Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/YkHSTBmAdyGluSV97raxH5pzAoI.roa
File: YkHSTBmAdyGluSV97raxH5pzAoI.roa (raw, json)
Hash identifier: ryKsNjkYnCHfSaJ69WRPU6fRaoutu8lMEt6sckuEC7Q=
Subject key identifier: 62:41:D2:4C:19:80:77:21:A5:B9:25:7D:EE:B6:B1:1F:9A:73:02:82
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 14FA
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/YkHSTBmAdyGluSV97raxH5pzAoI.roa
Signing time: Tue 11 Feb 2025 23:44:13 +0000
ROA not before: Tue 11 Feb 2025 23:44:13 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 142005
IP address blocks: 210.242.186.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5370 (0x14fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:13 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6241D24C19807721A5B9257DEEB6B11F9A730282
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ee:ff:c7:30:0d:a8:01:1c:79:a2:5b:0c:18:
23:60:cb:6a:9d:1d:81:a3:89:c5:1e:e8:82:4a:28:
92:14:1a:5a:7b:15:cc:a8:ef:04:35:e8:15:35:73:
82:54:c6:54:45:c3:62:1d:3f:1d:9d:44:56:0c:93:
35:02:84:1d:fb:8a:ba:aa:69:af:ed:21:d6:30:63:
ac:80:2b:16:b2:70:bf:7d:73:3b:b1:b8:06:c5:18:
54:75:58:0b:6d:7f:71:34:5a:69:d8:12:de:e7:01:
35:68:34:56:2d:26:12:1a:09:ed:1b:04:27:17:c4:
03:48:17:6a:18:c1:42:50:e2:7a:71:53:0b:9c:8a:
3f:92:68:2d:59:24:5c:1a:e0:0c:2c:f1:59:e7:c7:
be:6b:a1:1f:e2:59:c6:37:3a:73:30:12:ac:65:28:
fe:a6:bd:1b:40:ca:4b:7f:09:1b:f9:49:a1:62:24:
ee:ea:b7:51:3a:af:b5:66:0b:e6:86:15:8a:df:e9:
10:75:02:25:48:f9:28:d3:18:15:81:bd:08:41:cf:
2f:54:32:fe:e4:ef:92:3a:8a:90:bf:c5:96:9f:e9:
69:a9:36:9a:ba:38:66:b3:3d:51:e5:7b:05:d7:76:
41:77:1a:c1:71:95:a0:cd:ea:8d:e9:79:f7:67:10:
b5:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:41:D2:4C:19:80:77:21:A5:B9:25:7D:EE:B6:B1:1F:9A:73:02:82
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/YkHSTBmAdyGluSV97raxH5pzAoI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.242.186.0/24
Signature Algorithm: sha256WithRSAEncryption
39:00:f6:ea:d4:6d:ab:21:5a:21:f5:80:a3:9b:09:0e:7c:cd:
c1:54:c0:fb:cf:fc:62:0d:c8:37:41:18:89:86:bc:22:01:bf:
87:7e:b3:f6:32:eb:90:7b:90:38:be:5a:08:d0:cd:f1:c7:a3:
a9:ce:13:5e:70:ef:7e:4b:07:27:09:0f:47:81:cc:fc:a7:29:
d8:24:15:bd:cc:75:94:f1:37:a7:1b:33:f3:28:21:c6:00:42:
09:ac:65:8f:99:9d:90:ec:ba:4b:2b:fc:1f:c6:1b:00:98:31:
dc:c9:d4:86:f4:1c:c8:10:96:d0:0d:e8:cb:45:86:94:1b:f7:
53:5b:b3:23:9f:18:91:7c:da:c5:06:93:a6:1d:4e:af:d0:6b:
7d:25:7e:02:d6:84:ba:04:ec:7d:ec:04:c8:ed:88:23:69:3d:
75:b7:ee:f3:51:b3:9b:42:4e:19:d5:c1:bd:94:63:63:63:e5:
4c:ed:cb:2f:6d:b3:9d:b6:38:3d:2d:ba:9b:a6:eb:86:f4:16:
4b:ad:06:f3:95:81:4a:99:88:28:af:d6:af:19:6b:06:ac:3d:
45:8a:59:cc:44:20:5e:f9:80:31:2a:57:c2:e7:e5:ea:fa:96:
d6:e9:14:61:4e:8e:b7:03:f6:e7:dc:86:29:e7:c3:8d:ad:36:
a6:79:61:38
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICFPowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTEy
MzQ0MTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDYyNDFEMjRDMTk4MDc3
MjFBNUI5MjU3REVFQjZCMTFGOUE3MzAyODIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCw7v/HMA2oARx5olsMGCNgy2qdHYGjicUe6IJKKJIUGlp7Fcyo
7wQ16BU1c4JUxlRFw2IdPx2dRFYMkzUChB37irqqaa/tIdYwY6yAKxaycL99czux
uAbFGFR1WAttf3E0WmnYEt7nATVoNFYtJhIaCe0bBCcXxANIF2oYwUJQ4npxUwuc
ij+SaC1ZJFwa4Aws8Vnnx75roR/iWcY3OnMwEqxlKP6mvRtAykt/CRv5SaFiJO7q
t1E6r7VmC+aGFYrf6RB1AiVI+SjTGBWBvQhBzy9UMv7k75I6ipC/xZaf6WmpNpq6
OGazPVHlewXXdkF3GsFxlaDN6o3pefdnELVbAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUYkHSTBmAdyGluSV97raxH5pzAoIwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9Za0hTVEJtQWR5R2x1U1Y5N3Jh
eEg1cHpBb0kucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0vK6
MA0GCSqGSIb3DQEBCwUAA4IBAQA5APbq1G2rIVoh9YCjmwkOfM3BVMD7z/xiDcg3
QRiJhrwiAb+HfrP2MuuQe5A4vloI0M3xx6OpzhNecO9+SwcnCQ9Hgcz8pynYJBW9
zHWU8TenGzPzKCHGAEIJrGWPmZ2Q7LpLK/wfxhsAmDHcydSG9BzIEJbQDejLRYaU
G/dTW7MjnxiRfNrFBpOmHU6v0Gt9JX4C1oS6BOx97ATI7YgjaT11t+7zUbObQk4Z
1cG9lGNjY+VM7csvbbOdtjg9LbqbpuuG9BZLrQbzlYFKmYgor9avGWsGrD1FilnM
RCBe+YAxKlfC5+Xq+pbW6RRhTo63A/bn3IYp58ONrTameWE4
-----END CERTIFICATE-----
Generated at Wed Apr 16 17:22:06 2025 by rpki-client