Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/JKE8puI6DgVYP8qVeFZiDsoaK5E.roa
File: JKE8puI6DgVYP8qVeFZiDsoaK5E.roa (raw, json)
Hash identifier: ja8GaCKmbAAh5JjlB8B4K5W2etXB/HGSa5ScloFtbx4=
Subject key identifier: 24:A1:3C:A6:E2:3A:0E:05:58:3F:CA:95:78:56:62:0E:CA:1A:2B:91
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 118C
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/JKE8puI6DgVYP8qVeFZiDsoaK5E.roa
Signing time: Mon 26 Aug 2024 05:17:40 +0000
ROA not before: Mon 26 Aug 2024 05:17:40 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 211.23.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:35:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4492 (0x118c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 26 05:17:40 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=24A13CA6E23A0E05583FCA957856620ECA1A2B91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:aa:0f:9f:2d:96:2c:00:90:9c:34:6c:dd:28:
3f:6b:95:b3:bc:f8:7c:54:91:0f:c6:67:05:59:97:
b2:26:a5:f7:05:3b:8e:8e:04:f6:88:8c:73:73:5a:
8f:50:9e:cf:fe:cd:4e:ec:66:07:29:dd:21:16:86:
81:8b:3c:f8:d4:74:c7:0f:27:3f:ef:ee:d6:c9:b5:
8a:bd:4c:66:38:15:2d:6f:57:20:51:12:77:dc:bd:
24:d9:ef:fd:82:d6:d6:cd:4f:9f:71:c3:4a:ff:dc:
b9:50:e0:32:3e:f9:a9:d7:cf:ff:9b:27:83:56:c5:
99:d1:11:b5:46:f9:8c:df:59:36:3d:4a:2b:ba:fd:
35:05:3d:5e:7a:2d:0b:4b:b0:37:65:cc:46:55:85:
d2:6c:3b:9a:2b:46:df:14:55:05:68:11:48:63:97:
6e:8f:bd:6d:fe:3a:82:1d:c6:99:ef:b0:f6:4b:68:
03:f1:04:d7:d3:15:06:d8:40:2e:6a:58:8c:c1:c0:
b4:a1:16:63:2e:e5:92:10:71:34:d2:f6:64:e1:94:
a4:a6:af:5e:ee:78:fa:e3:a1:07:47:c3:47:54:b4:
81:3a:65:b6:68:06:4f:bb:f0:8a:71:88:4e:62:d2:
7a:7b:fe:eb:0d:18:fd:02:34:e4:11:a9:f9:37:7d:
9d:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:A1:3C:A6:E2:3A:0E:05:58:3F:CA:95:78:56:62:0E:CA:1A:2B:91
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/JKE8puI6DgVYP8qVeFZiDsoaK5E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.23.0.0/16
Signature Algorithm: sha256WithRSAEncryption
00:42:29:7e:6e:fb:ad:10:c4:58:a2:6c:82:e9:7a:c2:cf:a0:
b6:04:f1:19:8e:50:0c:ae:94:5d:94:ef:d6:e1:16:2d:31:21:
ff:76:7a:b3:e6:6c:1c:80:97:0b:05:14:98:57:8b:07:cc:07:
23:f4:5d:cc:13:c5:f6:e7:1f:8c:f1:a6:8e:a2:fd:15:66:fe:
35:1e:fb:25:ce:be:5e:fd:78:ac:91:69:08:f1:99:23:be:28:
10:f4:46:8c:3a:31:b7:9b:ce:11:e3:0c:18:e2:19:2b:41:14:
70:6f:fe:fe:1a:25:a5:00:68:18:2e:cc:4f:ff:ab:9d:52:04:
80:3e:94:9d:c0:58:8c:27:de:25:ab:75:65:06:e0:6e:a9:a9:
ed:e4:27:c7:f2:dc:71:d5:28:d8:08:98:d0:85:71:11:9a:ff:
4b:65:b0:9f:72:15:9a:ba:02:89:25:06:0d:cc:14:5c:89:c2:
53:b0:89:e6:2a:b1:90:0f:66:6e:93:bb:55:95:5c:c2:4b:11:
26:42:78:78:28:21:bf:84:37:8c:89:e6:ea:bf:dd:2f:20:98:
fa:a6:78:65:9c:97:44:f4:aa:d9:76:3c:98:67:3b:e2:7c:f3:
4e:8e:76:b9:ea:a1:00:c3:c6:56:b5:29:4f:9d:3c:ba:5d:b1:
7c:92:59:64
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICEYwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA4MjYw
NTE3NDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI0QTEzQ0E2RTIzQTBF
MDU1ODNGQ0E5NTc4NTY2MjBFQ0ExQTJCOTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDhqg+fLZYsAJCcNGzdKD9rlbO8+HxUkQ/GZwVZl7ImpfcFO46O
BPaIjHNzWo9Qns/+zU7sZgcp3SEWhoGLPPjUdMcPJz/v7tbJtYq9TGY4FS1vVyBR
EnfcvSTZ7/2C1tbNT59xw0r/3LlQ4DI++anXz/+bJ4NWxZnREbVG+YzfWTY9Siu6
/TUFPV56LQtLsDdlzEZVhdJsO5orRt8UVQVoEUhjl26PvW3+OoIdxpnvsPZLaAPx
BNfTFQbYQC5qWIzBwLShFmMu5ZIQcTTS9mThlKSmr17uePrjoQdHw0dUtIE6ZbZo
Bk+78IpxiE5i0np7/usNGP0CNOQRqfk3fZ29AgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUJKE8puI6DgVYP8qVeFZiDsoaK5EwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9KS0U4cHVJNkRnVllQOHFWZUZa
aURzb2FLNUUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMA0xcw
DQYJKoZIhvcNAQELBQADggEBAABCKX5u+60QxFiibILpesLPoLYE8RmOUAyulF2U
79bhFi0xIf92erPmbByAlwsFFJhXiwfMByP0XcwTxfbnH4zxpo6i/RVm/jUe+yXO
vl79eKyRaQjxmSO+KBD0Row6MbebzhHjDBjiGStBFHBv/v4aJaUAaBguzE//q51S
BIA+lJ3AWIwn3iWrdWUG4G6pqe3kJ8fy3HHVKNgImNCFcRGa/0tlsJ9yFZq6Aokl
Bg3MFFyJwlOwieYqsZAPZm6Tu1WVXMJLESZCeHgoIb+EN4yJ5uq/3S8gmPqmeGWc
l0T0qtl2PJhnO+J8806OdrnqoQDDxla1KU+dPLpdsXySWWQ=
-----END CERTIFICATE-----
Generated at Wed Apr 16 12:14:30 2025 by rpki-client