Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/a2wzN1lNopjnl-79aZGruaSmtNM.roa
File: a2wzN1lNopjnl-79aZGruaSmtNM.roa (raw, json)
Hash identifier: nQ3vToOqA1uiHbLI1ng4iu49/hCQyEl43jSHB2p7AYs=
Subject key identifier: 6B:6C:33:37:59:4D:A2:98:E7:97:EE:FD:69:91:AB:B9:A4:A6:B4:D3
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1485
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/a2wzN1lNopjnl-79aZGruaSmtNM.roa
Signing time: Mon 10 Feb 2025 14:35:00 +0000
ROA not before: Mon 10 Feb 2025 14:35:00 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17714
IP address blocks: 203.160.237.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Feb 2025 23:44:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5253 (0x1485)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:35:00 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6B6C3337594DA298E797EEFD6991ABB9A4A6B4D3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:0f:3a:22:1f:20:a5:b8:82:d6:a3:1f:60:ce:
22:91:1b:28:75:6b:6d:1b:27:24:88:b8:64:87:2d:
80:1c:0e:c6:de:ca:87:a1:57:fa:a7:92:ce:5f:50:
3e:ff:b0:0e:b0:1e:b1:f9:d5:2f:c1:00:be:c3:c2:
0c:80:bf:88:31:9a:7e:b6:0a:cd:c6:ec:07:c3:d5:
6c:60:49:08:2f:6b:50:43:6b:6a:55:a1:7e:ac:85:
e4:1b:fc:03:5e:56:f8:e8:eb:68:93:55:c9:90:62:
d0:f3:27:f5:a0:7d:3a:b7:75:c9:df:c2:19:78:7c:
61:97:62:6c:a2:c5:42:bc:c4:ec:7c:2f:35:c4:cf:
1c:01:ed:b7:67:43:23:ff:70:1b:99:9a:ed:c1:8a:
42:52:d5:1a:e9:5f:26:60:c9:c3:c8:80:99:ac:79:
af:94:38:d8:e4:df:fb:47:0b:c4:7d:dd:f1:ab:80:
66:bb:17:f3:4d:c3:96:4d:f5:93:09:57:bc:bf:b7:
b4:46:bf:5c:8d:94:09:ba:c3:16:30:59:0c:d2:9d:
9d:09:d6:00:a0:4a:43:89:a3:03:ed:4f:5e:75:2f:
4e:b0:91:7e:99:aa:69:3e:f2:d9:3a:75:82:40:e7:
bb:f4:b1:d8:0c:db:38:4f:43:a6:33:de:df:f1:6e:
64:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:6C:33:37:59:4D:A2:98:E7:97:EE:FD:69:91:AB:B9:A4:A6:B4:D3
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/a2wzN1lNopjnl-79aZGruaSmtNM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.160.237.0/24
Signature Algorithm: sha256WithRSAEncryption
63:7a:d7:fa:61:0c:9c:5e:89:4c:23:a2:b5:4a:a9:00:be:93:
5b:4b:ac:2c:dd:f4:d4:cc:5a:1b:8d:57:98:54:1e:0b:df:cd:
5d:a7:6d:00:fc:ef:a8:00:05:bc:e2:48:d9:91:d9:d4:8c:ce:
ec:57:f2:e5:1b:6a:13:59:2f:d2:8a:4d:ec:f2:61:fe:14:c7:
6f:c7:11:ed:f1:02:ee:96:09:93:6f:33:46:98:da:cd:3e:b0:
ea:8f:30:85:11:b5:02:1c:67:51:10:f4:ba:96:97:24:e1:60:
c0:f6:36:2c:e8:30:f5:4a:7a:eb:66:84:a2:3a:30:aa:60:c8:
a9:0a:c6:e2:54:68:44:70:aa:16:b7:65:c4:8d:7b:3c:f2:05:
02:f2:a5:20:e4:5f:aa:71:4c:4d:2d:83:95:5a:61:57:65:09:
88:49:e4:a6:50:7e:40:11:f2:3d:dd:76:d0:77:1d:4f:f0:21:
7c:12:94:af:07:7a:ec:a4:ed:a6:af:30:63:f0:01:67:99:f4:
a5:4c:77:82:7a:2b:12:c4:10:45:04:f0:cc:75:4b:44:9c:34:
f0:37:d7:a1:57:1b:75:bd:63:28:ef:3e:2c:25:86:03:b6:1e:
23:3b:e7:6b:3b:a1:0a:ab:51:0e:fe:34:ad:bd:4d:72:7e:64:
f8:24:b7:9b
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICFIUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTAx
NDM1MDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZCNkMzMzM3NTk0REEy
OThFNzk3RUVGRDY5OTFBQkI5QTRBNkI0RDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC8DzoiHyCluILWox9gziKRGyh1a20bJySIuGSHLYAcDsbeyoeh
V/qnks5fUD7/sA6wHrH51S/BAL7DwgyAv4gxmn62Cs3G7AfD1WxgSQgva1BDa2pV
oX6sheQb/ANeVvjo62iTVcmQYtDzJ/WgfTq3dcnfwhl4fGGXYmyixUK8xOx8LzXE
zxwB7bdnQyP/cBuZmu3BikJS1RrpXyZgycPIgJmsea+UONjk3/tHC8R93fGrgGa7
F/NNw5ZN9ZMJV7y/t7RGv1yNlAm6wxYwWQzSnZ0J1gCgSkOJowPtT151L06wkX6Z
qmk+8tk6dYJA57v0sdgM2zhPQ6Yz3t/xbmTFAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUa2wzN1lNopjnl+79aZGruaSmtNMwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9hMnd6TjFsTm9wam5sLTc5YVpH
cnVhU210Tk0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy6Dt
MA0GCSqGSIb3DQEBCwUAA4IBAQBjetf6YQycXolMI6K1SqkAvpNbS6ws3fTUzFob
jVeYVB4L381dp20A/O+oAAW84kjZkdnUjM7sV/LlG2oTWS/Sik3s8mH+FMdvxxHt
8QLulgmTbzNGmNrNPrDqjzCFEbUCHGdREPS6lpck4WDA9jYs6DD1SnrrZoSiOjCq
YMipCsbiVGhEcKoWt2XEjXs88gUC8qUg5F+qcUxNLYOVWmFXZQmISeSmUH5AEfI9
3XbQdx1P8CF8EpSvB3rspO2mrzBj8AFnmfSlTHeCeisSxBBFBPDMdUtEnDTwN9eh
Vxt1vWMo7z4sJYYDth4jO+drO6EKq1EO/jStvU1yfmT4JLeb
-----END CERTIFICATE-----
Generated at Wed Apr 16 12:27:20 2025 by rpki-client