Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/bjwiz-OUIG1HvXkQ2g980DG3Aic.roa
File: bjwiz-OUIG1HvXkQ2g980DG3Aic.roa (raw, json)
Hash identifier: iB9i0rpJy9+Xktj+zVV/M6f1lQAaQZ9DVfxgAJvWDL0=
Subject key identifier: 6E:3C:22:CF:E3:94:20:6D:47:BD:79:10:DA:0F:7C:D0:31:B7:02:27
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 117B
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/bjwiz-OUIG1HvXkQ2g980DG3Aic.roa
Signing time: Mon 26 Aug 2024 05:17:34 +0000
ROA not before: Mon 26 Aug 2024 05:17:34 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 220.128.64.0/18 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:35:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4475 (0x117b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 26 05:17:34 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6E3C22CFE394206D47BD7910DA0F7CD031B70227
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:c1:7e:60:f8:47:dd:6e:91:62:29:34:ef:36:
86:ae:64:65:9d:61:de:5e:fd:c3:c6:cf:e6:94:ed:
b3:f5:5d:52:43:a4:f9:dd:1a:f4:c0:ce:0b:d1:cc:
9c:bf:6d:a6:3d:fd:55:79:85:dd:b3:e3:12:ad:72:
88:89:33:fa:80:b1:b0:9b:33:45:ef:a5:1b:33:b3:
ed:62:5a:a2:b3:b4:2a:57:c7:3e:0b:19:2f:f3:bf:
d3:18:f7:fd:ff:67:cf:ee:98:d6:3f:cb:99:1c:4f:
c2:ef:dd:07:e0:c0:52:22:66:f1:dc:ba:8c:31:0e:
d9:7d:a7:5e:42:d9:72:e4:8b:f8:45:48:8a:90:ac:
20:1e:88:ed:c2:26:d0:f1:d9:42:91:63:e9:eb:d6:
bf:11:af:70:0d:a2:8a:2f:a3:84:3b:71:b7:b3:e2:
5d:9f:49:95:98:2b:16:e7:01:db:51:8b:bc:3a:75:
e2:dd:ba:46:f5:d2:b8:f7:ca:d2:ee:30:f1:6f:5d:
a7:14:94:9e:dc:84:15:72:90:71:28:0f:8d:48:26:
a0:0e:ad:b5:c0:f2:70:94:9f:9f:be:28:47:9a:b9:
9a:7f:3b:f8:91:7d:d5:fe:da:47:92:c6:a1:26:f7:
1b:ee:ec:7a:9f:06:d2:6a:70:96:7a:70:41:3b:4a:
5a:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:3C:22:CF:E3:94:20:6D:47:BD:79:10:DA:0F:7C:D0:31:B7:02:27
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/bjwiz-OUIG1HvXkQ2g980DG3Aic.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.64.0/18
Signature Algorithm: sha256WithRSAEncryption
bf:59:74:7e:03:6b:4f:ee:9d:2e:6f:ee:d5:f2:cc:d9:34:dd:
ac:e8:92:c4:c0:06:6b:84:27:73:fb:19:b4:26:63:83:0c:c7:
07:7b:45:a2:f4:1d:af:a5:34:7f:ef:c7:98:61:4a:61:66:73:
6c:be:82:00:23:e1:16:e2:06:f4:ed:eb:7f:33:a0:a2:25:da:
24:9d:2f:fa:97:13:41:6c:ef:de:c7:17:08:ac:67:42:84:c1:
b3:2f:fb:1d:6a:1a:cd:ad:25:18:1d:3f:d8:19:77:16:67:91:
ba:b3:4d:97:be:c6:39:b7:71:65:b0:1c:fe:8f:86:82:cd:b7:
e4:aa:1a:94:2a:d7:8d:6a:a8:59:c1:16:de:f3:f3:14:4c:32:
69:61:66:fb:eb:e4:71:8e:1e:92:7a:78:8e:21:aa:4c:82:1f:
1b:a8:a6:4c:b3:64:44:a4:93:35:60:20:f0:c1:38:58:d3:e2:
b9:30:08:f3:37:b2:76:34:7f:8e:bf:ed:43:04:ae:3e:1e:b0:
06:16:23:a3:d8:f3:ce:d6:b6:27:1e:de:89:43:46:a8:c5:0f:
03:79:f6:b5:bd:96:c1:8d:e7:f1:65:5a:a1:a3:45:da:a0:75:
a7:99:12:3b:83:82:b8:2b:39:03:33:c6:7f:8f:1a:42:13:d6:
0c:2e:d1:16
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICEXswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA4MjYw
NTE3MzRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZFM0MyMkNGRTM5NDIw
NkQ0N0JENzkxMERBMEY3Q0QwMzFCNzAyMjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDhwX5g+EfdbpFiKTTvNoauZGWdYd5e/cPGz+aU7bP1XVJDpPnd
GvTAzgvRzJy/baY9/VV5hd2z4xKtcoiJM/qAsbCbM0XvpRszs+1iWqKztCpXxz4L
GS/zv9MY9/3/Z8/umNY/y5kcT8Lv3QfgwFIiZvHcuowxDtl9p15C2XLki/hFSIqQ
rCAeiO3CJtDx2UKRY+nr1r8Rr3ANooovo4Q7cbez4l2fSZWYKxbnAdtRi7w6deLd
ukb10rj3ytLuMPFvXacUlJ7chBVykHEoD41IJqAOrbXA8nCUn5++KEeauZp/O/iR
fdX+2keSxqEm9xvu7HqfBtJqcJZ6cEE7SlpNAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUbjwiz+OUIG1HvXkQ2g980DG3AicwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9iandpei1PVUlHMUh2WGtRMmc5
ODBERzNBaWMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQG3IBA
MA0GCSqGSIb3DQEBCwUAA4IBAQC/WXR+A2tP7p0ub+7V8szZNN2s6JLEwAZrhCdz
+xm0JmODDMcHe0Wi9B2vpTR/78eYYUphZnNsvoIAI+EW4gb07et/M6CiJdoknS/6
lxNBbO/exxcIrGdChMGzL/sdahrNrSUYHT/YGXcWZ5G6s02XvsY5t3FlsBz+j4aC
zbfkqhqUKteNaqhZwRbe8/MUTDJpYWb76+Rxjh6SeniOIapMgh8bqKZMs2REpJM1
YCDwwThY0+K5MAjzN7J2NH+Ov+1DBK4+HrAGFiOj2PPO1rYnHt6JQ0aoxQ8Defa1
vZbBjefxZVqho0XaoHWnmRI7g4K4KzkDM8Z/jxpCE9YMLtEW
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:18:23 2025 by rpki-client