Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/NW8kBlDR1rGAKkbIHGT7RKlrRYI.roa
File: NW8kBlDR1rGAKkbIHGT7RKlrRYI.roa (raw, json)
Hash identifier: YoPSR7jmcpNHhwHdsJ3wSgMjWWNvKBOpRaiyWw1EF7c=
Subject key identifier: 35:6F:24:06:50:D1:D6:B1:80:2A:46:C8:1C:64:FB:44:A9:6B:45:82
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 144C
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/NW8kBlDR1rGAKkbIHGT7RKlrRYI.roa
Signing time: Mon 10 Feb 2025 14:34:47 +0000
ROA not before: Mon 10 Feb 2025 14:34:47 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 20940
IP address blocks: 203.69.141.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Feb 2025 23:44:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5196 (0x144c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:34:47 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=356F240650D1D6B1802A46C81C64FB44A96B4582
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:c6:62:b7:9c:bc:0b:8d:5e:10:a3:c3:8c:45:
77:bb:dd:5e:2a:46:93:97:02:9a:a6:d7:b5:4f:d3:
50:84:91:30:8a:34:26:ef:59:43:18:99:23:d3:3a:
ef:f0:26:4b:64:3a:c4:d9:6c:da:e2:97:86:c7:c3:
44:c0:64:59:44:54:0b:71:86:35:7c:da:06:64:a9:
c7:bc:1c:49:8a:7c:57:ac:99:52:15:32:f3:d6:48:
94:21:7f:63:e0:88:e2:e1:50:6d:87:51:ee:20:d8:
00:f8:2d:9d:ad:c6:03:9d:bf:c6:c3:03:47:41:5a:
f2:f2:89:c5:a2:62:24:28:f6:ef:e5:06:98:c1:ce:
fb:09:88:91:41:0d:ed:47:dd:0d:6d:6e:fa:ad:02:
2e:87:76:82:54:d7:4b:f2:9a:53:24:6e:67:0c:10:
41:76:50:64:04:55:4d:8e:39:92:f7:9e:c9:a7:c8:
70:0a:64:2a:f2:f5:e1:0d:a0:d9:50:68:6a:46:95:
ed:bb:3c:e4:99:03:1b:b1:6c:46:ee:a3:f6:ae:b1:
c4:08:3f:8c:91:54:51:b8:07:2f:cc:11:e0:ca:53:
17:10:f4:75:cf:e8:34:a0:1a:c7:48:3b:8a:8e:2b:
15:dd:f0:d9:a7:f1:d4:d4:0a:b8:7d:50:50:d3:28:
f3:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:6F:24:06:50:D1:D6:B1:80:2A:46:C8:1C:64:FB:44:A9:6B:45:82
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/NW8kBlDR1rGAKkbIHGT7RKlrRYI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.69.141.0/24
Signature Algorithm: sha256WithRSAEncryption
ce:ee:fc:dc:93:cb:3f:31:71:08:3d:f9:f4:1f:94:25:5c:64:
c8:f9:17:4e:21:9c:f2:85:ff:1b:4d:3a:11:1a:a7:35:5c:cf:
bd:0b:4d:02:be:61:e5:64:77:a8:00:34:98:91:06:a2:2e:a7:
c7:96:61:d0:98:14:f7:b8:66:5b:dc:28:63:9a:28:d0:63:4c:
4d:8f:53:89:34:b8:b2:3c:e6:79:b7:bb:9e:77:31:21:cc:1f:
73:74:4b:37:7d:4e:d4:93:d4:e2:26:ba:77:68:77:bf:2f:c5:
c8:aa:2a:09:50:f0:4b:fb:aa:ce:f6:47:22:39:52:37:ae:83:
f2:26:0a:38:8e:65:70:b1:ce:b5:10:76:f0:e4:b8:ce:53:bc:
71:ea:85:0d:19:15:bb:12:b9:bb:c3:74:77:f9:ce:e5:6a:f2:
7a:3c:dd:90:6a:e4:33:50:51:39:47:b9:e5:8b:df:bf:9b:48:
40:eb:18:6a:81:cb:97:5c:31:d7:44:21:48:78:b6:88:ee:b0:
1c:74:2d:4b:a5:32:bb:d0:73:63:1e:95:2b:b8:eb:8e:77:7f:
d6:4d:eb:dd:b4:12:6d:b9:2d:04:36:ef:ea:8c:bb:ab:fb:c1:
73:d7:c0:e0:d2:08:f2:c9:60:80:55:8d:60:0a:08:1a:6f:b7:
73:2e:e8:8a
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICFEwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTAx
NDM0NDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDM1NkYyNDA2NTBEMUQ2
QjE4MDJBNDZDODFDNjRGQjQ0QTk2QjQ1ODIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQD6xmK3nLwLjV4Qo8OMRXe73V4qRpOXApqm17VP01CEkTCKNCbv
WUMYmSPTOu/wJktkOsTZbNril4bHw0TAZFlEVAtxhjV82gZkqce8HEmKfFesmVIV
MvPWSJQhf2PgiOLhUG2HUe4g2AD4LZ2txgOdv8bDA0dBWvLyicWiYiQo9u/lBpjB
zvsJiJFBDe1H3Q1tbvqtAi6HdoJU10vymlMkbmcMEEF2UGQEVU2OOZL3nsmnyHAK
ZCry9eENoNlQaGpGle27POSZAxuxbEbuo/auscQIP4yRVFG4By/MEeDKUxcQ9HXP
6DSgGsdIO4qOKxXd8Nmn8dTUCrh9UFDTKPN9AgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUNW8kBlDR1rGAKkbIHGT7RKlrRYIwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9OVzhrQmxEUjFyR0FLa2JJSEdU
N1JLbHJSWUkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy0WN
MA0GCSqGSIb3DQEBCwUAA4IBAQDO7vzck8s/MXEIPfn0H5QlXGTI+RdOIZzyhf8b
TToRGqc1XM+9C00CvmHlZHeoADSYkQaiLqfHlmHQmBT3uGZb3ChjmijQY0xNj1OJ
NLiyPOZ5t7uedzEhzB9zdEs3fU7Uk9TiJrp3aHe/L8XIqioJUPBL+6rO9kciOVI3
roPyJgo4jmVwsc61EHbw5LjOU7xx6oUNGRW7Erm7w3R3+c7lavJ6PN2QauQzUFE5
R7nli9+/m0hA6xhqgcuXXDHXRCFIeLaI7rAcdC1LpTK70HNjHpUruOuOd3/WTevd
tBJtuS0ENu/qjLur+8Fz18Dg0gjyyWCAVY1gCggab7dzLuiK
-----END CERTIFICATE-----
Generated at Wed Apr 16 12:30:36 2025 by rpki-client