Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/tyL__03O-lJuoo55zY1_45onYoI.roa
File: tyL__03O-lJuoo55zY1_45onYoI.roa (raw, json)
Hash identifier: jQvz2Bv4OzW96g2c0z+3cOhLFpzD+h7K+vrKZTuIP0Q=
Subject key identifier: B7:22:FF:FF:4D:CE:FA:52:6E:A2:8E:79:CD:8D:7F:E3:9A:27:62:82
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 14C3
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/tyL__03O-lJuoo55zY1_45onYoI.roa
Signing time: Mon 10 Feb 2025 14:35:15 +0000
ROA not before: Mon 10 Feb 2025 14:35:15 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 23675
IP address blocks: 220.128.55.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Feb 2025 23:44:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5315 (0x14c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:35:15 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=B722FFFF4DCEFA526EA28E79CD8D7FE39A276282
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:f1:4a:fc:bd:ce:1f:97:eb:07:b6:4d:9c:08:
ea:bd:fa:e4:09:76:99:44:9d:02:96:04:b2:bc:51:
d9:23:73:a4:90:94:09:91:6f:7b:a3:3d:57:d1:4e:
89:83:ec:42:87:4b:11:78:16:9c:2d:94:f6:4d:f0:
3f:c7:da:79:81:e2:cc:06:3a:73:23:9e:6d:7b:a8:
71:d0:d0:d5:d0:52:92:cf:b6:cc:8a:0c:86:40:90:
be:39:f4:af:d1:76:83:16:96:eb:52:21:54:44:99:
2d:47:6f:19:97:31:96:c1:09:97:af:a6:50:92:58:
ad:43:b6:7a:71:80:94:65:00:b1:0e:6e:7c:85:b8:
1d:83:c3:87:7e:2d:ad:5d:ce:36:a9:7a:ce:b6:7d:
07:c4:7d:9b:97:2e:32:f3:30:59:24:3d:bd:ef:16:
3e:22:ed:e3:8b:7e:d6:6d:db:f8:f8:24:07:91:09:
50:98:cc:02:ad:df:c7:60:cb:b7:25:a4:30:7c:ca:
fa:73:26:97:c1:08:fa:0e:25:f2:8a:57:48:44:37:
3b:92:2f:dd:c0:86:2e:23:9c:a2:11:6d:7e:6e:d6:
4f:c7:ef:4d:3c:1f:63:a8:53:47:50:d3:8d:10:dd:
0d:b3:e3:ad:30:a0:fe:39:4d:f8:04:2b:f8:86:56:
3e:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:22:FF:FF:4D:CE:FA:52:6E:A2:8E:79:CD:8D:7F:E3:9A:27:62:82
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/tyL__03O-lJuoo55zY1_45onYoI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.128.55.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:a6:31:ce:3f:9a:56:19:4e:9b:77:38:88:a0:31:9e:a8:85:
dc:7c:91:95:a9:fa:48:a6:7c:78:dd:4a:b3:87:5d:97:68:e4:
40:7e:91:46:50:a8:17:2e:f1:17:56:e3:a5:0d:26:46:43:d4:
d5:21:54:d5:b7:2e:48:ff:97:2f:87:a4:f4:3c:a5:68:8c:58:
eb:fc:c3:8b:70:9f:ca:f4:b1:9b:57:41:67:ca:7f:40:3a:ee:
5b:70:6a:85:fb:2a:f3:55:50:e2:65:a9:a2:5f:cb:cd:60:f4:
a7:04:6e:93:83:4e:dd:be:ac:cf:90:6b:54:b8:98:d1:91:46:
cf:fe:33:e3:73:ca:1b:96:f7:20:9c:09:eb:fb:9f:16:51:6e:
de:04:e8:d1:da:34:6e:3d:fd:c5:17:0a:e8:45:30:e4:77:49:
7c:46:bd:3b:d5:02:30:67:03:04:f7:5d:77:8d:77:49:70:2f:
39:c1:65:2a:d0:99:04:2f:a4:fb:bb:0e:89:5b:ae:8f:d5:ca:
2f:12:d6:c1:23:be:fa:0c:9b:62:32:a3:74:7b:d8:9d:30:a0:
d1:12:90:cc:40:d9:44:56:3f:0b:85:64:cd:2c:93:78:a3:31:
29:75:e5:0d:f5:71:dd:bf:66:a9:92:df:7f:29:9b:bb:e2:c4:
4c:31:70:9d
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICFMMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTAx
NDM1MTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI3MjJGRkZGNERDRUZB
NTI2RUEyOEU3OUNEOEQ3RkUzOUEyNzYyODIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDT8Ur8vc4fl+sHtk2cCOq9+uQJdplEnQKWBLK8Udkjc6SQlAmR
b3ujPVfRTomD7EKHSxF4FpwtlPZN8D/H2nmB4swGOnMjnm17qHHQ0NXQUpLPtsyK
DIZAkL459K/RdoMWlutSIVREmS1HbxmXMZbBCZevplCSWK1DtnpxgJRlALEObnyF
uB2Dw4d+La1dzjapes62fQfEfZuXLjLzMFkkPb3vFj4i7eOLftZt2/j4JAeRCVCY
zAKt38dgy7clpDB8yvpzJpfBCPoOJfKKV0hENzuSL93Ahi4jnKIRbX5u1k/H7008
H2OoU0dQ040Q3Q2z460woP45TfgEK/iGVj6TAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUtyL//03O+lJuoo55zY1/45onYoIwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC90eUxfXzAzTy1sSnVvbzU1elkx
XzQ1b25Zb0kucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA3IA3
MA0GCSqGSIb3DQEBCwUAA4IBAQAupjHOP5pWGU6bdziIoDGeqIXcfJGVqfpIpnx4
3Uqzh12XaORAfpFGUKgXLvEXVuOlDSZGQ9TVIVTVty5I/5cvh6T0PKVojFjr/MOL
cJ/K9LGbV0Fnyn9AOu5bcGqF+yrzVVDiZamiX8vNYPSnBG6Tg07dvqzPkGtUuJjR
kUbP/jPjc8oblvcgnAnr+58WUW7eBOjR2jRuPf3FFwroRTDkd0l8Rr071QIwZwME
9113jXdJcC85wWUq0JkEL6T7uw6JW66P1covEtbBI776DJtiMqN0e9idMKDREpDM
QNlEVj8LhWTNLJN4ozEpdeUN9XHdv2apkt9/KZu74sRMMXCd
-----END CERTIFICATE-----
Generated at Wed Apr 16 12:32:26 2025 by rpki-client