Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/mGRMjrz1LOn0BdhOHTIpV_Cmf3k.roa
File: mGRMjrz1LOn0BdhOHTIpV_Cmf3k.roa (raw, json)
Hash identifier: tTOSm5aF+Jk2iaqqFwvn81PWQgWvcdlaSeDQqd7PQRI=
Subject key identifier: 98:64:4C:8E:BC:F5:2C:E9:F4:05:D8:4E:1D:32:29:57:F0:A6:7F:79
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 14C8
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/mGRMjrz1LOn0BdhOHTIpV_Cmf3k.roa
Signing time: Mon 10 Feb 2025 14:35:16 +0000
ROA not before: Mon 10 Feb 2025 14:35:16 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 23675
IP address blocks: 203.66.102.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Feb 2025 23:44:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5320 (0x14c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:35:16 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=98644C8EBCF52CE9F405D84E1D322957F0A67F79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:80:82:62:3a:69:15:22:f8:57:68:3f:cb:a0:
a4:e6:af:0c:77:67:4b:b4:d9:34:51:0e:ba:1d:f9:
97:2a:60:79:5a:09:49:b0:de:5c:4f:53:c4:d7:6d:
0f:5a:c3:11:a8:d5:90:ee:0a:a9:8b:67:fc:ba:38:
f1:2e:ed:f4:7b:a6:97:60:d4:f4:b7:ea:bb:4b:62:
8b:e2:2e:7a:95:81:b5:3d:42:f4:96:5d:87:98:42:
26:11:82:38:7a:0e:f8:49:d3:fe:50:a9:57:cb:c3:
9c:e4:da:49:ff:6f:84:89:3d:97:0e:70:f7:cb:40:
67:27:6e:f1:6a:14:4f:4e:af:b4:c6:54:f6:7c:fd:
07:d2:d3:01:7d:a9:83:ea:7a:4a:d9:34:b4:d1:32:
b4:1e:83:91:8f:e0:0e:7e:3f:e8:c4:96:f9:96:e1:
52:cb:dc:ee:cd:54:b2:34:0e:e3:cc:73:84:18:2e:
6c:6f:92:06:fc:18:78:71:42:d7:7f:90:81:24:39:
3f:a8:e2:9b:12:59:07:79:31:f6:c8:8d:4c:e7:1d:
4d:2b:b4:f7:a8:b4:68:b4:b1:a6:08:fd:00:a9:65:
1c:96:be:d1:9b:a3:fd:77:d0:41:db:eb:cf:8f:7d:
f0:ef:44:55:45:88:d6:0b:d4:4f:5c:9e:af:e1:2a:
cb:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:64:4C:8E:BC:F5:2C:E9:F4:05:D8:4E:1D:32:29:57:F0:A6:7F:79
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/mGRMjrz1LOn0BdhOHTIpV_Cmf3k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.66.102.0/24
Signature Algorithm: sha256WithRSAEncryption
54:b5:de:51:e4:a5:18:a1:27:72:be:06:15:cd:c4:5a:49:ba:
e5:fb:c0:31:ec:04:67:b4:d2:85:f5:df:2a:2c:8b:11:5e:68:
f3:f7:5f:74:4b:61:5e:e6:70:bc:0c:8d:0a:3a:0c:4a:81:61:
b4:be:ca:e1:46:8f:ae:7b:cc:e3:73:ab:99:5f:3f:da:c1:09:
e2:3e:2a:14:05:1f:46:b7:c8:12:36:ba:11:6d:74:b9:34:18:
5a:41:28:5d:bc:63:63:5c:7d:8f:ce:9f:67:67:f0:e8:38:a8:
3a:a1:de:91:74:9b:5b:0f:c1:62:38:60:a4:aa:87:5d:c0:56:
c2:47:f3:6c:b0:f2:f2:49:f5:9a:b1:c8:f1:c5:c7:ae:e2:ce:
ff:53:ce:a2:12:7d:1f:5b:4d:07:bb:74:3e:49:f0:07:13:31:
b9:a6:90:1f:be:53:07:db:b2:27:2b:31:fd:8a:08:d8:5a:8d:
12:a1:cb:c6:20:a3:be:e2:7c:42:44:8d:63:b5:a2:b7:16:93:
00:00:c8:fb:d6:9e:f3:14:79:9c:03:ef:36:9d:8f:97:74:0f:
c8:ba:cf:73:d8:a7:6f:e7:d6:06:fa:9d:70:f8:9b:95:c6:b4:
ce:c1:fc:ed:92:23:54:77:fc:59:13:e5:8a:c9:a7:ff:91:9f:
03:e4:83:6d
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICFMgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTAx
NDM1MTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDk4NjQ0QzhFQkNGNTJD
RTlGNDA1RDg0RTFEMzIyOTU3RjBBNjdGNzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDRgIJiOmkVIvhXaD/LoKTmrwx3Z0u02TRRDrod+ZcqYHlaCUmw
3lxPU8TXbQ9awxGo1ZDuCqmLZ/y6OPEu7fR7ppdg1PS36rtLYoviLnqVgbU9QvSW
XYeYQiYRgjh6DvhJ0/5QqVfLw5zk2kn/b4SJPZcOcPfLQGcnbvFqFE9Or7TGVPZ8
/QfS0wF9qYPqekrZNLTRMrQeg5GP4A5+P+jElvmW4VLL3O7NVLI0DuPMc4QYLmxv
kgb8GHhxQtd/kIEkOT+o4psSWQd5MfbIjUznHU0rtPeotGi0saYI/QCpZRyWvtGb
o/130EHb68+PffDvRFVFiNYL1E9cnq/hKstNAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUmGRMjrz1LOn0BdhOHTIpV/Cmf3kwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9tR1JNanJ6MUxPbjBCZGhPSFRJ
cFZfQ21mM2sucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy0Jm
MA0GCSqGSIb3DQEBCwUAA4IBAQBUtd5R5KUYoSdyvgYVzcRaSbrl+8Ax7ARntNKF
9d8qLIsRXmjz9190S2Fe5nC8DI0KOgxKgWG0vsrhRo+ue8zjc6uZXz/awQniPioU
BR9Gt8gSNroRbXS5NBhaQShdvGNjXH2Pzp9nZ/DoOKg6od6RdJtbD8FiOGCkqodd
wFbCR/NssPLySfWascjxxceu4s7/U86iEn0fW00Hu3Q+SfAHEzG5ppAfvlMH27In
KzH9igjYWo0SocvGIKO+4nxCRI1jtaK3FpMAAMj71p7zFHmcA+82nY+XdA/Ius9z
2Kdv59YG+p1w+JuVxrTOwfztkiNUd/xZE+WKyaf/kZ8D5INt
-----END CERTIFICATE-----
Generated at Wed Apr 16 12:27:16 2025 by rpki-client