Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/_kmQs9h_ZmYZMJYk0seVK3gSNrg.roa
File: _kmQs9h_ZmYZMJYk0seVK3gSNrg.roa (raw, json)
Hash identifier: M2aF4B4oGVBnSWESrh22T3zdrFcux/AUmyv2aY2yhjk=
Subject key identifier: FE:49:90:B3:D8:7F:66:66:19:30:96:24:D2:C7:95:2B:78:12:36:B8
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1525
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/_kmQs9h_ZmYZMJYk0seVK3gSNrg.roa
Signing time: Tue 11 Feb 2025 23:44:22 +0000
ROA not before: Tue 11 Feb 2025 23:44:22 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 210.241.224.0/19 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5413 (0x1525)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:22 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=FE4990B3D87F666619309624D2C7952B781236B8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:1b:8d:72:ef:18:63:4a:e2:68:78:95:37:0f:
11:6f:6b:fe:a6:fc:a3:62:7c:49:91:83:5d:79:62:
e7:5b:ca:87:a0:c8:5e:7e:29:56:e3:0c:55:e4:db:
44:79:f0:fd:05:35:91:72:47:4a:fe:f6:6f:b6:e7:
ab:18:ba:75:28:0e:7d:38:72:97:35:16:50:05:d5:
ad:df:21:65:c1:ad:ca:e6:a1:14:02:9f:e6:d3:22:
6f:b4:15:17:59:28:d9:96:f5:8b:e0:20:9a:c9:1a:
6b:0a:20:f6:76:43:ad:eb:1f:46:b3:20:36:1b:5c:
b1:d5:2d:8b:7c:6c:5b:5f:17:5e:b7:43:1e:82:b8:
6d:2d:e8:be:4e:42:f0:20:92:87:49:e6:22:e3:a3:
5e:ba:9b:cf:3a:b4:f0:76:06:2d:d0:d1:7a:c4:37:
ba:3f:05:7b:13:1f:7a:7a:3f:f7:db:97:3b:3c:ab:
03:83:46:50:16:80:bf:f8:92:ca:2b:05:cb:3c:59:
67:7d:98:eb:ac:de:1b:7c:96:dc:f7:5e:a2:46:08:
c8:59:37:3b:e3:bd:8e:3d:4a:f5:53:d8:ad:9d:e5:
f4:fa:93:44:b5:51:e1:0f:87:d5:d6:74:de:31:03:
f2:42:e0:f9:d2:69:da:e5:09:f7:98:42:88:f2:e1:
02:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:49:90:B3:D8:7F:66:66:19:30:96:24:D2:C7:95:2B:78:12:36:B8
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/_kmQs9h_ZmYZMJYk0seVK3gSNrg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.241.224.0/19
Signature Algorithm: sha256WithRSAEncryption
11:ba:24:d1:73:ca:e0:d8:6f:ac:3f:db:22:e6:1d:e2:4b:e4:
47:21:24:84:9a:8f:5c:68:ac:fd:9b:6e:dd:a2:02:e1:84:9f:
da:f7:75:e7:66:16:e3:15:9f:4c:3d:f0:83:cd:52:0c:c0:97:
2d:98:94:22:8a:17:16:ec:bd:a0:a7:1c:e7:12:f6:fe:68:cb:
8b:7d:c2:6a:6c:e2:c8:29:b3:7f:8a:92:2d:e1:45:bc:7d:1c:
90:bd:9e:de:e9:ed:51:68:36:c0:a8:27:72:97:47:46:0a:42:
14:6f:c2:ec:e3:d8:bb:a6:2f:71:c8:d3:3e:4a:27:c8:9d:bb:
73:5e:85:c4:43:f5:15:af:22:9e:3f:0a:ac:2b:af:b5:76:de:
76:d7:cc:af:01:88:cc:8c:5d:68:e9:b2:26:e2:8a:9b:c2:11:
e3:51:d4:2c:32:2d:38:e4:05:e1:67:29:96:15:84:4b:41:43:
be:b1:25:eb:90:ee:bd:c5:69:28:cb:59:21:d7:ab:93:e9:8e:
54:57:52:3b:23:43:0f:c7:ff:4c:07:c5:5c:ae:a2:f7:74:38:
01:4c:1c:3c:ff:b7:e3:fc:79:91:31:cb:19:07:bd:38:a3:fa:
e7:80:e5:8e:a5:c2:aa:b1:2d:e6:a6:53:3b:62:9a:7a:4e:50:
e7:01:26:eb
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICFSUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTEy
MzQ0MjJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEZFNDk5MEIzRDg3RjY2
NjYxOTMwOTYyNEQyQzc5NTJCNzgxMjM2QjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCvG41y7xhjSuJoeJU3DxFva/6m/KNifEmRg115YudbyoegyF5+
KVbjDFXk20R58P0FNZFyR0r+9m+256sYunUoDn04cpc1FlAF1a3fIWXBrcrmoRQC
n+bTIm+0FRdZKNmW9YvgIJrJGmsKIPZ2Q63rH0azIDYbXLHVLYt8bFtfF163Qx6C
uG0t6L5OQvAgkodJ5iLjo166m886tPB2Bi3Q0XrEN7o/BXsTH3p6P/fblzs8qwOD
RlAWgL/4ksorBcs8WWd9mOus3ht8ltz3XqJGCMhZNzvjvY49SvVT2K2d5fT6k0S1
UeEPh9XWdN4xA/JC4PnSadrlCfeYQojy4QKxAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQU/kmQs9h/ZmYZMJYk0seVK3gSNrgwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9fa21RczloX1ptWVpNSllrMHNl
VkszZ1NOcmcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQF0vHg
MA0GCSqGSIb3DQEBCwUAA4IBAQARuiTRc8rg2G+sP9si5h3iS+RHISSEmo9caKz9
m27dogLhhJ/a93XnZhbjFZ9MPfCDzVIMwJctmJQiihcW7L2gpxznEvb+aMuLfcJq
bOLIKbN/ipIt4UW8fRyQvZ7e6e1RaDbAqCdyl0dGCkIUb8Ls49i7pi9xyNM+SifI
nbtzXoXEQ/UVryKePwqsK6+1dt5218yvAYjMjF1o6bIm4oqbwhHjUdQsMi045AXh
ZymWFYRLQUO+sSXrkO69xWkoy1kh16uT6Y5UV1I7I0MPx/9MB8VcrqL3dDgBTBw8
/7fj/HmRMcsZB704o/rngOWOpcKqsS3mplM7Ypp6TlDnASbr
-----END CERTIFICATE-----
Generated at Wed Apr 16 12:40:51 2025 by rpki-client