Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/Hrq9SXmITa9oPoNhnjEl3OntRLM.roa
File: Hrq9SXmITa9oPoNhnjEl3OntRLM.roa (raw, json)
Hash identifier: /xkggy5EQ88F4QlQ+fy/bK/8OuEGsy0/9afIQmU4ags=
Subject key identifier: 1E:BA:BD:49:79:88:4D:AF:68:3E:83:61:9E:31:25:DC:E9:ED:44:B3
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1219
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Hrq9SXmITa9oPoNhnjEl3OntRLM.roa
Signing time: Mon 26 Aug 2024 05:18:15 +0000
ROA not before: Mon 26 Aug 2024 05:18:15 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 10126
IP address blocks: 220.128.64.0/20 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:36:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4633 (0x1219)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 26 05:18:15 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=1EBABD4979884DAF683E83619E3125DCE9ED44B3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:df:18:95:c2:0b:4b:fc:7c:42:42:c1:ac:64:
11:59:19:07:a7:9c:2f:87:1f:28:6d:ec:d2:3d:f7:
12:c4:57:8d:2f:7d:43:04:0c:74:b8:bd:a7:05:50:
39:94:d2:05:5e:e5:1f:2a:51:6a:c3:83:56:7e:b1:
b0:69:1c:9e:1b:b8:d0:10:bd:2c:6d:d3:b1:fb:0b:
a8:ef:3f:cf:bc:46:3c:f6:7a:49:e6:50:7a:a2:6f:
d3:d8:ef:45:91:41:b0:5a:49:fe:e1:0b:66:0b:35:
24:b7:05:86:cb:b6:d7:12:f6:32:b1:7f:8a:0b:47:
80:3f:4e:91:b0:4e:b9:50:f3:9d:17:0e:38:04:67:
55:7c:c0:f8:03:52:91:aa:76:56:1f:e3:8a:cd:1c:
20:97:f8:65:d4:da:1d:2c:33:4e:6e:bb:26:2d:35:
c2:12:81:78:22:06:7d:63:64:6f:34:bc:d4:5f:8a:
5f:2a:07:19:7d:b0:f1:30:09:f7:e7:ff:90:73:ed:
6d:e5:bc:ad:f7:ca:c9:f7:c2:4c:bf:8f:b5:0e:58:
00:f6:fa:e6:62:87:ca:f7:4a:68:02:db:b8:f1:66:
27:b4:0d:19:bc:25:2c:ad:40:8c:75:c5:b2:eb:eb:
db:3a:48:e6:46:94:6f:8d:c2:12:67:cf:1d:e9:06:
49:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:BA:BD:49:79:88:4D:AF:68:3E:83:61:9E:31:25:DC:E9:ED:44:B3
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Hrq9SXmITa9oPoNhnjEl3OntRLM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.64.0/20
Signature Algorithm: sha256WithRSAEncryption
ae:f6:16:98:fb:df:39:ce:6c:bc:55:bf:f0:8a:68:5e:34:9d:
78:a5:97:e5:f2:13:5e:61:a4:e1:9f:13:2e:cc:98:3e:c5:b6:
d3:a4:1a:dc:1a:1f:a5:79:10:48:d8:46:c9:ef:9f:18:67:1a:
08:d7:45:dc:a2:6e:f1:93:63:0b:8d:a6:6a:7d:52:72:78:7f:
36:e0:95:5c:d4:60:bd:c5:08:b8:e5:a3:00:0c:1e:64:1b:f5:
16:b7:a5:89:2c:19:3d:c4:6a:d5:4f:9e:1b:91:c9:a1:46:46:
b0:71:ca:b1:40:70:3a:c9:ba:f5:28:fa:c5:15:e1:08:4e:9b:
c8:4e:d3:db:56:79:17:17:e4:72:b9:64:c4:27:da:b0:03:e2:
f8:70:c1:b5:a5:2e:f6:07:1c:60:e9:bd:3d:ee:5b:eb:07:ce:
0b:42:32:25:63:b4:b6:e1:7a:db:4f:86:2f:a8:66:35:24:e6:
53:05:b6:8d:87:14:0b:16:ae:6d:7d:bf:50:b3:86:56:f5:c3:
6d:71:c0:b6:2d:ac:9a:b8:e8:30:16:bf:fa:e4:23:ad:38:d3:
60:4d:30:af:db:1b:83:1c:b2:17:12:9a:7f:dc:ff:93:59:e9:
4d:1e:03:26:1a:00:81:3c:f7:36:83:c5:a5:66:1b:67:a7:67:
66:e4:93:63
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICEhkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA4MjYw
NTE4MTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDFFQkFCRDQ5Nzk4ODRE
QUY2ODNFODM2MTlFMzEyNURDRTlFRDQ0QjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDq3xiVwgtL/HxCQsGsZBFZGQennC+HHyht7NI99xLEV40vfUME
DHS4vacFUDmU0gVe5R8qUWrDg1Z+sbBpHJ4buNAQvSxt07H7C6jvP8+8Rjz2eknm
UHqib9PY70WRQbBaSf7hC2YLNSS3BYbLttcS9jKxf4oLR4A/TpGwTrlQ850XDjgE
Z1V8wPgDUpGqdlYf44rNHCCX+GXU2h0sM05uuyYtNcISgXgiBn1jZG80vNRfil8q
Bxl9sPEwCffn/5Bz7W3lvK33ysn3wky/j7UOWAD2+uZih8r3SmgC27jxZie0DRm8
JSytQIx1xbLr69s6SOZGlG+NwhJnzx3pBkkBAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUHrq9SXmITa9oPoNhnjEl3OntRLMwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9IcnE5U1htSVRhOW9Qb05obmpF
bDNPbnRSTE0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQE3IBA
MA0GCSqGSIb3DQEBCwUAA4IBAQCu9haY+985zmy8Vb/wimheNJ14pZfl8hNeYaTh
nxMuzJg+xbbTpBrcGh+leRBI2EbJ758YZxoI10Xcom7xk2MLjaZqfVJyeH824JVc
1GC9xQi45aMADB5kG/UWt6WJLBk9xGrVT54bkcmhRkawccqxQHA6ybr1KPrFFeEI
TpvITtPbVnkXF+RyuWTEJ9qwA+L4cMG1pS72Bxxg6b097lvrB84LQjIlY7S24Xrb
T4YvqGY1JOZTBbaNhxQLFq5tfb9Qs4ZW9cNtccC2LayauOgwFr/65COtONNgTTCv
2xuDHLIXEpp/3P+TWelNHgMmGgCBPPc2g8WlZhtnp2dm5JNj
-----END CERTIFICATE-----
Generated at Wed Apr 16 12:32:14 2025 by rpki-client