Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/QUGZ3Fm-DX-je335XHAg0sx85p0.roa
File: QUGZ3Fm-DX-je335XHAg0sx85p0.roa (raw, json)
Hash identifier: I8m4NoeKx/VE7Jn8IRx+kbZlZJ75UFRl7CVifGpoZEY=
Subject key identifier: 41:41:99:DC:59:BE:0D:7F:A3:7B:7D:F9:5C:70:20:D2:CC:7C:E6:9D
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 155E
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/QUGZ3Fm-DX-je335XHAg0sx85p0.roa
Signing time: Tue 11 Feb 2025 23:44:35 +0000
ROA not before: Tue 11 Feb 2025 23:44:35 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 220.130.0.0/15 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5470 (0x155e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:35 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=414199DC59BE0D7FA37B7DF95C7020D2CC7CE69D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:de:54:3b:99:f6:65:7e:10:ad:eb:f2:e5:d3:
79:14:23:be:43:0d:f7:09:95:51:d9:f3:5a:3b:00:
6f:d5:6e:ff:2e:6e:c9:87:1e:7c:c9:5e:95:24:a7:
ab:99:dc:e8:89:0a:1b:12:67:11:a4:ee:fd:74:18:
02:3c:bc:4d:74:59:80:10:41:e2:7c:3a:f8:35:39:
f1:ea:72:33:d8:69:69:86:e0:53:32:bb:17:67:1c:
d6:5d:f7:15:9b:28:cf:ee:6b:df:7a:ab:de:78:8b:
f0:4d:4e:f2:ce:2e:24:92:f4:8e:98:ac:c9:e3:c8:
0e:46:09:a6:4a:fb:7a:f8:7c:db:c4:44:a7:3a:d1:
c3:41:a6:fd:72:32:b7:d1:1d:70:1d:55:da:99:c5:
57:23:8c:58:68:36:8d:4f:d3:58:a2:07:9d:e1:25:
8e:db:b2:b9:af:48:48:28:60:c2:92:36:03:d4:7a:
06:76:30:51:b2:d6:16:18:21:08:6d:cd:fb:14:56:
92:e1:10:1a:52:b4:df:57:55:e7:db:23:08:13:5c:
b5:30:6d:86:10:14:86:9d:d7:7f:ca:f3:32:9c:7c:
0f:7f:d1:3c:2e:b4:13:ef:e1:64:71:fc:02:6a:6a:
6c:44:a0:8b:5a:4c:0a:e1:1f:ff:7f:fb:41:e1:ae:
b6:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:41:99:DC:59:BE:0D:7F:A3:7B:7D:F9:5C:70:20:D2:CC:7C:E6:9D
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/QUGZ3Fm-DX-je335XHAg0sx85p0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.130.0.0/15
Signature Algorithm: sha256WithRSAEncryption
1e:37:35:ea:46:9f:ce:f1:56:95:ed:7f:3b:ba:0f:f6:de:9d:
b7:dd:5b:5f:ef:e7:05:e7:35:6b:21:08:d8:f9:0d:64:dd:f6:
08:a8:a0:c6:e4:69:c7:23:bf:c1:83:ac:c5:36:f4:a2:69:7b:
15:fb:d8:4c:22:5b:72:12:40:6a:b1:cd:75:c7:ea:97:74:69:
ed:6e:36:25:82:2d:27:49:9a:c4:85:e8:31:c4:5d:c3:41:65:
a3:48:d6:f1:86:83:d4:55:83:46:d5:87:e0:06:78:79:67:19:
72:14:f2:20:06:88:97:0e:dd:ad:df:15:2b:0b:6e:9c:06:05:
aa:99:2c:fe:64:3b:9a:92:bf:91:73:ac:10:6f:1a:e2:dc:67:
d4:36:42:cf:bf:e4:77:4d:46:a1:f4:82:74:85:28:30:6c:6c:
f7:01:56:cc:15:18:3f:70:0c:d4:5f:ef:22:ab:98:46:ef:8c:
14:25:b7:3b:c8:b0:fd:df:79:82:85:46:80:77:18:6b:3f:a6:
0a:c7:11:a3:76:97:a9:e7:39:ae:b1:86:3b:17:dc:96:86:f7:
b8:3e:47:a8:f9:38:99:0f:25:80:41:4b:55:04:ff:cc:79:03:
8b:74:75:78:6d:b5:1e:45:33:9b:42:d7:a7:f5:1a:2d:e5:59:
5a:57:40:83
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICFV4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTEy
MzQ0MzVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQxNDE5OURDNTlCRTBE
N0ZBMzdCN0RGOTVDNzAyMEQyQ0M3Q0U2OUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCj3lQ7mfZlfhCt6/Ll03kUI75DDfcJlVHZ81o7AG/Vbv8ubsmH
HnzJXpUkp6uZ3OiJChsSZxGk7v10GAI8vE10WYAQQeJ8Ovg1OfHqcjPYaWmG4FMy
uxdnHNZd9xWbKM/ua996q954i/BNTvLOLiSS9I6YrMnjyA5GCaZK+3r4fNvERKc6
0cNBpv1yMrfRHXAdVdqZxVcjjFhoNo1P01iiB53hJY7bsrmvSEgoYMKSNgPUegZ2
MFGy1hYYIQhtzfsUVpLhEBpStN9XVefbIwgTXLUwbYYQFIad13/K8zKcfA9/0Twu
tBPv4WRx/AJqamxEoItaTArhH/9/+0HhrrbBAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUQUGZ3Fm+DX+je335XHAg0sx85p0wHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9RVUdaM0ZtLURYLWplMzM1WEhB
ZzBzeDg1cDAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMB3IIw
DQYJKoZIhvcNAQELBQADggEBAB43NepGn87xVpXtfzu6D/benbfdW1/v5wXnNWsh
CNj5DWTd9giooMbkaccjv8GDrMU29KJpexX72EwiW3ISQGqxzXXH6pd0ae1uNiWC
LSdJmsSF6DHEXcNBZaNI1vGGg9RVg0bVh+AGeHlnGXIU8iAGiJcO3a3fFSsLbpwG
BaqZLP5kO5qSv5FzrBBvGuLcZ9Q2Qs+/5HdNRqH0gnSFKDBsbPcBVswVGD9wDNRf
7yKrmEbvjBQltzvIsP3feYKFRoB3GGs/pgrHEaN2l6nnOa6xhjsX3JaG97g+R6j5
OJkPJYBBS1UE/8x5A4t0dXhttR5FM5tC16f1Gi3lWVpXQIM=
-----END CERTIFICATE-----
Generated at Wed Apr 16 12:19:49 2025 by rpki-client