Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/0yG1hznj_HTxmeytBZJr6BkHc2A.roa
File: 0yG1hznj_HTxmeytBZJr6BkHc2A.roa (raw, json)
Hash identifier: QbAeh5sdfSso3kwhwaL+tdOsPFqtc7er7RBVayLBdv0=
Subject key identifier: D3:21:B5:87:39:E3:FC:74:F1:99:EC:AD:05:92:6B:E8:19:07:73:60
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1540
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/0yG1hznj_HTxmeytBZJr6BkHc2A.roa
Signing time: Tue 11 Feb 2025 23:44:28 +0000
ROA not before: Tue 11 Feb 2025 23:44:28 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 23675
IP address blocks: 203.66.100.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5440 (0x1540)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:28 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=D321B58739E3FC74F199ECAD05926BE819077360
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:90:76:a7:30:85:a9:74:7d:1d:c9:be:cd:ef:
68:ae:f5:f0:e9:d7:7c:04:5a:fc:06:2f:b4:4b:97:
df:8f:6f:a3:5c:8f:aa:18:09:3b:4b:25:0d:8d:01:
9f:15:8b:5b:de:52:a6:c1:fc:a8:02:5e:51:e1:0e:
6e:2c:ea:3c:14:a1:b0:93:16:2b:22:56:5d:36:18:
83:c6:49:33:5c:6f:6d:fc:60:a8:10:9a:c3:77:3e:
e1:58:b6:75:76:98:bd:19:fe:c1:fe:c8:b0:bb:97:
6d:0a:a3:15:76:d4:d2:bd:b6:ab:d7:c7:a3:90:1f:
68:64:31:0b:47:bc:ec:d1:17:0c:5a:18:3c:cb:c9:
9d:1e:68:4b:79:58:d0:12:0f:00:14:ea:e4:1d:1d:
a7:56:72:82:05:dc:f9:07:df:aa:9b:04:00:ae:80:
d3:27:cc:77:6c:6c:1c:f5:50:8e:69:59:92:11:c3:
93:c7:6e:b9:e8:e0:05:8e:75:46:92:54:8a:77:10:
45:bd:2d:da:a3:ac:24:bc:49:d6:9f:e2:d6:0f:31:
99:71:70:1c:26:f9:a1:a4:72:d3:dc:b5:5e:df:95:
61:a9:cb:71:a2:2f:ba:15:db:59:e5:73:14:67:21:
63:1d:e3:dd:77:bb:9f:92:ff:da:4c:74:64:cb:68:
e9:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:21:B5:87:39:E3:FC:74:F1:99:EC:AD:05:92:6B:E8:19:07:73:60
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/0yG1hznj_HTxmeytBZJr6BkHc2A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.66.100.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:da:e8:7d:15:f5:2f:1d:2c:58:41:e3:79:a6:ce:24:00:57:
72:ac:52:c5:f6:b4:0f:3f:2b:f1:f9:35:22:ca:20:7f:ad:5d:
b0:a2:e4:fd:e1:43:72:6d:3b:3b:cf:c1:19:8a:e6:41:75:dc:
4e:dd:f0:be:b6:77:42:28:20:68:2d:25:12:49:c2:41:0b:8f:
1f:ce:a7:6e:6f:68:fc:68:a5:cf:64:87:17:85:0f:5f:e8:e0:
94:b3:9e:1b:f5:7c:cc:ac:ea:d4:45:dc:f4:bb:92:16:bc:5f:
41:34:8a:1c:b8:1c:d9:ec:db:40:c5:98:d7:0e:6e:92:b4:0a:
3e:30:a8:42:5b:68:d6:a5:47:35:30:d6:50:4e:be:22:10:32:
ed:84:d7:ff:92:1c:fc:ab:ee:4b:b5:80:73:69:6f:5d:5e:ff:
1c:d0:97:ac:ad:31:27:ad:50:17:a7:9e:5f:b3:b7:a7:52:e9:
61:89:d5:51:ed:8c:7c:2c:43:0f:c1:59:7b:07:59:9d:0f:cd:
20:2e:f9:6b:e1:01:3f:d2:fd:9c:67:a6:74:30:e9:c8:68:d5:
85:af:71:53:a9:f9:bd:bb:dc:be:ce:fa:11:57:0e:2c:18:9e:
ff:95:13:9b:ee:35:c4:7a:20:aa:0c:ed:68:bc:1e:52:51:76:
07:a2:39:29
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICFUAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTEy
MzQ0MjhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQzMjFCNTg3MzlFM0ZD
NzRGMTk5RUNBRDA1OTI2QkU4MTkwNzczNjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC8kHanMIWpdH0dyb7N72iu9fDp13wEWvwGL7RLl9+Pb6Ncj6oY
CTtLJQ2NAZ8Vi1veUqbB/KgCXlHhDm4s6jwUobCTFisiVl02GIPGSTNcb238YKgQ
msN3PuFYtnV2mL0Z/sH+yLC7l20KoxV21NK9tqvXx6OQH2hkMQtHvOzRFwxaGDzL
yZ0eaEt5WNASDwAU6uQdHadWcoIF3PkH36qbBACugNMnzHdsbBz1UI5pWZIRw5PH
brno4AWOdUaSVIp3EEW9LdqjrCS8Sdaf4tYPMZlxcBwm+aGkctPctV7flWGpy3Gi
L7oV21nlcxRnIWMd4913u5+S/9pMdGTLaOnZAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQU0yG1hznj/HTxmeytBZJr6BkHc2AwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC8weUcxaHpual9IVHhtZXl0QlpK
cjZCa0hjMkEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy0Jk
MA0GCSqGSIb3DQEBCwUAA4IBAQAv2uh9FfUvHSxYQeN5ps4kAFdyrFLF9rQPPyvx
+TUiyiB/rV2wouT94UNybTs7z8EZiuZBddxO3fC+tndCKCBoLSUSScJBC48fzqdu
b2j8aKXPZIcXhQ9f6OCUs54b9XzMrOrURdz0u5IWvF9BNIocuBzZ7NtAxZjXDm6S
tAo+MKhCW2jWpUc1MNZQTr4iEDLthNf/khz8q+5LtYBzaW9dXv8c0JesrTEnrVAX
p55fs7enUulhidVR7Yx8LEMPwVl7B1mdD80gLvlr4QE/0v2cZ6Z0MOnIaNWFr3FT
qfm9u9y+zvoRVw4sGJ7/lROb7jXEeiCqDO1ovB5SUXYHojkp
-----END CERTIFICATE-----
Generated at Sat May 10 12:20:37 2025 by rpki-client