Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/ZXlxceHZJpw-pCcHRO2-soNjz1s.roa
File: ZXlxceHZJpw-pCcHRO2-soNjz1s.roa (raw, json)
Hash identifier: Blt9IO154aa6jI3IJ1CCVo6WVacYDduEilNZ+N2sU3E=
Subject key identifier: 65:79:71:71:E1:D9:26:9C:3E:A4:27:07:44:ED:BE:B2:83:63:CF:5B
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 11E0
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ZXlxceHZJpw-pCcHRO2-soNjz1s.roa
Signing time: Mon 26 Aug 2024 05:18:02 +0000
ROA not before: Mon 26 Aug 2024 05:18:02 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17714
IP address blocks: 220.128.48.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:35:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4576 (0x11e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 26 05:18:02 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=65797171E1D9269C3EA4270744EDBEB28363CF5B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:0f:85:65:2d:65:33:9f:2e:98:7a:a1:c1:b0:
f3:09:f5:83:c2:3c:fb:28:21:b5:78:65:f0:d2:b9:
de:88:6e:5b:d5:c1:68:3d:06:31:93:45:dc:02:bc:
19:7e:ec:fa:b8:e9:be:9e:0a:e0:9e:6e:53:a5:90:
29:e6:e4:7d:f6:04:85:01:b7:e3:c7:c9:2a:e2:37:
a9:32:75:58:a5:3d:94:37:04:86:22:42:cc:eb:8a:
1f:54:cf:05:f5:f8:4c:ab:19:cd:99:32:7d:a7:0e:
29:a6:52:f8:e3:01:d2:ac:67:73:f3:42:9a:13:2a:
e1:02:62:a4:ad:8f:0d:e3:f2:d9:d3:6f:cf:26:c6:
da:c7:bb:72:3b:5c:6e:5c:40:f1:98:94:b4:ba:a2:
e8:64:f8:4b:72:34:69:1c:60:11:19:1e:14:24:cd:
00:2d:95:48:fc:21:a0:2f:ac:ef:5b:98:b2:9c:5b:
97:f6:65:c8:8d:3f:b6:69:97:bf:07:4b:54:cf:1e:
bf:00:2a:25:27:1a:c6:d6:1d:4d:13:f1:ec:75:32:
45:96:ca:5f:68:79:77:87:22:ce:63:ed:50:90:6e:
15:9b:11:a5:f1:a0:ce:30:67:93:76:2f:83:cc:40:
3e:d9:09:f2:57:d1:4e:de:37:de:49:c6:be:fe:18:
33:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:79:71:71:E1:D9:26:9C:3E:A4:27:07:44:ED:BE:B2:83:63:CF:5B
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ZXlxceHZJpw-pCcHRO2-soNjz1s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.48.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:6d:7b:d2:b6:aa:d7:24:8d:ea:1b:b6:fe:dc:b4:bf:cf:5b:
3b:3c:dc:35:e3:43:27:94:44:0e:9b:be:f3:a5:fe:eb:34:c0:
45:7d:38:49:53:f4:f4:1a:91:ce:c8:1e:8b:75:fa:10:a3:06:
0f:c5:7c:5e:11:29:03:80:30:68:da:3e:0f:30:9e:e9:bc:e8:
b4:b8:02:b2:a4:8e:bd:b2:15:89:b4:f7:a2:c1:f3:f3:d9:7e:
aa:c3:46:4b:b7:80:67:f4:6d:b3:7d:50:36:a5:e8:4f:63:b2:
f5:01:3d:45:61:ce:b9:91:47:e7:31:9b:4b:ff:4f:66:53:dd:
db:d0:be:58:c3:1b:6b:7b:d1:cb:90:56:e7:ef:48:d3:6f:4c:
1e:dc:29:d2:82:8f:fd:6d:c2:15:1a:94:2c:d8:4d:18:7c:6c:
23:52:05:28:2e:73:a1:67:fd:9e:b9:b1:c0:10:88:e0:ea:d1:
4f:d1:26:78:fd:3b:32:5e:c0:7c:fd:ae:29:be:3a:80:f4:1e:
18:5d:15:42:18:14:ed:12:fc:cf:fd:e2:b2:00:e0:69:ff:a4:
e4:5a:fe:84:c9:51:65:bc:5e:fc:fb:92:31:2e:8d:8b:18:fe:
38:bb:2b:48:3f:1d:52:a0:41:2b:38:a7:18:d2:3b:4f:68:ba:
92:8c:58:15
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICEeAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA4MjYw
NTE4MDJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY1Nzk3MTcxRTFEOTI2
OUMzRUE0MjcwNzQ0RURCRUIyODM2M0NGNUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC7D4VlLWUzny6YeqHBsPMJ9YPCPPsoIbV4ZfDSud6IblvVwWg9
BjGTRdwCvBl+7Pq46b6eCuCeblOlkCnm5H32BIUBt+PHySriN6kydVilPZQ3BIYi
Qszrih9UzwX1+EyrGc2ZMn2nDimmUvjjAdKsZ3PzQpoTKuECYqStjw3j8tnTb88m
xtrHu3I7XG5cQPGYlLS6ouhk+EtyNGkcYBEZHhQkzQAtlUj8IaAvrO9bmLKcW5f2
ZciNP7Zpl78HS1TPHr8AKiUnGsbWHU0T8ex1MkWWyl9oeXeHIs5j7VCQbhWbEaXx
oM4wZ5N2L4PMQD7ZCfJX0U7eN95Jxr7+GDMvAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUZXlxceHZJpw+pCcHRO2+soNjz1swHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9aWGx4Y2VIWkpwdy1wQ2NIUk8y
LXNvTmp6MXMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA3IAw
MA0GCSqGSIb3DQEBCwUAA4IBAQA9bXvStqrXJI3qG7b+3LS/z1s7PNw140MnlEQO
m77zpf7rNMBFfThJU/T0GpHOyB6LdfoQowYPxXxeESkDgDBo2j4PMJ7pvOi0uAKy
pI69shWJtPeiwfPz2X6qw0ZLt4Bn9G2zfVA2pehPY7L1AT1FYc65kUfnMZtL/09m
U93b0L5Ywxtre9HLkFbn70jTb0we3CnSgo/9bcIVGpQs2E0YfGwjUgUoLnOhZ/2e
ubHAEIjg6tFP0SZ4/TsyXsB8/a4pvjqA9B4YXRVCGBTtEvzP/eKyAOBp/6TkWv6E
yVFlvF78+5IxLo2LGP44uytIPx1SoEErOKcY0jtPaLqSjFgV
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:19:57 2025 by rpki-client