Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/jbH-mp7HdwMfpQCrqBOVgh_YMUY.roa
File: jbH-mp7HdwMfpQCrqBOVgh_YMUY.roa (raw, json)
Hash identifier: YAjurtCxmBLabr8ixwpNP5QG6izdN3UaRT/e/2N2McY=
Subject key identifier: 8D:B1:FE:9A:9E:C7:77:03:1F:A5:00:AB:A8:13:95:82:1F:D8:31:46
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 119E
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/jbH-mp7HdwMfpQCrqBOVgh_YMUY.roa
Signing time: Mon 26 Aug 2024 05:17:44 +0000
ROA not before: Mon 26 Aug 2024 05:17:44 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9678
IP address blocks: 203.66.151.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:35:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4510 (0x119e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 26 05:17:44 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=8DB1FE9A9EC777031FA500ABA81395821FD83146
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:82:7a:64:73:fc:3d:d6:9d:39:93:95:9f:d7:
b5:2e:84:cf:06:b6:e7:2c:24:b2:10:0e:3e:30:b8:
b8:d5:2d:11:c4:66:20:7c:d5:a3:93:3e:1f:da:52:
a2:59:37:aa:74:9e:7b:f4:53:51:56:89:14:d9:1b:
9e:2a:4c:64:3c:5e:6e:41:0e:36:68:85:1c:53:1f:
71:be:8b:10:1f:b0:a5:ca:a3:96:00:91:4a:5a:1e:
05:9e:ef:f6:ae:5f:eb:f3:75:13:ae:63:34:de:c5:
47:05:4c:21:a2:d3:dc:59:0e:c4:7a:01:05:0c:20:
44:c6:a4:d7:8d:2a:c4:49:cb:c4:34:a7:32:5e:77:
af:27:1c:72:3f:83:28:9d:5e:45:a1:f4:a8:08:fd:
fd:5d:16:71:79:b4:01:aa:a7:0e:b7:fa:2e:cc:c1:
34:cc:08:fe:8e:ec:28:3c:c1:2a:d6:34:27:fb:25:
ce:d5:90:2c:81:36:98:92:62:d9:45:36:f8:c9:9c:
1c:a1:9f:ed:fa:d3:19:8a:9d:40:ba:f4:60:e1:a8:
ca:dc:af:3d:2a:7e:0b:98:4c:ef:a1:ae:9b:2a:14:
18:7a:d7:dc:6c:17:75:4e:54:9a:b7:fb:81:ab:d4:
1c:bc:6d:87:8a:63:43:1d:0b:bb:51:e4:a0:52:df:
62:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:B1:FE:9A:9E:C7:77:03:1F:A5:00:AB:A8:13:95:82:1F:D8:31:46
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/jbH-mp7HdwMfpQCrqBOVgh_YMUY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.66.151.0/24
Signature Algorithm: sha256WithRSAEncryption
d3:a6:e5:f9:cd:95:9b:fc:57:0b:a9:46:72:77:fb:ad:b4:36:
df:85:88:82:55:07:3f:13:73:84:dc:56:8b:d1:db:cc:fd:f7:
40:80:ec:57:8e:d1:a4:aa:e0:95:eb:80:44:cf:d2:a4:c4:c2:
3b:b6:27:cf:f9:61:7f:80:e6:ea:90:e7:62:9f:4e:95:38:25:
32:8a:df:b6:28:6b:43:57:e3:3b:c9:49:a6:5a:00:23:6a:8f:
b9:01:6e:df:16:d9:ad:9c:a5:53:36:1d:46:8a:c0:c9:84:f6:
22:a8:1f:2e:eb:0f:59:98:03:f5:cf:f2:73:f9:2b:7d:6b:8a:
89:f3:78:21:40:dc:7d:c9:fe:fb:9d:ea:74:1a:60:90:e3:17:
c2:fe:de:82:98:f4:ee:dd:b4:dd:81:40:3d:7f:e0:82:b7:e7:
af:33:22:43:d8:56:73:32:6d:79:d1:14:e4:0f:d8:cd:f3:60:
cd:17:23:ae:be:90:f1:18:2f:33:ce:4c:31:53:02:cf:61:df:
28:0e:30:3d:f6:b2:ce:15:af:1a:b3:d3:c1:3a:44:58:8e:ee:
7d:32:5d:40:09:2f:b1:46:61:5e:4e:12:be:a3:b1:6c:e8:42:
6e:26:a7:98:b6:eb:99:15:bb:89:d3:e6:30:b1:f6:8e:3c:75:
35:b8:c3:89
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICEZ4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA4MjYw
NTE3NDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhEQjFGRTlBOUVDNzc3
MDMxRkE1MDBBQkE4MTM5NTgyMUZEODMxNDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQClgnpkc/w91p05k5Wf17UuhM8GtucsJLIQDj4wuLjVLRHEZiB8
1aOTPh/aUqJZN6p0nnv0U1FWiRTZG54qTGQ8Xm5BDjZohRxTH3G+ixAfsKXKo5YA
kUpaHgWe7/auX+vzdROuYzTexUcFTCGi09xZDsR6AQUMIETGpNeNKsRJy8Q0pzJe
d68nHHI/gyidXkWh9KgI/f1dFnF5tAGqpw63+i7MwTTMCP6O7Cg8wSrWNCf7Jc7V
kCyBNpiSYtlFNvjJnByhn+360xmKnUC69GDhqMrcrz0qfguYTO+hrpsqFBh619xs
F3VOVJq3+4Gr1By8bYeKY0MdC7tR5KBS32INAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUjbH+mp7HdwMfpQCrqBOVgh/YMUYwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9qYkgtbXA3SGR3TWZwUUNycUJP
VmdoX1lNVVkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy0KX
MA0GCSqGSIb3DQEBCwUAA4IBAQDTpuX5zZWb/FcLqUZyd/uttDbfhYiCVQc/E3OE
3FaL0dvM/fdAgOxXjtGkquCV64BEz9KkxMI7tifP+WF/gObqkOdin06VOCUyit+2
KGtDV+M7yUmmWgAjao+5AW7fFtmtnKVTNh1GisDJhPYiqB8u6w9ZmAP1z/Jz+St9
a4qJ83ghQNx9yf77nep0GmCQ4xfC/t6CmPTu3bTdgUA9f+CCt+evMyJD2FZzMm15
0RTkD9jN82DNFyOuvpDxGC8zzkwxUwLPYd8oDjA99rLOFa8as9PBOkRYju59Ml1A
CS+xRmFeThK+o7Fs6EJuJqeYtuuZFbuJ0+YwsfaOPHU1uMOJ
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:28:31 2025 by rpki-client