Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/YvvISQkFoJMvfOqKGiVA9qttTgY.roa
File: YvvISQkFoJMvfOqKGiVA9qttTgY.roa (raw, json)
Hash identifier: brviV78z7J43qlAGo+49vALPxCcoiOumCTFAblut4C4=
Subject key identifier: 62:FB:C8:49:09:05:A0:93:2F:7C:EA:8A:1A:25:40:F6:AB:6D:4E:06
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1526
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/YvvISQkFoJMvfOqKGiVA9qttTgY.roa
Signing time: Tue 11 Feb 2025 23:44:22 +0000
ROA not before: Tue 11 Feb 2025 23:44:22 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131660
IP address blocks: 2001:b000:591::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5414 (0x1526)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:22 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=62FBC8490905A0932F7CEA8A1A2540F6AB6D4E06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:45:ed:a4:77:ea:19:5a:b0:e2:68:63:8c:9b:
d4:14:cd:79:03:8c:02:72:65:e1:f5:d5:99:49:14:
57:ba:13:68:4f:ba:61:91:64:ac:df:36:a1:da:7f:
89:2c:07:22:15:9f:2c:67:a5:73:3c:c4:fd:e0:ef:
0b:02:68:1c:44:91:1e:07:09:81:74:a1:87:f2:89:
00:f5:e8:44:b5:a2:0b:a7:2b:a8:7a:62:7f:30:a8:
ad:03:04:b3:9a:4f:63:2e:c8:1c:52:b1:ee:49:24:
e0:41:9e:f8:16:9d:c8:c5:85:b8:1e:68:bd:90:8d:
00:ee:2c:e6:6d:d1:d0:fd:d3:a1:d0:09:f3:45:9a:
f4:ce:62:0e:48:54:81:8d:0b:ba:0c:4a:7b:b3:3b:
02:f8:ea:52:8e:8c:74:82:e4:53:11:e1:46:6f:a2:
4b:19:bb:75:74:9a:9e:64:c7:2c:34:bb:d2:c1:c6:
0d:48:65:8e:65:8c:ff:85:6c:25:09:3f:f8:86:6a:
3a:f6:c3:1e:bb:86:88:b5:06:0a:e4:18:21:a2:3f:
90:b3:70:66:f8:f2:33:0e:9e:6c:b5:16:54:ae:93:
f0:dd:37:68:cf:5e:90:b3:48:bd:23:77:99:88:e9:
02:d0:41:7c:35:92:1b:24:1c:d8:8d:34:10:d3:10:
84:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:FB:C8:49:09:05:A0:93:2F:7C:EA:8A:1A:25:40:F6:AB:6D:4E:06
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/YvvISQkFoJMvfOqKGiVA9qttTgY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b000:591::/48
Signature Algorithm: sha256WithRSAEncryption
09:f8:e5:a6:23:9d:74:7a:34:d1:ad:dd:33:77:67:38:cb:da:
0b:a7:36:7e:66:81:23:27:6e:fc:80:7c:8a:ab:c2:be:4e:a9:
a2:b8:fb:3b:e7:50:2c:0d:ff:13:2a:65:05:1b:99:24:c1:b5:
ea:fe:c8:dc:93:06:50:09:de:39:69:dd:87:aa:cb:62:86:f9:
e4:e5:11:a0:45:f4:f1:3c:59:c0:d3:bb:df:db:54:fe:08:8a:
a3:7b:72:33:dc:99:50:26:d5:95:ae:c4:05:39:f0:17:a7:04:
1d:4f:43:59:37:40:28:03:b0:ed:7e:7b:cc:70:3d:8d:a2:ea:
bc:88:07:0b:19:e0:c3:29:36:0a:d4:c2:39:a3:4e:6a:9f:60:
fd:b4:6d:3a:e9:cd:f1:98:db:f4:74:c4:dc:1c:ee:a9:14:3a:
f3:94:e1:31:b7:21:f9:d4:20:2b:37:c7:65:21:1f:41:11:73:
e0:0b:80:ce:cd:f5:d6:3e:50:eb:81:d0:91:31:5c:26:98:d9:
6f:ac:19:39:fa:22:cc:af:3c:49:4f:82:d9:6b:37:95:b3:e6:
6a:fc:a8:aa:10:f4:ea:01:a2:ae:5b:47:4b:d0:ef:d0:02:fc:
b5:bb:47:29:80:e4:34:d3:a3:12:00:9f:f7:22:72:8d:ca:b8:
ed:bb:4e:03
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgICFSYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTEy
MzQ0MjJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDYyRkJDODQ5MDkwNUEw
OTMyRjdDRUE4QTFBMjU0MEY2QUI2RDRFMDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDGRe2kd+oZWrDiaGOMm9QUzXkDjAJyZeH11ZlJFFe6E2hPumGR
ZKzfNqHaf4ksByIVnyxnpXM8xP3g7wsCaBxEkR4HCYF0oYfyiQD16ES1ogunK6h6
Yn8wqK0DBLOaT2MuyBxSse5JJOBBnvgWncjFhbgeaL2QjQDuLOZt0dD906HQCfNF
mvTOYg5IVIGNC7oMSnuzOwL46lKOjHSC5FMR4UZvoksZu3V0mp5kxyw0u9LBxg1I
ZY5ljP+FbCUJP/iGajr2wx67hoi1BgrkGCGiP5CzcGb48jMOnmy1FlSuk/DdN2jP
XpCzSL0jd5mI6QLQQXw1khskHNiNNBDTEISrAgMBAAGjggHvMIIB6zAdBgNVHQ4E
FgQUYvvISQkFoJMvfOqKGiVA9qttTgYwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9ZdnZJU1FrRm9KTXZmT3FLR2lW
QTlxdHRUZ1kucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAGw
AAWRMA0GCSqGSIb3DQEBCwUAA4IBAQAJ+OWmI510ejTRrd0zd2c4y9oLpzZ+ZoEj
J278gHyKq8K+TqmiuPs751AsDf8TKmUFG5kkwbXq/sjckwZQCd45ad2Hqstihvnk
5RGgRfTxPFnA07vf21T+CIqje3Iz3JlQJtWVrsQFOfAXpwQdT0NZN0AoA7DtfnvM
cD2Nouq8iAcLGeDDKTYK1MI5o05qn2D9tG066c3xmNv0dMTcHO6pFDrzlOExtyH5
1CArN8dlIR9BEXPgC4DOzfXWPlDrgdCRMVwmmNlvrBk5+iLMrzxJT4LZazeVs+Zq
/KiqEPTqAaKuW0dL0O/QAvy1u0cpgOQ006MSAJ/3InKNyrjtu04D
-----END CERTIFICATE-----
Generated at Wed Apr 16 12:26:22 2025 by rpki-client