Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/O0zemDdMnnCGW_LUh_qtcI9mZEc.roa
File: O0zemDdMnnCGW_LUh_qtcI9mZEc.roa (raw, json)
Hash identifier: L0mjIc+nAwa+w1Kmu1DsIlZPABd1ivlLApv8lgBMFZw=
Subject key identifier: 3B:4C:DE:98:37:4C:9E:70:86:5B:F2:D4:87:FA:AD:70:8F:66:64:47
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 121E
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/O0zemDdMnnCGW_LUh_qtcI9mZEc.roa
Signing time: Mon 26 Aug 2024 05:18:16 +0000
ROA not before: Mon 26 Aug 2024 05:18:16 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 220.130.0.0/15 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:36:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4638 (0x121e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 26 05:18:16 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=3B4CDE98374C9E70865BF2D487FAAD708F666447
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:0b:ab:b3:9e:7c:ab:23:34:38:d2:4e:36:2a:
0a:b7:c7:ae:e2:0e:f7:df:11:ed:90:cb:57:c3:73:
b5:32:3f:0f:6d:c4:b1:90:7c:ee:97:b7:6b:26:6d:
d6:51:56:c1:83:d6:8f:b8:ea:9c:55:83:d3:0c:73:
de:f4:c3:c1:78:d8:7d:bb:60:31:38:d0:7a:f2:65:
b2:71:e0:7e:26:95:9c:ac:d4:62:5e:f8:25:5e:38:
c1:43:31:08:7b:da:81:eb:86:d2:4b:8a:90:ef:88:
27:bf:f8:fe:04:45:5b:cd:66:79:a3:ba:b9:9b:eb:
0a:b9:f6:23:12:a4:6f:6b:c0:2d:79:9f:78:2c:8a:
d7:d2:49:45:67:6c:c1:9c:a7:3e:80:d1:94:aa:07:
c2:67:85:76:a9:a5:43:37:a5:b1:03:47:b6:ff:0f:
de:8e:4e:0f:f3:4e:dc:88:11:17:4e:6e:d7:1f:2a:
5d:d0:14:5b:92:ce:44:2e:32:8d:b1:37:ed:ad:64:
cb:28:c5:f9:eb:b8:36:55:1c:c8:e1:da:b6:aa:59:
0f:e1:7e:ec:27:3c:a6:a9:c9:e0:04:d8:dc:40:4d:
9d:16:a6:76:21:e2:29:30:27:1d:cb:d6:e9:5e:ee:
88:d3:f8:07:54:28:79:4e:09:7d:6c:59:48:89:ee:
34:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:4C:DE:98:37:4C:9E:70:86:5B:F2:D4:87:FA:AD:70:8F:66:64:47
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/O0zemDdMnnCGW_LUh_qtcI9mZEc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.130.0.0/15
Signature Algorithm: sha256WithRSAEncryption
b3:d5:9e:12:fa:e8:a5:40:77:76:24:63:bc:f4:9b:36:c8:ee:
4f:c9:a8:b7:14:30:57:be:67:5e:89:18:53:26:7e:9a:e9:4f:
3c:2e:01:02:df:00:b3:4d:ba:f1:e9:41:25:d1:eb:e9:41:21:
9c:b9:bd:68:a0:bc:a0:62:8d:ee:e2:f5:c1:86:f1:4e:60:ec:
3d:be:36:a5:3d:af:1b:24:d9:35:fd:20:08:4f:24:40:34:e6:
9d:fa:39:04:2a:a6:15:ca:73:b0:cb:46:de:d3:c5:71:60:af:
74:b8:13:f8:87:4c:44:02:e0:4e:23:8a:ad:45:96:44:39:cc:
4e:bc:7a:e6:f4:1b:4a:30:e5:32:4d:4a:97:dc:75:a6:62:48:
f7:9c:ad:ea:65:2a:15:a7:31:5a:83:e6:87:93:a1:58:88:b9:
2f:bf:10:23:16:ef:33:9c:9e:20:8a:00:1f:ef:b2:e4:f4:4d:
a9:67:02:37:a1:2a:03:07:5f:5c:50:e0:84:4c:db:d5:6d:06:
cd:05:94:1d:c3:e5:7c:29:74:c6:41:cb:35:f6:4f:15:7f:66:
9d:eb:fe:e1:c9:4f:63:e2:78:61:46:c9:68:bc:f6:9f:d8:1a:
b5:91:14:ac:ca:87:a3:d7:a4:8d:21:b3:1b:32:56:47:39:97:
d4:11:71:9a
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICEh4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA4MjYw
NTE4MTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNCNENERTk4Mzc0QzlF
NzA4NjVCRjJENDg3RkFBRDcwOEY2NjY0NDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC1C6uznnyrIzQ40k42Kgq3x67iDvffEe2Qy1fDc7UyPw9txLGQ
fO6Xt2smbdZRVsGD1o+46pxVg9MMc970w8F42H27YDE40HryZbJx4H4mlZys1GJe
+CVeOMFDMQh72oHrhtJLipDviCe/+P4ERVvNZnmjurmb6wq59iMSpG9rwC15n3gs
itfSSUVnbMGcpz6A0ZSqB8JnhXappUM3pbEDR7b/D96OTg/zTtyIERdObtcfKl3Q
FFuSzkQuMo2xN+2tZMsoxfnruDZVHMjh2raqWQ/hfuwnPKapyeAE2NxATZ0WpnYh
4ikwJx3L1ule7ojT+AdUKHlOCX1sWUiJ7jQZAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUO0zemDdMnnCGW/LUh/qtcI9mZEcwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9PMHplbURkTW5uQ0dXX0xVaF9x
dGNJOW1aRWMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMB3IIw
DQYJKoZIhvcNAQELBQADggEBALPVnhL66KVAd3YkY7z0mzbI7k/JqLcUMFe+Z16J
GFMmfprpTzwuAQLfALNNuvHpQSXR6+lBIZy5vWigvKBije7i9cGG8U5g7D2+NqU9
rxsk2TX9IAhPJEA05p36OQQqphXKc7DLRt7TxXFgr3S4E/iHTEQC4E4jiq1FlkQ5
zE68eub0G0ow5TJNSpfcdaZiSPecreplKhWnMVqD5oeToViIuS+/ECMW7zOcniCK
AB/vsuT0TalnAjehKgMHX1xQ4IRM29VtBs0FlB3D5XwpdMZByzX2TxV/Zp3r/uHJ
T2PieGFGyWi89p/YGrWRFKzKh6PXpI0hsxsyVkc5l9QRcZo=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:18:23 2025 by rpki-client