Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/iemZgrJ0CWXw5YXev0b4yqZczUM.roa
File: iemZgrJ0CWXw5YXev0b4yqZczUM.roa (raw, json)
Hash identifier: d3Th8x9tzwkANjoeImBkiPxr25e69S6J+ts6o0+Zzu0=
Subject key identifier: 89:E9:99:82:B2:74:09:65:F0:E5:85:DE:BF:46:F8:CA:A6:5C:CD:43
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1206
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/iemZgrJ0CWXw5YXev0b4yqZczUM.roa
Signing time: Mon 26 Aug 2024 05:18:11 +0000
ROA not before: Mon 26 Aug 2024 05:18:11 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 198949
IP address blocks: 210.61.3.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:36:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4614 (0x1206)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 26 05:18:11 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=89E99982B2740965F0E585DEBF46F8CAA65CCD43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:e1:35:31:17:57:bd:e3:6d:e2:ac:29:e7:54:
2d:20:31:ce:41:2d:47:cf:b4:c6:a1:95:6b:49:c9:
f1:42:cf:c8:75:72:56:9b:d4:d9:ca:3e:70:b9:8d:
ab:54:79:ac:39:34:4b:0b:32:4a:8e:bc:f2:df:b2:
5e:46:be:9c:c2:18:85:62:3c:79:5c:1c:b7:41:3d:
a0:4e:53:bc:09:e2:21:6e:34:04:83:62:c0:63:5b:
6c:d0:8c:8d:d7:ed:5d:d7:ce:af:8a:5a:f5:d6:7c:
9a:7e:1a:66:4a:67:ec:e4:1a:db:ec:a5:6a:25:a0:
0b:77:06:77:a9:e9:d3:57:06:3e:3d:89:b3:40:90:
16:05:d4:c1:4f:93:8d:14:cb:81:70:94:0c:d9:d2:
65:3e:d7:de:4a:de:73:c4:5e:d2:82:7c:70:22:1a:
0c:6b:9b:11:17:e4:ff:ed:c6:dc:59:f6:b5:e5:6e:
b8:be:74:31:49:3f:87:96:09:d0:b4:7a:d1:f2:4e:
28:1f:81:34:fd:50:d8:94:72:4a:94:83:3d:72:d6:
80:c1:39:c6:10:0f:1f:d4:05:79:8d:ac:7f:60:6f:
e4:57:0c:08:bc:3e:86:47:b5:ec:85:83:66:d9:22:
24:a3:02:02:f0:8c:b7:56:bc:1d:72:12:95:5f:55:
00:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:E9:99:82:B2:74:09:65:F0:E5:85:DE:BF:46:F8:CA:A6:5C:CD:43
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/iemZgrJ0CWXw5YXev0b4yqZczUM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.61.3.0/24
Signature Algorithm: sha256WithRSAEncryption
c9:ee:76:a6:9d:8b:b2:be:50:b0:38:bb:8a:9b:5c:32:74:ef:
9b:47:70:84:83:45:5e:5c:66:20:4c:fb:76:c1:1e:49:2d:66:
2e:8a:a8:63:e3:49:dc:eb:83:23:a0:7a:f8:ab:05:54:21:34:
0b:40:a5:74:e5:f6:72:45:27:08:5a:77:38:66:ea:3b:15:c5:
b4:86:4d:3c:53:5e:22:f2:4e:ce:2d:c5:c1:6a:85:56:40:2c:
4d:84:a4:03:0e:0e:59:20:b2:5b:92:06:e0:61:f4:3d:76:cd:
2b:7c:ff:0a:39:61:b0:f2:0b:1d:c6:03:29:c5:2b:17:e0:fb:
9b:3e:96:43:1c:30:4b:94:91:71:20:f3:c1:82:9c:c0:56:ea:
5c:ed:c6:0c:c7:58:d9:3d:a6:29:e0:87:c0:95:1f:a2:8c:e6:
57:32:09:c7:0a:91:6d:ec:ad:e4:fe:d3:74:83:a6:cb:b0:8a:
8d:7e:b9:3a:ea:f6:9d:53:0e:c5:8b:7e:76:be:23:54:fe:2b:
e8:57:31:a1:6f:4d:a5:73:8c:4d:2d:3c:58:88:e7:99:52:ca:
73:c4:b6:60:fa:ba:62:b9:89:20:94:e0:1f:e4:36:4e:96:fe:
39:d5:f8:8d:cc:f1:74:01:c9:44:92:ee:b2:ba:18:2c:1a:91:
20:d2:bb:dd
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICEgYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA4MjYw
NTE4MTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg5RTk5OTgyQjI3NDA5
NjVGMEU1ODVERUJGNDZGOENBQTY1Q0NENDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDu4TUxF1e9423irCnnVC0gMc5BLUfPtMahlWtJyfFCz8h1clab
1NnKPnC5jatUeaw5NEsLMkqOvPLfsl5GvpzCGIViPHlcHLdBPaBOU7wJ4iFuNASD
YsBjW2zQjI3X7V3Xzq+KWvXWfJp+GmZKZ+zkGtvspWoloAt3Bnep6dNXBj49ibNA
kBYF1MFPk40Uy4FwlAzZ0mU+195K3nPEXtKCfHAiGgxrmxEX5P/txtxZ9rXlbri+
dDFJP4eWCdC0etHyTigfgTT9UNiUckqUgz1y1oDBOcYQDx/UBXmNrH9gb+RXDAi8
PoZHteyFg2bZIiSjAgLwjLdWvB1yEpVfVQCrAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUiemZgrJ0CWXw5YXev0b4yqZczUMwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9pZW1aZ3JKMENXWHc1WVhldjBi
NHlxWmN6VU0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0j0D
MA0GCSqGSIb3DQEBCwUAA4IBAQDJ7namnYuyvlCwOLuKm1wydO+bR3CEg0VeXGYg
TPt2wR5JLWYuiqhj40nc64MjoHr4qwVUITQLQKV05fZyRScIWnc4Zuo7FcW0hk08
U14i8k7OLcXBaoVWQCxNhKQDDg5ZILJbkgbgYfQ9ds0rfP8KOWGw8gsdxgMpxSsX
4PubPpZDHDBLlJFxIPPBgpzAVupc7cYMx1jZPaYp4IfAlR+ijOZXMgnHCpFt7K3k
/tN0g6bLsIqNfrk66vadUw7Fi352viNU/ivoVzGhb02lc4xNLTxYiOeZUspzxLZg
+rpiuYkglOAf5DZOlv451fiNzPF0AclEku6yuhgsGpEg0rvd
-----END CERTIFICATE-----
Generated at Sun Feb 16 15:20:21 2025 by rpki-client