Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/3NLS617rONjxSVCnosTnTFlrQKg.roa
File: 3NLS617rONjxSVCnosTnTFlrQKg.roa (raw, json)
Hash identifier: ahUMulvhKlmyYQmbtfM15Luq1FYgpG33q3t5F2l/8xI=
Subject key identifier: DC:D2:D2:EB:5E:EB:38:D8:F1:49:50:A7:A2:C4:E7:4C:59:6B:40:A8
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 151D
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/3NLS617rONjxSVCnosTnTFlrQKg.roa
Signing time: Tue 11 Feb 2025 23:44:20 +0000
ROA not before: Tue 11 Feb 2025 23:44:20 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9505
IP address blocks: 203.78.176.0/20 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5405 (0x151d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:20 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=DCD2D2EB5EEB38D8F14950A7A2C4E74C596B40A8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:72:49:9c:ea:4e:aa:43:b3:66:d1:69:94:2b:
8d:fd:74:61:3b:b3:2a:75:ca:95:b6:96:c5:bd:f0:
92:3a:68:3a:e7:32:0c:57:ad:4f:a1:c1:d4:6c:1d:
af:69:fc:08:4e:d3:45:f5:60:fd:d3:7b:c5:a9:57:
e0:51:55:04:20:25:76:c5:d6:e0:ef:d6:d7:50:91:
f8:1b:6b:3a:86:5d:7b:23:7d:e7:5f:38:f4:f4:58:
a5:b1:41:d8:71:ca:e5:8e:39:5d:7f:e5:c3:33:04:
b5:b6:f1:a2:b5:bf:3e:43:c4:4e:f3:9c:22:f4:44:
1c:57:6d:0f:54:3d:f8:3d:4f:fb:eb:ac:f1:29:97:
9d:8a:7b:76:54:02:ae:b7:e7:9b:a6:f6:bc:e8:fc:
99:0a:78:7f:05:8c:59:91:02:07:17:b2:f1:11:46:
ab:e3:79:ef:8f:3e:70:96:f5:ae:11:d8:4b:5a:85:
b9:6c:63:6f:88:a3:d2:6d:15:95:ca:a8:88:ce:e2:
61:95:a4:f4:fc:22:ef:bb:80:10:cc:8e:e5:5e:5c:
78:1f:92:ca:89:ea:8b:18:fa:c7:41:40:8c:9a:bb:
1f:b6:61:5f:d6:30:87:2e:85:07:97:1a:29:e0:f6:
fc:ce:54:2d:14:1e:4c:a0:46:39:fb:da:dd:f0:ed:
b8:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:D2:D2:EB:5E:EB:38:D8:F1:49:50:A7:A2:C4:E7:4C:59:6B:40:A8
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/3NLS617rONjxSVCnosTnTFlrQKg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.78.176.0/20
Signature Algorithm: sha256WithRSAEncryption
36:fe:00:bc:d2:0b:87:40:07:05:09:08:e1:e1:67:1b:90:24:
d0:cd:45:a3:73:13:6d:45:9d:eb:27:dc:f6:c4:01:48:59:b9:
2d:a0:bd:fb:c9:ac:ec:19:85:78:3f:19:65:12:af:0e:f6:3a:
ac:a0:37:77:0a:16:63:d8:ed:f9:00:c9:2f:e2:9f:1f:bc:6f:
4c:58:22:f1:e7:4e:38:60:bb:f7:bb:d9:bb:18:f4:44:2c:6c:
e9:04:ab:eb:e8:3e:9c:b9:38:ca:e7:bb:e5:10:65:fc:89:fb:
27:ad:5b:ae:f0:c9:af:e3:e7:7e:1f:7c:e5:e9:bb:bc:c8:9b:
5b:99:af:02:57:b0:b2:ed:84:73:d8:97:c2:09:c3:b0:5c:a7:
e0:39:33:85:6c:7e:8c:a9:6e:fc:b8:60:7f:0d:79:9a:a7:29:
e6:34:e6:d0:14:58:fb:13:4b:ec:a6:17:72:9a:99:a2:67:37:
e2:07:e6:43:cd:1e:8b:40:47:61:58:e5:ff:64:70:d4:49:64:
f3:ca:d3:20:8f:89:f9:c2:92:dc:7e:f3:87:a3:ed:05:dc:31:
43:7d:fb:92:e7:27:89:c8:31:e5:fb:09:99:0b:91:02:08:04:
a5:58:88:4c:6a:cb:8e:21:7f:2f:10:d0:3f:bd:1f:12:fc:2e:
65:97:03:a4
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICFR0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTEy
MzQ0MjBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKERDRDJEMkVCNUVFQjM4
RDhGMTQ5NTBBN0EyQzRFNzRDNTk2QjQwQTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCtckmc6k6qQ7Nm0WmUK439dGE7syp1ypW2lsW98JI6aDrnMgxX
rU+hwdRsHa9p/AhO00X1YP3Te8WpV+BRVQQgJXbF1uDv1tdQkfgbazqGXXsjfedf
OPT0WKWxQdhxyuWOOV1/5cMzBLW28aK1vz5DxE7znCL0RBxXbQ9UPfg9T/vrrPEp
l52Ke3ZUAq6355um9rzo/JkKeH8FjFmRAgcXsvERRqvjee+PPnCW9a4R2Etahbls
Y2+Io9JtFZXKqIjO4mGVpPT8Iu+7gBDMjuVeXHgfksqJ6osY+sdBQIyaux+2YV/W
MIcuhQeXGing9vzOVC0UHkygRjn72t3w7biZAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQU3NLS617rONjxSVCnosTnTFlrQKgwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC8zTkxTNjE3ck9OanhTVkNub3NU
blRGbHJRS2cucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEy06w
MA0GCSqGSIb3DQEBCwUAA4IBAQA2/gC80guHQAcFCQjh4WcbkCTQzUWjcxNtRZ3r
J9z2xAFIWbktoL37yazsGYV4PxllEq8O9jqsoDd3ChZj2O35AMkv4p8fvG9MWCLx
5044YLv3u9m7GPRELGzpBKvr6D6cuTjK57vlEGX8ifsnrVuu8Mmv4+d+H3zl6bu8
yJtbma8CV7Cy7YRz2JfCCcOwXKfgOTOFbH6MqW78uGB/DXmapynmNObQFFj7E0vs
phdympmiZzfiB+ZDzR6LQEdhWOX/ZHDUSWTzytMgj4n5wpLcfvOHo+0F3DFDffuS
5yeJyDHl+wmZC5ECCASlWIhMasuOIX8vENA/vR8S/C5llwOk
-----END CERTIFICATE-----
Generated at Sat May 10 14:26:43 2025 by rpki-client