Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/sBsREbGWpZbMvej1eK8Hh6MPG5M.roa
File: sBsREbGWpZbMvej1eK8Hh6MPG5M.roa (raw, json)
Hash identifier: Q3d13D/Q8H+k4QeqnV7WDtS1eOd/PF5xIrje+Jc5amM=
Subject key identifier: B0:1B:11:11:B1:96:A5:96:CC:BD:E8:F5:78:AF:07:87:A3:0F:1B:93
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1213
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/sBsREbGWpZbMvej1eK8Hh6MPG5M.roa
Signing time: Mon 26 Aug 2024 05:18:13 +0000
ROA not before: Mon 26 Aug 2024 05:18:13 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 54994
IP address blocks: 61.221.181.128/25 maxlen: 25
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:36:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4627 (0x1213)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 26 05:18:13 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=B01B1111B196A596CCBDE8F578AF0787A30F1B93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:e7:c3:05:5f:9d:53:41:48:7c:21:7e:2b:4e:
c6:97:b5:74:4c:4b:9c:97:fb:53:cb:eb:7e:51:bd:
d4:98:7d:04:41:ef:11:48:98:5e:13:fa:e4:39:79:
10:54:e1:f7:79:7c:5f:de:43:42:39:d1:8b:9d:0b:
66:74:a2:e2:c1:2a:2a:c6:eb:89:fb:d7:96:be:d3:
0e:53:eb:57:e9:5f:fb:58:ff:f3:90:e1:4b:1f:54:
51:b5:ed:2f:8f:11:35:81:81:59:40:0b:17:19:7d:
31:e1:26:8c:85:fc:70:2e:77:e5:cf:07:46:36:68:
e3:5b:09:21:ce:9e:e1:a8:2c:79:35:e4:c3:a2:ff:
73:7e:5a:f3:3c:b6:18:87:20:86:23:86:58:e8:4d:
19:80:1e:0b:ee:01:16:74:d6:fe:b6:14:5b:3b:67:
ae:d8:fb:05:ed:ca:c7:4d:57:51:7f:2c:5f:70:a5:
ba:44:d0:a5:50:72:4e:f2:96:46:b5:fc:3d:9d:eb:
58:37:e2:5a:3e:ef:4e:88:5c:a8:16:2d:61:9b:7a:
03:61:f7:7a:9f:cb:9a:3a:6d:71:4d:6e:9d:6f:d7:
72:35:bc:a7:b9:22:11:75:2c:57:af:92:ee:be:c4:
ba:ba:5d:ca:1f:ee:bb:dd:04:c2:56:2f:cc:46:b7:
68:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:1B:11:11:B1:96:A5:96:CC:BD:E8:F5:78:AF:07:87:A3:0F:1B:93
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/sBsREbGWpZbMvej1eK8Hh6MPG5M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.221.181.128/25
Signature Algorithm: sha256WithRSAEncryption
1c:c1:b3:ad:57:96:46:90:9d:00:e9:86:a0:8b:1d:cf:eb:e9:
2b:dd:29:f7:d4:ec:af:4b:81:0f:6c:97:5b:3c:9e:a0:31:e1:
1d:ce:94:3e:5f:28:55:d3:0c:2a:d5:8a:64:50:c4:9d:5a:bc:
4f:a4:8d:fc:b8:15:68:19:bd:4c:96:10:ad:83:2a:b1:13:7b:
0d:08:7c:8e:b5:a2:a0:3c:df:10:6a:87:12:7d:a6:f8:63:39:
a6:f2:dd:4e:e2:3c:6e:09:a0:bb:21:58:7a:22:15:5b:57:d6:
d7:12:af:23:f8:c3:57:34:a4:9a:14:7c:c3:22:28:9f:d0:10:
e2:2e:ce:5e:9d:55:19:10:5e:99:f4:02:d8:0b:11:07:b5:b6:
1d:79:0e:06:84:a7:10:40:bb:ab:8c:eb:1e:fd:6b:8d:01:de:
35:48:4f:1f:c5:eb:26:1c:f9:ba:e4:3a:2b:ee:f2:78:3a:37:
1f:09:3e:19:8b:c3:d2:69:a5:ff:ba:03:db:c1:74:3c:ef:82:
1b:1b:9c:62:19:88:05:98:37:c8:66:94:65:3c:8d:97:a4:16:
03:b7:a8:1b:44:db:31:f2:a4:e0:7f:c5:c1:00:d8:df:eb:54:
fc:6e:1c:ab:cd:13:4f:2f:68:61:69:1b:4c:fe:3d:62:66:6b:
af:f2:73:a8
-----BEGIN CERTIFICATE-----
MIIE0TCCA7mgAwIBAgICEhMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA4MjYw
NTE4MTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEIwMUIxMTExQjE5NkE1
OTZDQ0JERThGNTc4QUYwNzg3QTMwRjFCOTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDG58MFX51TQUh8IX4rTsaXtXRMS5yX+1PL635RvdSYfQRB7xFI
mF4T+uQ5eRBU4fd5fF/eQ0I50YudC2Z0ouLBKirG64n715a+0w5T61fpX/tY//OQ
4UsfVFG17S+PETWBgVlACxcZfTHhJoyF/HAud+XPB0Y2aONbCSHOnuGoLHk15MOi
/3N+WvM8thiHIIYjhljoTRmAHgvuARZ01v62FFs7Z67Y+wXtysdNV1F/LF9wpbpE
0KVQck7ylka1/D2d61g34lo+706IXKgWLWGbegNh93qfy5o6bXFNbp1v13I1vKe5
IhF1LFevku6+xLq6Xcof7rvdBMJWL8xGt2jzAgMBAAGjggHtMIIB6TAdBgNVHQ4E
FgQUsBsREbGWpZbMvej1eK8Hh6MPG5MwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9zQnNSRWJHV3BaYk12ZWoxZUs4
SGg2TVBHNU0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUHPd21
gDANBgkqhkiG9w0BAQsFAAOCAQEAHMGzrVeWRpCdAOmGoIsdz+vpK90p99Tsr0uB
D2yXWzyeoDHhHc6UPl8oVdMMKtWKZFDEnVq8T6SN/LgVaBm9TJYQrYMqsRN7DQh8
jrWioDzfEGqHEn2m+GM5pvLdTuI8bgmguyFYeiIVW1fW1xKvI/jDVzSkmhR8wyIo
n9AQ4i7OXp1VGRBemfQC2AsRB7W2HXkOBoSnEEC7q4zrHv1rjQHeNUhPH8XrJhz5
uuQ6K+7yeDo3Hwk+GYvD0mml/7oD28F0PO+CGxucYhmIBZg3yGaUZTyNl6QWA7eo
G0TbMfKk4H/FwQDY3+tU/G4cq80TTy9oYWkbTP49YmZrr/JzqA==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:28:50 2025 by rpki-client