Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/NK2QBOrmkU0P5ubegD0ayinqrlg.roa
File: NK2QBOrmkU0P5ubegD0ayinqrlg.roa (raw, json)
Hash identifier: lpK8AoNyGk03mx+LsWiM/C5NMBhSW30aZltgS/CqfkM=
Subject key identifier: 34:AD:90:04:EA:E6:91:4D:0F:E6:E6:DE:80:3D:1A:CA:29:EA:AE:58
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 151F
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/NK2QBOrmkU0P5ubegD0ayinqrlg.roa
Signing time: Tue 11 Feb 2025 23:44:20 +0000
ROA not before: Tue 11 Feb 2025 23:44:20 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9505
IP address blocks: 175.111.224.0/20 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5407 (0x151f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:20 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=34AD9004EAE6914D0FE6E6DE803D1ACA29EAAE58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:9a:72:fe:4e:e8:a0:6f:de:0b:87:19:d4:00:
c8:61:31:2a:08:6a:c5:8e:22:09:04:96:a4:d9:3a:
3d:10:ea:4a:69:cb:5d:60:5e:3f:53:66:97:ea:61:
45:4a:58:be:9b:18:62:89:e6:95:7a:16:26:30:d2:
b9:7f:cf:24:8b:b2:7e:f1:d7:ee:0b:2c:7e:39:12:
c1:00:2b:e1:f9:17:0b:6a:a5:04:ab:9f:ac:9a:99:
1c:98:9f:0c:6c:d4:0a:08:3d:54:c5:f6:5d:da:77:
1b:2d:26:e7:d5:c6:75:d4:cb:ab:30:39:62:b9:72:
1b:e7:1b:35:35:b1:54:17:55:84:cd:26:07:f1:12:
39:50:5c:7f:ef:1d:32:71:90:50:bc:23:09:0d:4e:
9a:60:b9:8b:0c:66:c6:6a:ef:15:d0:db:f0:0c:0d:
0a:57:75:86:15:ed:9b:60:e4:3e:53:f2:84:fe:ec:
37:84:ca:af:04:8e:5b:b6:9c:f5:6a:6a:63:df:7c:
38:81:2b:ae:30:74:ac:88:46:7d:45:68:d5:95:bb:
61:71:c0:df:87:1c:94:c9:65:ec:60:46:5b:be:65:
9a:ad:7b:66:64:18:d0:1b:90:ce:32:a2:67:1e:8d:
cb:77:16:b3:94:50:3b:21:b8:e5:7f:4d:86:2f:bb:
42:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:AD:90:04:EA:E6:91:4D:0F:E6:E6:DE:80:3D:1A:CA:29:EA:AE:58
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/NK2QBOrmkU0P5ubegD0ayinqrlg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.111.224.0/20
Signature Algorithm: sha256WithRSAEncryption
bb:56:d9:31:8c:f5:9b:4a:29:e2:dd:b2:b2:ae:c3:38:d2:6d:
3f:d5:bc:c8:43:72:1d:c8:9a:98:1c:5b:d7:09:52:3e:a5:0c:
33:ab:0e:e6:7b:47:1f:ae:45:c7:65:ec:e7:7d:1f:31:7b:05:
d7:82:3a:4a:a0:46:4b:a7:87:29:36:14:2c:76:fd:b5:a3:68:
e0:12:c9:7e:eb:ce:20:3d:ac:f9:e5:62:2c:aa:d4:aa:03:ef:
f5:f3:04:aa:06:08:c0:78:b5:26:31:c9:ec:c8:45:af:b7:2d:
e8:1d:a1:b8:16:ec:84:b3:02:7d:a9:e2:86:a2:ba:c4:41:25:
ee:a6:74:75:9d:24:eb:ba:a4:19:ba:b7:83:22:20:47:55:94:
78:ac:a6:38:28:7e:c8:5e:0c:32:61:9d:53:0e:e5:26:6d:b4:
db:4b:4d:01:b1:37:67:0d:35:48:c1:d5:d6:d9:f3:47:94:44:
15:13:3c:4e:7b:da:ae:4b:05:b3:7d:a1:44:57:ce:cd:4e:38:
b6:f6:85:a8:5a:7b:44:1f:1f:dd:97:81:0c:4f:af:58:4d:b2:
fb:37:1d:20:3d:90:0d:8c:b1:d3:63:6f:bb:db:38:3b:d6:8b:
a3:95:c4:2f:3f:5e:47:34:61:59:96:36:76:58:09:12:6e:69:
19:78:6b:fd
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICFR8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTEy
MzQ0MjBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDM0QUQ5MDA0RUFFNjkx
NEQwRkU2RTZERTgwM0QxQUNBMjlFQUFFNTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDKmnL+Tuigb94LhxnUAMhhMSoIasWOIgkElqTZOj0Q6kppy11g
Xj9TZpfqYUVKWL6bGGKJ5pV6FiYw0rl/zySLsn7x1+4LLH45EsEAK+H5FwtqpQSr
n6yamRyYnwxs1AoIPVTF9l3adxstJufVxnXUy6swOWK5chvnGzU1sVQXVYTNJgfx
EjlQXH/vHTJxkFC8IwkNTppguYsMZsZq7xXQ2/AMDQpXdYYV7Ztg5D5T8oT+7DeE
yq8Ejlu2nPVqamPffDiBK64wdKyIRn1FaNWVu2FxwN+HHJTJZexgRlu+ZZqte2Zk
GNAbkM4yomcejct3FrOUUDshuOV/TYYvu0IrAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUNK2QBOrmkU0P5ubegD0ayinqrlgwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9OSzJRQk9ybWtVMFA1dWJlZ0Qw
YXlpbnFybGcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEr2/g
MA0GCSqGSIb3DQEBCwUAA4IBAQC7VtkxjPWbSini3bKyrsM40m0/1bzIQ3IdyJqY
HFvXCVI+pQwzqw7me0cfrkXHZeznfR8xewXXgjpKoEZLp4cpNhQsdv21o2jgEsl+
684gPaz55WIsqtSqA+/18wSqBgjAeLUmMcnsyEWvty3oHaG4FuyEswJ9qeKGorrE
QSXupnR1nSTruqQZureDIiBHVZR4rKY4KH7IXgwyYZ1TDuUmbbTbS00BsTdnDTVI
wdXW2fNHlEQVEzxOe9quSwWzfaFEV87NTji29oWoWntEHx/dl4EMT69YTbL7Nx0g
PZANjLHTY2+72zg71oujlcQvP15HNGFZljZ2WAkSbmkZeGv9
-----END CERTIFICATE-----
Generated at Wed Apr 16 12:38:30 2025 by rpki-client