Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/yMofgVdLyvV1L4r-KOL1_o2RaOE.roa
File: yMofgVdLyvV1L4r-KOL1_o2RaOE.roa (raw, json)
Hash identifier: vwAuDNNNII3ncUz9AUfpO7SyMTyLKnGLyEd60epy03E=
Subject key identifier: C8:CA:1F:81:57:4B:CA:F5:75:2F:8A:FE:28:E2:F5:FE:8D:91:68:E1
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 118F
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/yMofgVdLyvV1L4r-KOL1_o2RaOE.roa
Signing time: Mon 26 Aug 2024 05:17:41 +0000
ROA not before: Mon 26 Aug 2024 05:17:41 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 198949
IP address blocks: 203.74.177.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 20:35:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4495 (0x118f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 26 05:17:41 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C8CA1F81574BCAF5752F8AFE28E2F5FE8D9168E1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ad:8d:2e:75:23:9c:28:e8:04:09:9d:a7:8f:
e0:dc:cf:40:f8:07:ee:6e:3d:ce:e1:09:81:b6:ba:
0f:ee:e4:c8:d3:d0:12:76:53:7a:57:a5:79:65:00:
ff:52:74:84:ab:22:d5:ef:8c:8d:f7:b2:b2:cd:49:
df:f9:82:92:62:2e:30:dd:ee:ae:7f:37:83:65:6c:
10:d7:8b:62:3d:2b:74:bf:eb:69:7a:f7:7f:17:03:
f4:99:10:c2:bc:fe:f3:51:20:2f:64:9b:f7:b6:fa:
0a:83:65:32:68:2a:70:1d:9b:df:b9:e1:c0:9e:b1:
04:ea:54:5d:93:e3:f3:fb:2b:b1:aa:d2:24:ea:2e:
a9:56:21:6d:d3:c0:0d:89:06:81:48:6b:32:3c:85:
a6:54:57:ef:0e:7c:bf:70:68:6d:b4:74:6f:c8:a6:
9a:8d:34:26:84:f0:8d:97:74:09:5b:d1:66:07:81:
d2:db:87:68:11:a0:79:bb:03:70:49:d5:a1:3a:e4:
76:38:15:37:f0:6d:c2:b3:94:31:d8:5e:ca:98:7f:
be:90:d9:ac:2a:c9:81:f7:37:6d:19:a4:50:f6:2b:
4a:84:7b:56:bc:72:43:22:6a:34:dd:ea:d3:35:46:
70:bd:68:bf:e7:ce:4b:b0:93:21:da:54:66:36:b7:
9d:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:CA:1F:81:57:4B:CA:F5:75:2F:8A:FE:28:E2:F5:FE:8D:91:68:E1
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/yMofgVdLyvV1L4r-KOL1_o2RaOE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.74.177.0/24
Signature Algorithm: sha256WithRSAEncryption
09:0b:d3:02:ee:6c:68:e9:01:4c:54:f4:48:83:f6:6d:e7:98:
6b:22:1e:6e:c9:ee:65:b6:eb:1f:ad:f8:93:7f:66:d2:e6:4b:
6e:03:a5:92:0b:5d:e9:a6:43:56:98:01:5c:f3:df:00:03:47:
9f:d4:83:e1:ac:7b:97:2a:33:75:d7:37:fc:7a:a7:cb:5a:49:
54:37:99:50:76:42:27:97:8a:56:20:09:40:39:c0:7f:f1:50:
b0:4e:52:f2:79:99:50:60:5b:e0:94:c6:21:7e:80:d8:b5:16:
7a:f2:de:3b:b1:59:37:99:21:15:ef:16:87:03:98:42:96:76:
76:ca:75:4b:73:9b:6a:0b:fa:8f:74:75:9c:c0:46:72:83:19:
e4:53:97:2c:1d:c2:72:73:52:c0:ea:13:18:2c:9c:8f:4f:1b:
aa:61:87:2f:d3:fa:66:b9:80:ea:00:9f:b4:45:f0:75:48:fc:
b5:19:1a:6a:c6:13:7c:5d:75:eb:d2:10:d8:61:f0:34:39:98:
d4:86:4a:63:e9:9b:7c:14:31:3a:a9:ef:cc:56:70:9f:0a:86:
73:f3:94:13:dc:55:36:31:82:90:e6:96:b5:67:3f:76:90:ca:
d6:30:69:02:a8:61:79:92:70:fe:e3:87:13:1e:1f:d2:7f:b5:
c6:8b:90:04
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICEY8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA4MjYw
NTE3NDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM4Q0ExRjgxNTc0QkNB
RjU3NTJGOEFGRTI4RTJGNUZFOEQ5MTY4RTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC9rY0udSOcKOgECZ2nj+Dcz0D4B+5uPc7hCYG2ug/u5MjT0BJ2
U3pXpXllAP9SdISrItXvjI33srLNSd/5gpJiLjDd7q5/N4NlbBDXi2I9K3S/62l6
938XA/SZEMK8/vNRIC9km/e2+gqDZTJoKnAdm9+54cCesQTqVF2T4/P7K7Gq0iTq
LqlWIW3TwA2JBoFIazI8haZUV+8OfL9waG20dG/IppqNNCaE8I2XdAlb0WYHgdLb
h2gRoHm7A3BJ1aE65HY4FTfwbcKzlDHYXsqYf76Q2awqyYH3N20ZpFD2K0qEe1a8
ckMiajTd6tM1RnC9aL/nzkuwkyHaVGY2t53pAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUyMofgVdLyvV1L4r+KOL1/o2RaOEwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC95TW9mZ1ZkTHl2VjFMNHItS09M
MV9vMlJhT0Uucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy0qx
MA0GCSqGSIb3DQEBCwUAA4IBAQAJC9MC7mxo6QFMVPRIg/Zt55hrIh5uye5ltusf
rfiTf2bS5ktuA6WSC13ppkNWmAFc898AA0ef1IPhrHuXKjN11zf8eqfLWklUN5lQ
dkInl4pWIAlAOcB/8VCwTlLyeZlQYFvglMYhfoDYtRZ68t47sVk3mSEV7xaHA5hC
lnZ2ynVLc5tqC/qPdHWcwEZygxnkU5csHcJyc1LA6hMYLJyPTxuqYYcv0/pmuYDq
AJ+0RfB1SPy1GRpqxhN8XXXr0hDYYfA0OZjUhkpj6Zt8FDE6qe/MVnCfCoZz85QT
3FU2MYKQ5pa1Zz92kMrWMGkCqGF5knD+44cTHh/Sf7XGi5AE
-----END CERTIFICATE-----
Generated at Sun Feb 16 15:48:55 2025 by rpki-client