Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/YPJ0LFOHPXe-EdtojoCmYUuxLQE.roa
File: YPJ0LFOHPXe-EdtojoCmYUuxLQE.roa (raw, json)
Hash identifier: NNA0fFewU945R5UMC98zCkjaVXSgKl0pdtiTMLfu0pA=
Subject key identifier: 60:F2:74:2C:53:87:3D:77:BE:11:DB:68:8E:80:A6:61:4B:B1:2D:01
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 153E
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/YPJ0LFOHPXe-EdtojoCmYUuxLQE.roa
Signing time: Tue 11 Feb 2025 23:44:27 +0000
ROA not before: Tue 11 Feb 2025 23:44:27 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131621
IP address blocks: 203.75.51.0/27 maxlen: 27
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5438 (0x153e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:27 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=60F2742C53873D77BE11DB688E80A6614BB12D01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:53:82:14:ad:1c:9c:16:5c:9c:6b:21:58:cf:
16:c4:44:b0:33:fa:94:62:78:35:fe:66:dc:5d:c1:
fa:77:b3:fb:6e:4f:18:3f:27:63:21:3e:98:1b:65:
94:f0:8f:d1:f5:5e:b9:f2:2f:86:a0:46:3e:fa:db:
66:af:00:4f:9c:b4:ed:86:20:16:96:36:21:c6:4a:
72:a8:90:36:f2:aa:54:f9:be:8b:3d:13:25:b1:b6:
21:2c:ad:8c:ad:25:42:5f:9b:ec:92:c0:04:cb:89:
a4:ae:8f:4e:9d:e3:90:6d:06:cb:ca:4a:b8:ee:72:
19:81:10:c0:31:f5:dd:6a:93:7d:02:7b:fb:e2:ed:
74:e5:ab:6b:bb:cb:58:6b:be:54:f7:01:b0:49:e5:
94:83:1b:89:7c:b3:bf:4c:80:2e:de:6a:72:95:fd:
f8:2b:27:ae:17:1d:19:b5:02:e4:f3:64:cd:0b:77:
3a:18:9f:48:93:c2:14:a0:00:b2:57:7e:ca:4e:05:
1a:2e:7b:28:a0:13:53:9e:91:86:be:ed:85:7a:fa:
1c:1e:7e:d1:1c:81:f8:05:b6:a6:10:78:43:bc:b6:
51:32:7f:29:e6:11:22:75:74:ae:df:bd:35:29:93:
52:6e:a5:13:27:d8:27:8f:45:79:ec:e7:8b:45:ee:
81:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:F2:74:2C:53:87:3D:77:BE:11:DB:68:8E:80:A6:61:4B:B1:2D:01
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/YPJ0LFOHPXe-EdtojoCmYUuxLQE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.75.51.0/27
Signature Algorithm: sha256WithRSAEncryption
9c:63:30:84:3e:32:0a:c0:52:14:ae:17:a0:74:4b:dd:92:b4:
af:53:28:53:60:32:86:8f:1e:3c:23:49:4f:79:f4:38:49:95:
42:85:dd:fc:a3:17:53:f4:a0:83:b3:6d:5e:35:ad:73:35:f3:
aa:66:07:d2:82:85:06:17:b9:14:28:5d:b8:dd:b7:29:94:b0:
c8:d3:e3:a4:95:e9:45:52:ca:7e:c3:db:60:9c:65:5b:c2:7f:
9b:6c:d1:17:1a:f2:f4:a1:5e:8d:86:e0:0c:98:ae:7f:fc:19:
5f:71:b6:a2:41:a5:1f:df:4a:1e:65:42:7b:2b:f5:18:d4:69:
e7:b5:5f:53:e4:fc:2c:af:86:0b:9a:fa:a8:83:22:8c:22:c0:
92:dd:f4:0a:e6:24:cb:9f:34:4c:3f:24:6c:f8:fb:54:54:80:
2f:f7:b2:a2:4d:bd:0c:07:f9:e7:d9:d2:8f:ae:e9:f1:9a:c1:
8f:39:ce:2d:72:15:85:42:aa:c0:dc:3a:06:51:c7:c4:d1:27:
f3:b2:36:4b:eb:8d:18:a0:1a:5a:bb:aa:4f:64:91:0b:92:e9:
75:d6:17:e5:8d:5e:d3:88:95:75:29:43:2f:1d:ba:c0:c3:34:
20:2e:f9:cf:9d:13:92:5e:a9:0f:b9:fe:9e:54:8d:fd:15:77:
1c:3e:69:c8
-----BEGIN CERTIFICATE-----
MIIE0TCCA7mgAwIBAgICFT4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTEy
MzQ0MjdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDYwRjI3NDJDNTM4NzNE
NzdCRTExREI2ODhFODBBNjYxNEJCMTJEMDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDIU4IUrRycFlycayFYzxbERLAz+pRieDX+Ztxdwfp3s/tuTxg/
J2MhPpgbZZTwj9H1XrnyL4agRj7622avAE+ctO2GIBaWNiHGSnKokDbyqlT5vos9
EyWxtiEsrYytJUJfm+ySwATLiaSuj06d45BtBsvKSrjuchmBEMAx9d1qk30Ce/vi
7XTlq2u7y1hrvlT3AbBJ5ZSDG4l8s79MgC7eanKV/fgrJ64XHRm1AuTzZM0LdzoY
n0iTwhSgALJXfspOBRoueyigE1OekYa+7YV6+hweftEcgfgFtqYQeEO8tlEyfynm
ESJ1dK7fvTUpk1JupRMn2CePRXns54tF7oExAgMBAAGjggHtMIIB6TAdBgNVHQ4E
FgQUYPJ0LFOHPXe+EdtojoCmYUuxLQEwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9ZUEowTEZPSFBYZS1FZHRvam9D
bVlVdXhMUUUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUFy0sz
ADANBgkqhkiG9w0BAQsFAAOCAQEAnGMwhD4yCsBSFK4XoHRL3ZK0r1MoU2Ayho8e
PCNJT3n0OEmVQoXd/KMXU/Sgg7NtXjWtczXzqmYH0oKFBhe5FChduN23KZSwyNPj
pJXpRVLKfsPbYJxlW8J/m2zRFxry9KFejYbgDJiuf/wZX3G2okGlH99KHmVCeyv1
GNRp57VfU+T8LK+GC5r6qIMijCLAkt30CuYky580TD8kbPj7VFSAL/eyok29DAf5
59nSj67p8ZrBjznOLXIVhUKqwNw6BlHHxNEn87I2S+uNGKAaWruqT2SRC5LpddYX
5Y1e04iVdSlDLx26wMM0IC75z50Tkl6pD7n+nlSN/RV3HD5pyA==
-----END CERTIFICATE-----
Generated at Wed Apr 16 12:38:51 2025 by rpki-client