Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/DXK_HV9i6B9rq-JDt5m5wKotTZ8.roa
File: DXK_HV9i6B9rq-JDt5m5wKotTZ8.roa (raw, json)
Hash identifier: 8ZjOqZqcXZgKKwx7wF+z28x6J9+HSrfTbX9zRY6QAbo=
Subject key identifier: 0D:72:BF:1D:5F:62:E8:1F:6B:AB:E2:43:B7:99:B9:C0:AA:2D:4D:9F
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 155A
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/DXK_HV9i6B9rq-JDt5m5wKotTZ8.roa
Signing time: Tue 11 Feb 2025 23:44:34 +0000
ROA not before: Tue 11 Feb 2025 23:44:34 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 125.224.0.0/13 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5466 (0x155a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:34 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=0D72BF1D5F62E81F6BABE243B799B9C0AA2D4D9F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:3c:db:87:6a:c9:c0:0c:49:0d:97:e7:48:57:
44:52:7f:4b:85:0a:c2:84:cd:d0:2b:49:75:7e:2c:
78:dd:10:d7:11:4f:48:70:ad:c4:17:0d:8e:d6:5d:
55:7f:ba:67:31:c4:90:60:76:54:87:8e:77:4f:37:
15:bd:8e:e6:8c:05:47:61:7d:e1:47:f3:9d:b4:69:
b5:b8:fb:f2:1b:8a:fd:ce:0e:06:d5:d5:59:75:f8:
08:92:c9:7e:4e:90:8f:3b:1e:82:83:09:44:3b:d0:
39:65:9a:31:bf:ea:c0:e0:0c:32:d4:24:c2:5f:13:
22:7c:95:e6:c1:f1:0c:59:46:b2:a3:6f:88:96:48:
92:c1:72:78:52:8a:06:03:73:4e:e2:30:7e:50:b3:
01:ea:5a:44:5a:88:43:bd:de:0c:98:1c:3e:d4:02:
ce:5c:c6:a2:ee:aa:a9:55:d4:91:7e:cc:b4:89:88:
63:9c:94:07:e0:4e:73:3f:c6:23:f5:c4:78:c6:cc:
49:b4:a9:bc:3b:92:b8:9b:a9:80:f0:ba:dc:9e:41:
de:bd:36:6f:29:90:be:41:31:6b:c3:36:16:49:06:
10:7a:36:cb:ef:84:d3:8a:61:f5:9c:b3:83:5d:b1:
38:9c:00:a1:30:d7:2c:ca:3e:21:2d:76:70:e7:74:
22:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:72:BF:1D:5F:62:E8:1F:6B:AB:E2:43:B7:99:B9:C0:AA:2D:4D:9F
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/DXK_HV9i6B9rq-JDt5m5wKotTZ8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
125.224.0.0/13
Signature Algorithm: sha256WithRSAEncryption
ad:0b:5f:b2:99:21:7e:37:16:37:56:4a:92:31:be:3f:2f:48:
a6:18:c5:c2:61:8d:fb:91:4b:95:b4:70:07:66:de:5e:4d:55:
e4:b8:55:68:ad:19:76:e7:71:cb:57:69:e0:07:7a:0b:50:71:
ee:df:04:85:08:02:0e:21:13:4e:b1:fd:47:6f:6a:5b:14:5a:
b3:c5:a9:a0:da:88:66:54:20:d6:82:03:0b:27:5b:cf:37:bc:
a8:9a:57:52:47:4c:bd:fb:b1:e4:8e:b6:78:ec:a3:bf:cd:d9:
dc:17:f9:50:28:02:74:3f:c7:61:a1:5a:9c:03:86:bc:ea:04:
bb:50:82:08:82:e6:7d:68:0c:c9:e3:3e:cc:b8:ac:e5:34:0d:
39:02:8d:d9:23:89:21:cf:eb:6d:76:d1:ec:11:8b:41:d1:82:
dc:c1:b1:00:02:fb:35:77:b4:ed:4e:fb:d9:5f:65:e1:e1:fd:
8d:85:66:6e:d7:dc:ee:a7:37:9e:ed:92:98:78:0e:1c:2d:74:
78:83:41:da:35:ab:25:71:a7:ca:cd:48:48:0e:20:d4:03:47:
9e:6b:b9:91:18:6e:95:52:7f:e5:57:35:e3:4f:6e:cc:ba:e9:
cc:f5:4d:c6:62:6a:76:15:30:1e:af:2c:c0:72:cd:78:97:17:
ff:ed:2f:ee
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICFVowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTEy
MzQ0MzRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDBENzJCRjFENUY2MkU4
MUY2QkFCRTI0M0I3OTlCOUMwQUEyRDREOUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDOPNuHasnADEkNl+dIV0RSf0uFCsKEzdArSXV+LHjdENcRT0hw
rcQXDY7WXVV/umcxxJBgdlSHjndPNxW9juaMBUdhfeFH8520abW4+/Ibiv3ODgbV
1Vl1+AiSyX5OkI87HoKDCUQ70DllmjG/6sDgDDLUJMJfEyJ8lebB8QxZRrKjb4iW
SJLBcnhSigYDc07iMH5QswHqWkRaiEO93gyYHD7UAs5cxqLuqqlV1JF+zLSJiGOc
lAfgTnM/xiP1xHjGzEm0qbw7kribqYDwutyeQd69Nm8pkL5BMWvDNhZJBhB6Nsvv
hNOKYfWcs4NdsTicAKEw1yzKPiEtdnDndCJ/AgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUDXK/HV9i6B9rq+JDt5m5wKotTZ8wHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9EWEtfSFY5aTZCOXJxLUpEdDVt
NXdLb3RUWjgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMDfeAw
DQYJKoZIhvcNAQELBQADggEBAK0LX7KZIX43FjdWSpIxvj8vSKYYxcJhjfuRS5W0
cAdm3l5NVeS4VWitGXbncctXaeAHegtQce7fBIUIAg4hE06x/UdvalsUWrPFqaDa
iGZUINaCAwsnW883vKiaV1JHTL37seSOtnjso7/N2dwX+VAoAnQ/x2GhWpwDhrzq
BLtQggiC5n1oDMnjPsy4rOU0DTkCjdkjiSHP62120ewRi0HRgtzBsQAC+zV3tO1O
+9lfZeHh/Y2FZm7X3O6nN57tkph4DhwtdHiDQdo1qyVxp8rNSEgOINQDR55ruZEY
bpVSf+VXNeNPbsy66cz1TcZianYVMB6vLMByzXiXF//tL+4=
-----END CERTIFICATE-----
Generated at Wed Apr 16 17:20:07 2025 by rpki-client