Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/DyFkaYglb2VgsYub346M-RppAao.roa
File: DyFkaYglb2VgsYub346M-RppAao.roa (raw, json)
Hash identifier: l3hqnPZq8gbHzX2QJhk513JQ7rkBBzkASYDhe5PX6Zs=
Subject key identifier: 0F:21:64:69:88:25:6F:65:60:B1:8B:9B:DF:8E:8C:F9:1A:69:01:AA
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1465
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/DyFkaYglb2VgsYub346M-RppAao.roa
Signing time: Mon 10 Feb 2025 14:34:52 +0000
ROA not before: Mon 10 Feb 2025 14:34:52 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 10126
IP address blocks: 175.111.192.0/18 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Feb 2025 23:44:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5221 (0x1465)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:34:52 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=0F21646988256F6560B18B9BDF8E8CF91A6901AA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:2b:8a:ed:e3:5f:76:2e:38:a7:7a:5f:b4:99:
5b:e0:1a:d1:84:65:77:a1:85:f9:26:56:db:cb:84:
a0:cc:40:de:bb:a3:50:ea:ea:b1:fe:dc:d3:ce:a4:
80:06:db:3d:ab:d2:39:f6:32:d7:e5:85:7c:07:ce:
ca:0a:0d:f4:b2:69:65:92:b5:fa:bd:57:a8:e6:9e:
ad:38:f1:e7:ff:2e:06:f8:86:6c:d8:d2:17:9c:86:
1b:a4:5d:c5:a1:08:30:14:88:81:6b:c8:c1:c0:65:
da:38:cd:56:13:27:2d:e6:dd:0b:0d:e9:95:79:83:
36:50:53:01:f0:9b:3f:91:d7:82:f3:07:95:a7:e2:
0b:3e:48:68:bf:f5:25:e6:39:8a:47:67:e1:44:52:
81:87:8e:af:d1:b0:90:dc:6f:01:88:54:22:89:46:
27:3b:3d:06:e8:e7:cf:50:05:73:18:2d:1b:35:fc:
f9:fc:2e:da:aa:45:d6:05:82:7c:d5:f0:e7:8d:b3:
1d:03:c8:53:1c:eb:ad:c0:81:8b:fc:b3:0e:bc:7e:
8f:8d:79:63:53:15:fb:1c:14:ab:78:17:e5:24:c9:
02:0e:bf:c2:4b:d7:96:8d:7c:0c:1a:be:3b:aa:0f:
9c:23:15:a1:d8:5f:10:eb:cb:66:e5:7f:84:5b:7d:
92:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:21:64:69:88:25:6F:65:60:B1:8B:9B:DF:8E:8C:F9:1A:69:01:AA
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/DyFkaYglb2VgsYub346M-RppAao.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.111.192.0/18
Signature Algorithm: sha256WithRSAEncryption
70:88:08:f1:46:a1:e7:3a:b3:2e:a8:f0:58:90:ae:fa:d2:29:
d9:c7:f3:53:ce:05:78:bc:0a:4c:5d:1d:be:72:17:81:51:00:
09:ad:da:b9:64:af:0e:a3:a5:a1:73:a5:a9:98:36:91:d1:d7:
e2:17:9b:9d:ba:e4:2f:56:69:0e:db:b4:34:16:03:62:11:15:
36:9d:93:17:7b:8d:bc:b2:1f:f2:45:1e:46:69:c6:90:08:f1:
4a:e1:b4:fb:f7:56:6c:80:88:30:24:93:e6:2e:02:81:47:dd:
8b:5c:d3:7e:7d:b6:e8:28:29:17:09:1e:30:b2:d2:44:a6:c6:
ce:d0:73:19:98:9e:35:86:93:07:dc:d0:33:2f:5a:f8:95:2d:
c5:c0:f5:29:5b:9d:0b:bb:66:46:d2:f0:4f:39:05:51:32:bd:
b4:f8:8f:8d:db:a1:85:6a:01:03:89:a0:58:da:d6:90:ad:95:
02:63:a4:ce:6e:f7:d0:2b:3f:4b:24:6f:ef:d2:66:ae:ee:2b:
ff:52:3c:e9:74:54:23:6a:85:63:72:72:3b:28:a8:09:38:f0:
48:03:16:2d:83:72:de:95:fd:bc:be:12:0a:34:f7:c8:7c:45:
e4:da:31:82:60:da:c4:46:09:93:ae:fe:16:e8:e1:0a:25:6f:
60:17:03:16
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICFGUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTAx
NDM0NTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDBGMjE2NDY5ODgyNTZG
NjU2MEIxOEI5QkRGOEU4Q0Y5MUE2OTAxQUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDYK4rt4192Ljinel+0mVvgGtGEZXehhfkmVtvLhKDMQN67o1Dq
6rH+3NPOpIAG2z2r0jn2MtflhXwHzsoKDfSyaWWStfq9V6jmnq048ef/Lgb4hmzY
0hechhukXcWhCDAUiIFryMHAZdo4zVYTJy3m3QsN6ZV5gzZQUwHwmz+R14LzB5Wn
4gs+SGi/9SXmOYpHZ+FEUoGHjq/RsJDcbwGIVCKJRic7PQbo589QBXMYLRs1/Pn8
LtqqRdYFgnzV8OeNsx0DyFMc663AgYv8sw68fo+NeWNTFfscFKt4F+UkyQIOv8JL
15aNfAwavjuqD5wjFaHYXxDry2blf4RbfZJpAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUDyFkaYglb2VgsYub346M+RppAaowHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9EeUZrYVlnbGIyVmdzWXViMzQ2
TS1ScHBBYW8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQGr2/A
MA0GCSqGSIb3DQEBCwUAA4IBAQBwiAjxRqHnOrMuqPBYkK760inZx/NTzgV4vApM
XR2+cheBUQAJrdq5ZK8Oo6Whc6WpmDaR0dfiF5uduuQvVmkO27Q0FgNiERU2nZMX
e428sh/yRR5GacaQCPFK4bT791ZsgIgwJJPmLgKBR92LXNN+fbboKCkXCR4wstJE
psbO0HMZmJ41hpMH3NAzL1r4lS3FwPUpW50Lu2ZG0vBPOQVRMr20+I+N26GFagED
iaBY2taQrZUCY6TObvfQKz9LJG/v0mau7iv/UjzpdFQjaoVjcnI7KKgJOPBIAxYt
g3Lelf28vhIKNPfIfEXk2jGCYNrERgmTrv4W6OEKJW9gFwMW
-----END CERTIFICATE-----
Generated at Wed Apr 16 17:21:55 2025 by rpki-client