Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/8zRpm0Ift87UawjtDFjedZkiOkc.roa
File: 8zRpm0Ift87UawjtDFjedZkiOkc.roa (raw, json)
Hash identifier: XmEQuhBGJ8QEGUsVZWaU0L1qjIjDqpFrX573gIzL92A=
Subject key identifier: F3:34:69:9B:42:1F:B7:CE:D4:6B:08:ED:0C:58:DE:75:99:22:3A:47
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1599
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/8zRpm0Ift87UawjtDFjedZkiOkc.roa
Signing time: Tue 11 Feb 2025 23:44:47 +0000
ROA not before: Tue 11 Feb 2025 23:44:47 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 122.118.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:23:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5529 (0x1599)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:47 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F334699B421FB7CED46B08ED0C58DE7599223A47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e7:d8:ff:04:21:df:f4:7e:9d:47:21:92:bd:
e4:f5:7e:27:be:97:b8:a5:ad:92:54:fe:ed:36:27:
c1:b5:4d:03:93:39:8e:06:20:e6:a9:fd:13:6f:58:
fb:37:d0:94:e5:60:3e:a0:62:36:50:2e:15:3b:8c:
bd:e8:b1:da:11:a4:6d:98:12:ce:a9:f2:ce:4b:89:
78:b1:62:05:59:00:d8:c6:55:18:4b:83:32:dc:fc:
88:25:aa:3e:2c:41:57:91:66:b9:35:51:bd:df:6f:
01:1d:2d:64:1a:0f:96:1c:cd:45:37:0d:65:b3:03:
5a:83:b8:06:00:70:3e:09:6f:ea:27:c5:4c:a3:0f:
99:d1:d0:14:d9:d9:b7:e1:cd:fe:94:c2:d3:55:0e:
20:61:82:61:12:62:84:05:d1:da:c5:f8:96:4a:13:
9c:98:a6:e0:16:a1:bb:18:5f:ec:9f:6f:70:97:f5:
42:56:68:af:ae:ed:61:d1:4d:66:a2:c2:72:24:17:
0a:38:37:25:95:e1:b3:88:47:84:2e:f1:c1:e7:62:
56:35:c7:82:2f:20:b8:1a:17:c3:0c:2f:de:7c:12:
02:56:46:22:d2:61:bb:1f:88:73:9f:9b:18:26:0a:
ac:c8:e0:f9:21:b5:11:b3:74:d8:cf:4f:5c:97:52:
8d:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:34:69:9B:42:1F:B7:CE:D4:6B:08:ED:0C:58:DE:75:99:22:3A:47
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/8zRpm0Ift87UawjtDFjedZkiOkc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.118.0.0/16
Signature Algorithm: sha256WithRSAEncryption
9d:1b:54:88:57:30:1f:a9:bd:b9:b4:17:3e:2f:5e:32:e9:98:
4e:37:a7:b5:46:ec:f5:03:66:2c:f0:3a:91:d7:90:62:aa:4d:
d5:69:8e:6f:cc:ff:e4:6b:0a:1d:a5:3b:ef:91:7e:90:8f:cc:
5a:3b:c8:9e:11:42:1e:69:dc:6b:bb:a4:3a:91:42:46:16:c9:
dc:08:cd:c4:ed:ef:4c:24:2d:c1:d0:92:be:e4:ca:82:01:ba:
af:77:93:ad:f2:fb:a7:fb:40:94:c8:bf:8b:bc:58:44:e2:d8:
eb:9e:e8:5b:55:97:4f:3b:c6:72:b3:31:b9:72:55:c0:38:88:
17:3e:ec:09:54:8b:9e:c8:94:05:e4:cb:e4:e3:57:cb:bc:19:
e6:db:11:a4:c1:b4:e2:df:e3:11:10:0d:9a:87:94:ae:5e:26:
d3:a8:af:b7:b3:4c:f3:70:29:b4:65:bb:ba:fb:1e:de:d7:c8:
4a:72:82:5b:6a:2b:a1:a3:40:a3:70:2a:d0:4b:09:a2:ed:89:
4f:89:ed:37:bd:33:0c:29:35:3e:a1:83:d8:8e:7b:fa:8f:b5:
f4:a0:df:3e:c8:44:f4:4a:0f:a3:17:3f:47:45:f5:f9:fe:61:
11:e6:d3:4a:25:a1:83:19:29:b4:6a:29:d3:b4:76:a0:af:02:
32:45:99:c8
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICFZkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTEy
MzQ0NDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEYzMzQ2OTlCNDIxRkI3
Q0VENDZCMDhFRDBDNThERTc1OTkyMjNBNDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC359j/BCHf9H6dRyGSveT1fie+l7ilrZJU/u02J8G1TQOTOY4G
IOap/RNvWPs30JTlYD6gYjZQLhU7jL3osdoRpG2YEs6p8s5LiXixYgVZANjGVRhL
gzLc/Iglqj4sQVeRZrk1Ub3fbwEdLWQaD5YczUU3DWWzA1qDuAYAcD4Jb+onxUyj
D5nR0BTZ2bfhzf6UwtNVDiBhgmESYoQF0drF+JZKE5yYpuAWobsYX+yfb3CX9UJW
aK+u7WHRTWaiwnIkFwo4NyWV4bOIR4Qu8cHnYlY1x4IvILgaF8MML958EgJWRiLS
YbsfiHOfmxgmCqzI4PkhtRGzdNjPT1yXUo2nAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQU8zRpm0Ift87UawjtDFjedZkiOkcwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC84elJwbTBJZnQ4N1Vhd2p0REZq
ZWRaa2lPa2Mucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAenYw
DQYJKoZIhvcNAQELBQADggEBAJ0bVIhXMB+pvbm0Fz4vXjLpmE43p7VG7PUDZizw
OpHXkGKqTdVpjm/M/+RrCh2lO++RfpCPzFo7yJ4RQh5p3Gu7pDqRQkYWydwIzcTt
70wkLcHQkr7kyoIBuq93k63y+6f7QJTIv4u8WETi2Oue6FtVl087xnKzMblyVcA4
iBc+7AlUi57IlAXky+TjV8u8GebbEaTBtOLf4xEQDZqHlK5eJtOor7ezTPNwKbRl
u7r7Ht7XyEpygltqK6GjQKNwKtBLCaLtiU+J7Te9MwwpNT6hg9iOe/qPtfSg3z7I
RPRKD6MXP0dF9fn+YRHm00oloYMZKbRqKdO0dqCvAjJFmcg=
-----END CERTIFICATE-----
Generated at Sat May 10 11:51:10 2025 by rpki-client