Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/2TbI447JdzPtankUc4D9q5V1TuA.roa
File: 2TbI447JdzPtankUc4D9q5V1TuA.roa (raw, json)
Hash identifier: tX3KX/XyY0xvuuJgg7vIQXKWGG4eyZuFT2FajX3pfGk=
Subject key identifier: D9:36:C8:E3:8E:C9:77:33:ED:6A:79:14:73:80:FD:AB:95:75:4E:E0
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1556
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/2TbI447JdzPtankUc4D9q5V1TuA.roa
Signing time: Tue 11 Feb 2025 23:44:33 +0000
ROA not before: Tue 11 Feb 2025 23:44:33 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 54994
IP address blocks: 202.39.156.0/26 maxlen: 26
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5462 (0x1556)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:33 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=D936C8E38EC97733ED6A79147380FDAB95754EE0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:21:22:ca:ae:ba:da:b2:4c:dc:6d:b3:0b:89:
81:28:07:5c:fc:f7:f2:39:74:3c:30:69:fe:40:73:
69:7b:b9:49:5b:ad:30:7a:cf:b6:63:da:c3:16:58:
9d:3f:1a:37:8f:7a:45:29:e7:f4:c8:50:68:ac:fa:
da:3f:c9:db:29:6e:a8:55:af:f2:b5:8f:61:d7:cb:
31:48:74:f3:6d:b2:92:0f:a4:77:d5:70:6e:1c:77:
ff:3c:22:99:05:98:b6:93:16:e8:05:2d:a9:8a:f0:
89:46:96:10:5a:6a:d1:27:37:7b:96:57:9b:d9:9f:
4a:2f:6a:ae:e5:03:76:88:eb:4d:37:7d:73:09:12:
54:cb:7d:68:3a:01:ef:55:9e:2a:a6:53:4e:58:4d:
1d:78:4a:f2:8e:a7:b8:06:fe:53:07:36:3f:3e:d7:
10:dc:2f:fa:ed:6c:08:5d:07:80:6e:a9:52:c1:b1:
17:0f:2a:6f:42:ec:16:de:22:79:b3:29:d4:53:41:
8e:86:46:20:71:71:1e:07:d1:0f:b2:6e:f5:ac:79:
77:bc:6f:f2:db:66:bb:a1:99:6e:81:06:bc:36:a8:
bd:37:00:5a:a5:87:2e:5b:1e:3e:86:9c:95:36:5b:
85:6b:3e:2f:9c:4e:e5:dc:6a:2a:d6:79:c8:67:3f:
78:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:36:C8:E3:8E:C9:77:33:ED:6A:79:14:73:80:FD:AB:95:75:4E:E0
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/2TbI447JdzPtankUc4D9q5V1TuA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.39.156.0/26
Signature Algorithm: sha256WithRSAEncryption
74:89:95:6b:63:62:d2:2e:c0:cc:b2:cc:a3:4d:af:c2:a9:da:
ce:75:9f:35:fd:b2:c8:f9:e8:a9:40:8e:90:6a:0d:93:ae:be:
5c:b9:6f:e7:e9:c4:b5:c8:0d:ea:21:51:b9:99:0d:61:24:23:
17:bc:b2:b6:47:e4:db:1a:d2:ce:fa:22:5d:c7:4e:83:11:70:
a5:82:4d:5d:92:ee:2f:17:6a:65:85:0a:3f:a6:55:06:01:f1:
18:51:f0:2f:11:4b:b8:d0:eb:b8:41:92:4e:d0:92:55:18:d2:
5a:cc:e5:5d:ae:6e:7f:0f:ed:d2:60:0e:93:e4:ad:78:79:eb:
3a:1c:0d:65:dc:8e:2e:82:38:2a:21:94:a0:b7:cb:6b:51:b3:
cd:b2:7a:9e:69:ee:a2:82:5d:2e:58:b8:a6:2b:7a:70:8c:e2:
d6:bc:8f:1b:70:46:ff:eb:15:24:6f:81:25:e8:77:6e:63:55:
50:8e:34:8a:f1:97:51:05:12:bd:09:9f:e0:dd:d3:3e:8b:18:
8c:61:5b:a9:e1:47:40:34:06:8e:1a:a6:e9:5f:01:25:d7:ed:
63:52:ef:50:e4:b0:fe:aa:71:dd:3d:70:1a:48:b2:ef:75:90:
bf:8e:a9:0a:4d:e4:ac:a7:19:16:3e:c4:c3:7a:25:20:aa:91:
1f:00:79:77
-----BEGIN CERTIFICATE-----
MIIE0TCCA7mgAwIBAgICFVYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTEy
MzQ0MzNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQ5MzZDOEUzOEVDOTc3
MzNFRDZBNzkxNDczODBGREFCOTU3NTRFRTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDGISLKrrraskzcbbMLiYEoB1z89/I5dDwwaf5Ac2l7uUlbrTB6
z7Zj2sMWWJ0/GjePekUp5/TIUGis+to/ydspbqhVr/K1j2HXyzFIdPNtspIPpHfV
cG4cd/88IpkFmLaTFugFLamK8IlGlhBaatEnN3uWV5vZn0ovaq7lA3aI6003fXMJ
ElTLfWg6Ae9VniqmU05YTR14SvKOp7gG/lMHNj8+1xDcL/rtbAhdB4BuqVLBsRcP
Km9C7BbeInmzKdRTQY6GRiBxcR4H0Q+ybvWseXe8b/LbZruhmW6BBrw2qL03AFql
hy5bHj6GnJU2W4VrPi+cTuXcairWechnP3ivAgMBAAGjggHtMIIB6TAdBgNVHQ4E
FgQU2TbI447JdzPtankUc4D9q5V1TuAwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC8yVGJJNDQ3SmR6UHRhbmtVYzRE
OXE1VjFUdUEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUGyiec
ADANBgkqhkiG9w0BAQsFAAOCAQEAdImVa2Ni0i7AzLLMo02vwqnaznWfNf2yyPno
qUCOkGoNk66+XLlv5+nEtcgN6iFRuZkNYSQjF7yytkfk2xrSzvoiXcdOgxFwpYJN
XZLuLxdqZYUKP6ZVBgHxGFHwLxFLuNDruEGSTtCSVRjSWszlXa5ufw/t0mAOk+St
eHnrOhwNZdyOLoI4KiGUoLfLa1GzzbJ6nmnuooJdLli4pit6cIzi1ryPG3BG/+sV
JG+BJeh3bmNVUI40ivGXUQUSvQmf4N3TPosYjGFbqeFHQDQGjhqm6V8BJdftY1Lv
UOSw/qpx3T1wGkiy73WQv46pCk3krKcZFj7Ew3olIKqRHwB5dw==
-----END CERTIFICATE-----
Generated at Sat May 10 12:56:53 2025 by rpki-client