Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/u5a9BwcXFBQOv7z5BpQC94zOGqQ.roa
File: u5a9BwcXFBQOv7z5BpQC94zOGqQ.roa (raw, json)
Hash identifier: xg5fkLsWpiowKBuJD3DHrW+z9Ipg97gZawCDpm4nhCw=
Subject key identifier: BB:96:BD:07:07:17:14:14:0E:BF:BC:F9:06:94:02:F7:8C:CE:1A:A4
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 14B9
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/u5a9BwcXFBQOv7z5BpQC94zOGqQ.roa
Signing time: Mon 10 Feb 2025 14:35:13 +0000
ROA not before: Mon 10 Feb 2025 14:35:13 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 61.228.0.0/14 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Feb 2025 23:44:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5305 (0x14b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:35:13 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=BB96BD07071714140EBFBCF9069402F78CCE1AA4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:3b:b5:6c:8a:b0:ee:44:98:b8:db:36:4c:cc:
82:d4:23:61:5b:f2:35:93:9e:7a:87:03:71:0a:34:
cb:de:b1:1f:82:21:88:e7:35:ef:aa:4b:16:c0:76:
cc:50:2e:6e:b6:09:89:ca:3b:de:bc:41:42:ea:1d:
9b:f2:b1:eb:0b:c3:c7:7a:ab:43:60:1a:d3:f8:73:
f1:06:15:77:f4:c5:2e:d7:f5:8d:dd:3d:5c:95:d0:
f9:a7:ed:c9:4b:83:2f:27:34:26:a1:27:b4:6f:50:
50:10:cf:17:c5:f8:2a:78:f9:1e:dd:e4:f6:71:74:
f7:d9:62:27:8f:bc:6d:ad:cc:21:c6:d4:6d:f3:b9:
34:94:23:89:0d:28:43:8a:fb:dd:df:a8:61:fb:ef:
49:e4:e8:07:6d:8b:cf:65:1a:40:7c:0a:34:cd:01:
92:8c:db:83:ba:7e:9d:dd:84:d7:c7:35:04:d1:d5:
7c:25:7f:4b:e3:ed:cb:29:70:16:4a:9d:0c:4e:4e:
00:8a:1e:a1:d2:32:88:c7:57:55:eb:a6:bf:b7:5d:
d5:5b:e7:53:40:93:32:45:fc:7e:8c:c3:e5:6b:70:
da:a9:dc:67:cd:a4:ec:1e:d0:8d:55:fa:11:a2:b9:
7a:06:5b:d7:b2:9f:24:c0:fe:c6:d4:f2:f2:a7:10:
fa:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:96:BD:07:07:17:14:14:0E:BF:BC:F9:06:94:02:F7:8C:CE:1A:A4
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/u5a9BwcXFBQOv7z5BpQC94zOGqQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.228.0.0/14
Signature Algorithm: sha256WithRSAEncryption
3c:f4:4c:16:5b:f2:81:a7:10:95:8e:5a:7c:65:9c:fc:8f:93:
a8:41:db:a1:eb:d5:e4:7e:19:40:38:47:7a:94:2d:e2:f0:9a:
39:f0:e7:b8:d3:e1:52:8b:e2:12:d5:78:8d:9f:c4:31:69:fc:
0f:e2:16:bf:40:d1:c9:74:7a:b7:3a:91:c8:7a:ba:0d:58:c0:
a6:6b:93:00:f9:d7:35:4f:4e:ee:ff:45:73:05:8e:3a:18:ec:
c5:f1:e5:c7:21:b2:b3:a4:bb:6a:9f:f8:bf:15:e7:46:6f:3a:
e1:9e:8a:b0:cf:97:93:72:ab:79:7e:2a:e1:6f:b6:14:48:44:
15:5f:c0:f4:3a:1c:6b:0f:c0:a9:9f:8a:4d:23:77:8b:c3:3e:
b4:e9:43:b1:d4:39:19:de:12:7a:12:e8:31:5e:07:72:5c:a0:
8c:38:9e:11:42:d1:b0:11:3c:f0:3b:ad:95:05:58:4f:65:08:
cd:b5:c7:c8:8e:64:44:13:8b:bd:66:ab:73:fb:90:bc:4d:19:
4f:bf:18:13:64:c7:b2:45:06:ba:e1:f0:dd:7a:1f:2b:34:48:
f8:23:fe:94:7f:3a:c3:c9:fd:3a:48:82:a1:52:50:ed:01:ed:
ee:e5:94:3f:c2:b1:c4:c6:a8:1c:ac:64:c8:65:4b:5a:8c:df:
1b:2b:b9:d8
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICFLkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTAx
NDM1MTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEJCOTZCRDA3MDcxNzE0
MTQwRUJGQkNGOTA2OTQwMkY3OENDRTFBQTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCVO7VsirDuRJi42zZMzILUI2Fb8jWTnnqHA3EKNMvesR+CIYjn
Ne+qSxbAdsxQLm62CYnKO968QULqHZvysesLw8d6q0NgGtP4c/EGFXf0xS7X9Y3d
PVyV0Pmn7clLgy8nNCahJ7RvUFAQzxfF+Cp4+R7d5PZxdPfZYiePvG2tzCHG1G3z
uTSUI4kNKEOK+93fqGH770nk6Adti89lGkB8CjTNAZKM24O6fp3dhNfHNQTR1Xwl
f0vj7cspcBZKnQxOTgCKHqHSMojHV1Xrpr+3XdVb51NAkzJF/H6Mw+VrcNqp3GfN
pOwe0I1V+hGiuXoGW9eynyTA/sbU8vKnEPpDAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUu5a9BwcXFBQOv7z5BpQC94zOGqQwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC91NWE5QndjWEZCUU92N3o1QnBR
Qzk0ek9HcVEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMCPeQw
DQYJKoZIhvcNAQELBQADggEBADz0TBZb8oGnEJWOWnxlnPyPk6hB26Hr1eR+GUA4
R3qULeLwmjnw57jT4VKL4hLVeI2fxDFp/A/iFr9A0cl0erc6kch6ug1YwKZrkwD5
1zVPTu7/RXMFjjoY7MXx5cchsrOku2qf+L8V50ZvOuGeirDPl5Nyq3l+KuFvthRI
RBVfwPQ6HGsPwKmfik0jd4vDPrTpQ7HUORneEnoS6DFeB3JcoIw4nhFC0bARPPA7
rZUFWE9lCM21x8iOZEQTi71mq3P7kLxNGU+/GBNkx7JFBrrh8N16Hys0SPgj/pR/
OsPJ/TpIgqFSUO0B7e7llD/CscTGqBysZMhlS1qM3xsrudg=
-----END CERTIFICATE-----
Generated at Wed Apr 16 12:34:00 2025 by rpki-client