Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/427HcaEDV_qUQbecIoQK0dByco0.roa
File: 427HcaEDV_qUQbecIoQK0dByco0.roa (raw, json)
Hash identifier: FSgT/i7k/3SfnfvuV2/8Egg1R3xNbvlh81uV6V7ibnQ=
Subject key identifier: E3:6E:C7:71:A1:03:57:FA:94:41:B7:9C:22:84:0A:D1:D0:72:72:8D
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 158E
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/427HcaEDV_qUQbecIoQK0dByco0.roa
Signing time: Tue 11 Feb 2025 23:44:44 +0000
ROA not before: Tue 11 Feb 2025 23:44:44 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 20940
IP address blocks: 203.66.226.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:23:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5518 (0x158e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:44 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=E36EC771A10357FA9441B79C22840AD1D072728D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:61:e1:72:55:09:d7:be:4d:5d:5d:cd:f7:46:
96:ae:d6:88:bc:f5:49:6a:30:b6:38:ab:d0:31:81:
93:ce:5a:ba:4b:4d:66:7b:68:7c:fc:88:e6:84:d1:
26:b3:85:50:15:b7:43:8a:1c:7f:d8:30:52:a4:9c:
ec:79:60:9a:1f:c5:12:17:51:9b:9a:44:10:72:d4:
2b:36:8d:4b:70:80:ef:fb:42:41:bf:3a:4b:7f:f7:
38:20:92:f4:21:3d:99:02:e9:66:ab:96:65:1a:b7:
f1:7a:90:01:40:8c:55:e6:22:3b:f0:0e:ba:db:cc:
aa:d7:df:58:52:f7:da:83:ad:25:c6:a7:ae:41:76:
75:b8:37:d5:08:36:8e:7e:2f:88:54:48:a8:3d:40:
39:d1:be:42:6b:dd:cd:c2:58:80:59:9a:40:b8:91:
82:81:f6:32:ca:f7:eb:e2:b6:61:19:02:83:7e:bb:
42:cc:f8:d8:48:55:5d:bc:f4:13:29:19:8a:b5:59:
19:7d:51:7c:10:40:fc:8e:8e:8c:18:88:b6:dc:02:
a6:19:c7:a0:a8:ee:66:10:0b:f3:23:1a:df:5e:7c:
3a:30:d3:ac:fc:5e:12:57:b5:ec:0c:35:df:e5:aa:
02:af:da:60:d6:d5:b8:3b:e2:9c:84:72:6a:c7:96:
b1:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:6E:C7:71:A1:03:57:FA:94:41:B7:9C:22:84:0A:D1:D0:72:72:8D
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/427HcaEDV_qUQbecIoQK0dByco0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.66.226.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:57:cd:c3:1b:88:a2:68:54:14:e3:56:22:6e:49:c9:36:9a:
d6:ff:03:77:a1:d4:b0:33:62:d8:73:aa:f1:36:40:83:27:57:
55:4f:9c:fa:c4:d8:96:64:3a:3b:c5:c9:fd:7e:31:54:06:8c:
f9:55:be:70:7c:8c:6f:bc:88:47:4f:36:16:4c:56:29:fd:c0:
1c:7c:fa:04:93:cd:d5:7d:fb:5c:ef:b1:4f:ac:71:5d:c0:c2:
64:22:e1:5a:ed:67:f1:06:9f:23:93:0c:88:39:c0:d2:9b:c8:
04:03:f9:38:0b:22:81:12:c9:cd:2e:86:6a:61:92:9a:b3:14:
4b:75:37:9b:b6:ca:5a:a7:4d:b9:28:d9:ea:69:25:bb:38:38:
99:e8:7a:db:63:c2:5e:25:d3:07:37:67:4f:20:27:7d:1f:ee:
99:ec:74:37:7e:b9:f6:b2:9d:04:61:78:2a:91:c2:17:bf:ac:
f9:17:75:72:c5:b9:09:9c:61:27:2b:05:40:09:3e:7b:48:d4:
88:55:fe:f3:37:fd:6b:ba:92:e5:46:53:f3:0b:b5:c5:7f:b7:
bf:b4:60:0d:ff:20:b5:53:46:51:3a:5c:28:ed:fb:71:5a:ce:
ae:41:24:d4:5f:f2:31:1b:82:ce:b5:43:8e:73:5b:1e:65:ab:
64:bd:53:00
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICFY4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTEy
MzQ0NDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEUzNkVDNzcxQTEwMzU3
RkE5NDQxQjc5QzIyODQwQUQxRDA3MjcyOEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDoYeFyVQnXvk1dXc33Rpau1oi89UlqMLY4q9AxgZPOWrpLTWZ7
aHz8iOaE0SazhVAVt0OKHH/YMFKknOx5YJofxRIXUZuaRBBy1Cs2jUtwgO/7QkG/
Okt/9zggkvQhPZkC6WarlmUat/F6kAFAjFXmIjvwDrrbzKrX31hS99qDrSXGp65B
dnW4N9UINo5+L4hUSKg9QDnRvkJr3c3CWIBZmkC4kYKB9jLK9+vitmEZAoN+u0LM
+NhIVV289BMpGYq1WRl9UXwQQPyOjowYiLbcAqYZx6Co7mYQC/MjGt9efDow06z8
XhJXtewMNd/lqgKv2mDW1bg74pyEcmrHlrGfAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQU427HcaEDV/qUQbecIoQK0dByco0wHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC80MjdIY2FFRFZfcVVRYmVjSW9R
SzBkQnljbzAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy0Li
MA0GCSqGSIb3DQEBCwUAA4IBAQBuV83DG4iiaFQU41YibknJNprW/wN3odSwM2LY
c6rxNkCDJ1dVT5z6xNiWZDo7xcn9fjFUBoz5Vb5wfIxvvIhHTzYWTFYp/cAcfPoE
k83Vfftc77FPrHFdwMJkIuFa7WfxBp8jkwyIOcDSm8gEA/k4CyKBEsnNLoZqYZKa
sxRLdTebtspap025KNnqaSW7ODiZ6HrbY8JeJdMHN2dPICd9H+6Z7HQ3frn2sp0E
YXgqkcIXv6z5F3VyxbkJnGEnKwVACT57SNSIVf7zN/1rupLlRlPzC7XFf7e/tGAN
/yC1U0ZROlwo7ftxWs6uQSTUX/IxG4LOtUOOc1seZatkvVMA
-----END CERTIFICATE-----
Generated at Sat May 10 11:16:35 2025 by rpki-client