Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/SphHxs40HcZBSUG67M5BTKxV6Ys.roa
File: SphHxs40HcZBSUG67M5BTKxV6Ys.roa (raw, json)
Hash identifier: Q//Ecbv/L6HKQrhWjhAcUN6BaccQU38U6AeNsEZgRWw=
Subject key identifier: 4A:98:47:C6:CE:34:1D:C6:41:49:41:BA:EC:CE:41:4C:AC:55:E9:8B
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1515
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/SphHxs40HcZBSUG67M5BTKxV6Ys.roa
Signing time: Tue 11 Feb 2025 23:44:18 +0000
ROA not before: Tue 11 Feb 2025 23:44:18 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 114.24.0.0/14 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5397 (0x1515)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:18 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=4A9847C6CE341DC6414941BAECCE414CAC55E98B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:e2:d5:c3:35:26:2c:6b:6e:7c:4a:94:fb:dc:
b9:66:43:ca:a4:b2:ba:2f:ad:21:49:53:41:f3:ff:
5d:c1:5b:01:5e:3e:e8:7e:b7:c1:c7:0d:4e:8b:ec:
dc:00:55:a9:05:51:01:12:50:05:9c:87:9d:97:de:
d3:ab:bf:ba:3d:54:04:a0:c9:e7:06:67:3a:85:42:
53:e0:3b:56:9e:16:c3:50:41:0c:2e:c3:3c:1d:31:
ae:a9:0e:d5:c0:06:ce:87:25:1c:8b:6e:d7:c3:3f:
47:73:23:2c:bd:ce:bc:d2:f0:64:cc:38:4e:6a:44:
c3:b7:4f:44:d7:dd:4c:bc:06:b3:fa:b1:19:e0:8b:
7e:cd:63:4a:c9:b3:20:99:3d:f5:70:57:ad:f5:b5:
a0:5b:e5:e5:8d:e7:e7:13:f3:ee:2c:12:cd:7a:e9:
f3:e3:70:d2:ad:55:99:02:9c:86:08:f4:cc:02:11:
f1:cb:a3:9e:db:c7:04:03:bd:7e:94:70:da:0a:da:
cd:01:ed:75:5a:e1:3e:31:24:96:15:14:4c:e9:c1:
b9:b7:8b:19:64:9c:68:b5:3c:6a:73:5a:76:af:94:
ad:7e:9e:c6:14:5a:86:82:7a:cd:5a:c1:c8:c1:ff:
e5:4c:9e:0f:4c:05:d6:ff:97:99:bc:ff:62:e2:56:
91:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:98:47:C6:CE:34:1D:C6:41:49:41:BA:EC:CE:41:4C:AC:55:E9:8B
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/SphHxs40HcZBSUG67M5BTKxV6Ys.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.24.0.0/14
Signature Algorithm: sha256WithRSAEncryption
06:e5:94:0a:c0:92:bc:9e:81:15:07:7c:13:d9:c3:76:ec:a5:
27:07:29:ff:5f:98:b0:db:86:67:e6:59:6e:03:5f:97:f0:20:
fc:4f:72:4a:f8:f3:7f:2a:f5:83:1b:9d:5b:85:50:88:b9:96:
1f:1a:a5:a4:4e:b8:ce:00:0c:ed:1b:30:e6:fc:64:95:6d:46:
1b:cf:a6:1a:e6:9e:49:3c:6c:3d:19:9c:b5:55:a8:fb:18:ea:
c0:d4:c8:3c:f4:ec:d5:ea:54:9c:91:0d:f5:1d:6a:b9:65:4c:
5f:f8:bf:e4:61:8a:42:e4:68:ab:be:ff:59:c2:e1:27:54:4d:
61:90:e2:e2:fc:2d:b7:f1:3f:89:21:d9:94:02:92:47:1b:04:
76:d8:5e:88:c8:18:bd:0d:4e:d4:ac:99:32:b3:e7:75:25:ac:
56:39:86:2d:52:90:d8:0e:94:5e:bf:d7:df:7d:fc:9d:e4:56:
ab:7a:bd:4d:99:9f:2f:9c:46:e4:67:73:6d:bd:9e:49:48:01:
ae:63:19:a6:91:25:21:5b:4e:94:9d:75:bb:d6:88:24:4d:a8:
35:08:dc:8f:c6:df:83:11:0e:68:65:6f:52:15:d7:0d:0c:c0:
08:c0:3e:f4:98:cf:cf:e7:c4:4e:2d:49:1f:64:32:39:4d:1d:
18:f7:ad:76
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICFRUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTEy
MzQ0MThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDRBOTg0N0M2Q0UzNDFE
QzY0MTQ5NDFCQUVDQ0U0MTRDQUM1NUU5OEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDX4tXDNSYsa258SpT73LlmQ8qksrovrSFJU0Hz/13BWwFePuh+
t8HHDU6L7NwAVakFUQESUAWch52X3tOrv7o9VASgyecGZzqFQlPgO1aeFsNQQQwu
wzwdMa6pDtXABs6HJRyLbtfDP0dzIyy9zrzS8GTMOE5qRMO3T0TX3Uy8BrP6sRng
i37NY0rJsyCZPfVwV631taBb5eWN5+cT8+4sEs166fPjcNKtVZkCnIYI9MwCEfHL
o57bxwQDvX6UcNoK2s0B7XVa4T4xJJYVFEzpwbm3ixlknGi1PGpzWnavlK1+nsYU
WoaCes1awcjB/+VMng9MBdb/l5m8/2LiVpEbAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUSphHxs40HcZBSUG67M5BTKxV6YswHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9TcGhIeHM0MEhjWkJTVUc2N001
QlRLeFY2WXMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMCchgw
DQYJKoZIhvcNAQELBQADggEBAAbllArAkryegRUHfBPZw3bspScHKf9fmLDbhmfm
WW4DX5fwIPxPckr4838q9YMbnVuFUIi5lh8apaROuM4ADO0bMOb8ZJVtRhvPphrm
nkk8bD0ZnLVVqPsY6sDUyDz07NXqVJyRDfUdarllTF/4v+RhikLkaKu+/1nC4SdU
TWGQ4uL8LbfxP4kh2ZQCkkcbBHbYXojIGL0NTtSsmTKz53UlrFY5hi1SkNgOlF6/
1999/J3kVqt6vU2Zny+cRuRnc229nklIAa5jGaaRJSFbTpSddbvWiCRNqDUI3I/G
34MRDmhlb1IV1w0MwAjAPvSYz8/nxE4tSR9kMjlNHRj3rXY=
-----END CERTIFICATE-----
Generated at Wed Apr 16 12:26:49 2025 by rpki-client