Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/aY7GVlzGDLgUtnWMQzpyE6UExF4.roa
File: aY7GVlzGDLgUtnWMQzpyE6UExF4.roa (raw, json)
Hash identifier: gvn09WUCTSAp9iz2FIHHdwAxU5YNfBqk9t0vazGHc8o=
Subject key identifier: 69:8E:C6:56:5C:C6:0C:B8:14:B6:75:8C:43:3A:72:13:A5:04:C4:5E
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1596
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/aY7GVlzGDLgUtnWMQzpyE6UExF4.roa
Signing time: Tue 11 Feb 2025 23:44:46 +0000
ROA not before: Tue 11 Feb 2025 23:44:46 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 137280
IP address blocks: 203.69.33.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:23:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5526 (0x1596)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:46 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=698EC6565CC60CB814B6758C433A7213A504C45E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:96:93:19:bb:33:ba:74:f9:de:90:b9:11:7b:
e9:9d:71:05:af:bf:b3:db:de:d7:8e:74:4c:f1:03:
d1:6e:b5:25:67:b6:9d:c6:c4:24:97:79:75:09:32:
e5:67:c5:89:73:cc:28:00:3c:7e:c8:4c:fd:21:70:
b9:fd:54:ca:4e:59:8e:5b:74:b1:89:3f:27:39:90:
ef:0d:36:5d:1e:df:a7:72:8f:dc:33:e9:63:3c:f5:
48:24:5f:de:ae:46:0e:52:7c:66:f8:ff:47:3c:00:
29:3a:07:8b:3d:df:a9:60:86:d7:60:ab:e1:83:b6:
18:ca:e2:08:52:e5:62:e9:2b:06:15:db:69:43:62:
9b:f2:81:3c:5d:50:14:6e:39:60:e4:61:e0:06:60:
86:09:35:26:d0:d3:3f:95:a1:23:d8:c3:45:b7:ec:
7b:ab:b3:66:96:18:da:37:f2:ea:4a:d3:f9:ea:8e:
28:d8:6f:7d:1d:f6:8a:29:9b:31:60:fb:0e:f8:9e:
c4:69:e2:8b:eb:71:6d:45:aa:c6:58:4a:d8:75:b5:
d5:af:87:a1:6e:2d:91:d5:ef:41:a9:50:48:29:47:
e3:46:40:79:b2:17:61:a3:f1:3d:8c:b2:dd:3c:33:
be:2f:9f:c4:61:6d:73:8e:3b:c1:de:eb:45:b9:01:
49:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:8E:C6:56:5C:C6:0C:B8:14:B6:75:8C:43:3A:72:13:A5:04:C4:5E
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/aY7GVlzGDLgUtnWMQzpyE6UExF4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.69.33.0/24
Signature Algorithm: sha256WithRSAEncryption
c5:94:73:5a:72:b6:c2:6b:f6:a1:fd:17:52:54:3f:f0:0b:81:
2d:cf:3b:bf:7a:40:b9:8b:5d:3d:eb:fb:1f:2c:a0:4d:73:98:
7a:ab:72:db:2b:4b:de:0d:92:df:91:cd:2e:5c:76:1c:5c:c7:
d4:ae:aa:98:00:b8:b8:bc:50:36:f1:69:a8:56:47:f8:2b:8b:
74:08:58:89:0d:18:8d:ac:aa:d4:e9:9b:d9:a8:c3:1e:f6:4f:
64:a1:9e:78:ce:28:7f:4f:c6:7b:f5:fd:f8:a3:09:45:5f:fd:
8e:56:dd:15:da:f0:ec:9e:92:6c:66:5a:aa:dd:93:9b:f0:e4:
b9:f7:f8:45:6c:46:3d:92:07:d8:b7:c8:6a:6c:c9:80:c8:65:
64:01:c5:2b:45:a2:28:18:ca:73:fe:a8:f1:43:3f:ea:5e:69:
77:54:59:5c:15:17:47:b7:68:92:7f:79:54:19:dc:c1:d1:d0:
6c:92:60:a8:7d:28:d6:b2:c0:7a:68:ef:ae:3c:e8:35:45:99:
0f:69:d8:91:d4:49:cc:2c:ad:0a:4b:08:19:9b:c4:fc:54:20:
ec:47:d8:ee:25:1d:f9:af:68:bd:a5:ba:bb:3d:15:3f:5d:57:
d0:c0:7e:c1:eb:1f:08:55:36:9c:26:3d:40:a1:63:fd:f6:a2:
0b:f4:99:d2
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICFZYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTEy
MzQ0NDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY5OEVDNjU2NUNDNjBD
QjgxNEI2NzU4QzQzM0E3MjEzQTUwNEM0NUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQChlpMZuzO6dPnekLkRe+mdcQWvv7Pb3teOdEzxA9FutSVntp3G
xCSXeXUJMuVnxYlzzCgAPH7ITP0hcLn9VMpOWY5bdLGJPyc5kO8NNl0e36dyj9wz
6WM89UgkX96uRg5SfGb4/0c8ACk6B4s936lghtdgq+GDthjK4ghS5WLpKwYV22lD
YpvygTxdUBRuOWDkYeAGYIYJNSbQ0z+VoSPYw0W37Hurs2aWGNo38upK0/nqjijY
b30d9oopmzFg+w74nsRp4ovrcW1FqsZYSth1tdWvh6FuLZHV70GpUEgpR+NGQHmy
F2Gj8T2Mst08M74vn8RhbXOOO8He60W5AUmrAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUaY7GVlzGDLgUtnWMQzpyE6UExF4wHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9hWTdHVmx6R0RMZ1V0bldNUXpw
eUU2VUV4RjQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy0Uh
MA0GCSqGSIb3DQEBCwUAA4IBAQDFlHNacrbCa/ah/RdSVD/wC4Etzzu/ekC5i109
6/sfLKBNc5h6q3LbK0veDZLfkc0uXHYcXMfUrqqYALi4vFA28WmoVkf4K4t0CFiJ
DRiNrKrU6ZvZqMMe9k9koZ54zih/T8Z79f34owlFX/2OVt0V2vDsnpJsZlqq3ZOb
8OS59/hFbEY9kgfYt8hqbMmAyGVkAcUrRaIoGMpz/qjxQz/qXml3VFlcFRdHt2iS
f3lUGdzB0dBskmCofSjWssB6aO+uPOg1RZkPadiR1EnMLK0KSwgZm8T8VCDsR9ju
JR35r2i9pbq7PRU/XVfQwH7B6x8IVTacJj1AoWP99qIL9JnS
-----END CERTIFICATE-----
Generated at Wed Apr 16 16:37:13 2025 by rpki-client