Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/y5COIUhl7-N8TYC8pkuyw33Iazg.roa
File: y5COIUhl7-N8TYC8pkuyw33Iazg.roa (raw, json)
Hash identifier: 82TCUl4Dxo3twlpjKEoQM2Hs91jA9QhYIT0u3F4G+A0=
Subject key identifier: CB:90:8E:21:48:65:EF:E3:7C:4D:80:BC:A6:4B:B2:C3:7D:C8:6B:38
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1455
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/y5COIUhl7-N8TYC8pkuyw33Iazg.roa
Signing time: Mon 10 Feb 2025 14:34:49 +0000
ROA not before: Mon 10 Feb 2025 14:34:49 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9680
IP address blocks: 2001:b000:591::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 11 Feb 2025 23:44:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5205 (0x1455)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:34:49 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=CB908E214865EFE37C4D80BCA64BB2C37DC86B38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f4:f1:d2:f5:b5:fd:be:fb:88:5a:08:83:2a:
7a:4d:a9:d6:ed:6e:82:b3:26:18:e6:79:5a:69:75:
ef:94:e4:de:d2:21:40:37:e1:56:e7:ba:7e:23:a4:
59:e3:e0:d4:af:57:c7:ca:c6:5d:c5:3a:3d:ee:c8:
b2:31:df:41:b2:e9:a1:f4:e7:8d:c0:d9:6a:4e:16:
db:20:0f:11:84:a2:e2:14:23:8d:e0:6d:cb:61:da:
8f:19:84:b2:47:ee:e8:9d:66:b8:d7:5a:99:5c:a6:
af:30:9f:c6:d2:a6:1e:91:e9:df:53:15:f1:2b:30:
35:c4:c4:b3:2f:e6:4a:37:ae:81:54:7d:ed:c3:37:
fc:b3:e9:ae:8f:9b:56:75:d6:ee:bf:4f:e7:b3:81:
4e:e5:7e:30:72:c4:3d:29:ce:d0:78:c3:a8:80:fa:
a9:f9:7c:97:45:fc:b8:d2:8a:9d:c5:84:5e:14:af:
83:56:52:53:b1:58:dd:d7:67:9c:d7:92:c4:94:f5:
d6:32:e1:94:d2:fe:1f:6f:2c:e8:d1:17:a1:e2:88:
94:af:28:cb:dd:46:49:f3:97:12:36:87:66:54:97:
79:08:29:e2:58:87:60:3c:ed:5b:41:ff:8c:d7:54:
ed:5e:b6:c8:46:7d:b6:d2:5d:0b:b6:a4:6e:23:44:
a4:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:90:8E:21:48:65:EF:E3:7C:4D:80:BC:A6:4B:B2:C3:7D:C8:6B:38
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/y5COIUhl7-N8TYC8pkuyw33Iazg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b000:591::/48
Signature Algorithm: sha256WithRSAEncryption
c3:bb:2a:65:50:a7:77:e9:6b:13:4c:e9:e2:0a:ad:28:2e:1d:
7c:9d:1d:d9:85:1a:9d:fa:c1:c9:e0:c9:87:a1:72:3e:f3:30:
f6:d8:00:f3:ff:6f:2c:e0:0b:51:7b:a9:79:2c:71:38:55:7d:
14:f8:9b:80:c7:9b:c4:37:a1:65:54:d6:97:cf:38:f7:18:21:
c2:b8:e1:b5:d3:d8:04:55:32:09:fe:3b:b4:63:8d:0b:47:67:
6e:1d:be:66:df:18:c0:fc:25:a5:e7:af:aa:bd:e2:60:ce:84:
84:be:70:9e:e3:8a:56:5e:78:47:4e:f7:38:1a:55:b3:8c:f1:
45:9b:9d:4d:83:0f:af:a8:2b:d0:09:b3:1a:66:77:7e:f3:7d:
74:ff:2a:a1:7d:b5:23:a5:a1:1b:34:24:d3:d8:55:fe:98:40:
4b:52:6a:eb:b5:82:9f:a7:3b:6e:75:69:11:b9:00:ce:d4:45:
9f:bc:e6:62:54:1d:9a:f3:7f:7d:33:1a:02:b5:1a:ab:f5:9e:
82:e8:13:77:a9:0c:cf:ba:8f:b4:d0:02:50:6d:d7:2a:dc:50:
12:4e:01:db:30:b4:42:1d:da:bf:94:d7:34:1d:be:b6:b2:54:
3b:b5:0e:89:c5:e6:5e:9f:94:fb:94:b5:70:af:f3:8d:d8:b2:
32:cf:93:4a
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgICFFUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTAx
NDM0NDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKENCOTA4RTIxNDg2NUVG
RTM3QzREODBCQ0E2NEJCMkMzN0RDODZCMzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCt9PHS9bX9vvuIWgiDKnpNqdbtboKzJhjmeVppde+U5N7SIUA3
4Vbnun4jpFnj4NSvV8fKxl3FOj3uyLIx30Gy6aH0543A2WpOFtsgDxGEouIUI43g
bcth2o8ZhLJH7uidZrjXWplcpq8wn8bSph6R6d9TFfErMDXExLMv5ko3roFUfe3D
N/yz6a6Pm1Z11u6/T+ezgU7lfjByxD0pztB4w6iA+qn5fJdF/LjSip3FhF4Ur4NW
UlOxWN3XZ5zXksSU9dYy4ZTS/h9vLOjRF6HiiJSvKMvdRknzlxI2h2ZUl3kIKeJY
h2A87VtB/4zXVO1etshGfbbSXQu2pG4jRKSnAgMBAAGjggHvMIIB6zAdBgNVHQ4E
FgQUy5COIUhl7+N8TYC8pkuyw33IazgwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC95NUNPSVVobDctTjhUWUM4cGt1
eXczM0lhemcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAGw
AAWRMA0GCSqGSIb3DQEBCwUAA4IBAQDDuyplUKd36WsTTOniCq0oLh18nR3ZhRqd
+sHJ4MmHoXI+8zD22ADz/28s4AtRe6l5LHE4VX0U+JuAx5vEN6FlVNaXzzj3GCHC
uOG109gEVTIJ/ju0Y40LR2duHb5m3xjA/CWl56+qveJgzoSEvnCe44pWXnhHTvc4
GlWzjPFFm51Ngw+vqCvQCbMaZnd+8310/yqhfbUjpaEbNCTT2FX+mEBLUmrrtYKf
pztudWkRuQDO1EWfvOZiVB2a8399MxoCtRqr9Z6C6BN3qQzPuo+00AJQbdcq3FAS
TgHbMLRCHdq/lNc0Hb62slQ7tQ6JxeZen5T7lLVwr/ON2LIyz5NK
-----END CERTIFICATE-----
Generated at Wed Apr 16 12:38:47 2025 by rpki-client