5e:4e:15:ee:61:58:6c:06:ea:83:cc:4f:
eb:b0:fa:ee:36:6d:93:e1:25:f9:66:3d:eb:8b:2d:56:bd:00:
87:7d:84:43:54:6e:6a:1f:59:a3:22:68:87:52:1d:1c:d1:1f:
8f:2c:83:7e
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICFDswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTAx
NDM0NDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDA5RDQyMDk0MkNDOUEw
NTM1ODcxMTlCMjQwQzg2ODlGMzUyM0Y0NzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDCO5yccmnTAQtP+cHQcatsFzFOIvWU01FdwVm/UKR6Ac4M6lTv
SqegHZ9Q4oY5/Slq/uq/IY9ioO72EJr2AHEpxDep3OwURwDdbhl5g04GHkzbVlWf
SDFdamGevKGrdlDTF3u/QF2J5VHDzrbRQt5sxLqJ5xoOrvVa5IiSj7ysM6aD/ZmQ
V1baWMYfpks8iywPC5YTU6AW+OnUJb/sH15pZ5PXO1ACjZgA8sdJtNRDhE1bLPfZ
I+Koic1p9r9u7hWNL8+XOtyLojAyIqvBWLAMSCVoHWy78eV4580qKNQpjb/s6Xej
LmXWnt/4WS4f4kpdW5Ix1V/cfR3uZrr6/KUTAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUCdQglCzJoFNYcRmyQMhonzUj9HgwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9DZFFnbEN6Sm9GTlljUm15UU1o
b256VWo5SGcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0vK6
MA0GCSqGSIb3DQEBCwUAA4IBAQBQztdzNIgn1MC7wHcGrvcp/HXPNusxjbFWLlEM
E7qZ4rPiwchan+8t+kMRAc/N0T4a0MMvB1n3KA9v0J9dZx4Mkx8nxW7EDCmpcVlf
drAjrDPA6/ipFLzB9+WMwaehQYWdl+LCb5kd01V5wwqDsLB7uFiI7YSJjPvK1Sgi
0erRg7Q8IddKmFLlZJU6bh0TfFQOLQiaIsa/hWzzsaobPA2qX0Ojzw8FNQl2fneu
enr0XAgvTOa7uRqcOWnrVUrp4fOn6J7Lu6rnqfZveDheThXuYVhsBuqDzE/rsPru
Nm2T4SX5Zj3riy1WvQCHfYRDVG5qH1mjImiHUh0c0R+PLIN+
-----END CERTIFICATE-----
Generated at Wed Apr 16 12:34:05 2025 by rpki-client