Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/PcALEoE8l5GOsumRwroyOx-0he8.roa
File: PcALEoE8l5GOsumRwroyOx-0he8.roa (raw, json)
Hash identifier: IjdeZaFfChCkI5TMxpE5KpCKbv8aHUTorsK+m3YHUYI=
Subject key identifier: 3D:C0:0B:12:81:3C:97:91:8E:B2:E9:91:C2:BA:32:3B:1F:B4:85:EF
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 156E
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/PcALEoE8l5GOsumRwroyOx-0he8.roa
Signing time: Tue 11 Feb 2025 23:44:38 +0000
ROA not before: Tue 11 Feb 2025 23:44:38 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 61.228.0.0/14 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5486 (0x156e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:38 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=3DC00B12813C97918EB2E991C2BA323B1FB485EF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:66:f3:a6:de:07:b7:fd:cb:de:28:94:19:2b:
99:ac:ff:2f:bf:3f:be:c9:d4:73:61:99:d2:65:4e:
00:27:b9:ed:a8:ed:c0:1c:d9:c1:57:5d:a4:75:1a:
cf:65:ee:8d:c3:74:ca:0a:6f:bc:78:c0:ab:33:56:
90:74:2a:a1:a9:72:bc:2e:69:9c:b0:9b:0f:7c:9c:
ae:2d:b6:6f:b8:d1:9f:ac:2c:7c:98:0c:99:0d:ad:
66:35:12:06:e1:22:3d:4a:4d:81:74:e3:94:9b:e1:
d1:41:6a:23:21:25:62:48:b7:67:ad:dc:09:9a:a2:
0d:bb:ef:1f:79:98:4b:07:71:15:da:40:94:ac:7b:
be:28:b9:aa:dc:0c:cd:4b:d6:b6:3c:52:08:41:a1:
d7:2a:e3:20:89:f9:df:e6:14:06:b2:3d:d8:41:18:
be:f1:f2:85:94:68:81:92:ab:04:1e:d3:fc:ee:a9:
60:f8:47:a1:0d:c5:af:42:ac:c9:1f:75:78:6e:6f:
67:12:0b:4a:96:b2:92:93:b6:7d:2b:43:83:9f:be:
8a:1d:03:3e:e0:16:55:41:66:bd:6e:05:23:99:8f:
48:46:7c:7c:3e:67:3e:4a:bd:05:72:06:af:56:6d:
47:43:f7:87:75:21:c8:79:a2:f6:16:1d:1e:58:72:
d8:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:C0:0B:12:81:3C:97:91:8E:B2:E9:91:C2:BA:32:3B:1F:B4:85:EF
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/PcALEoE8l5GOsumRwroyOx-0he8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.228.0.0/14
Signature Algorithm: sha256WithRSAEncryption
0e:bd:1a:ed:cd:d3:67:27:3d:f1:77:58:54:68:3c:3a:e6:5b:
1f:02:08:82:54:26:18:d9:ab:4a:d5:97:4c:65:5a:06:55:b6:
d9:30:51:79:7b:1a:15:12:d1:a6:82:c7:40:97:b0:1c:a8:fa:
f4:0d:8b:9a:ba:68:0d:e4:56:f4:79:d7:54:a9:39:39:a9:f0:
69:1e:bc:bb:ac:58:a6:42:1d:2e:72:99:8e:3d:75:55:42:d5:
eb:d3:34:fe:9c:ef:76:0f:9e:06:eb:cf:e3:f8:98:b2:34:bc:
1c:d0:6a:c9:70:6b:82:1b:c6:61:79:35:e7:bf:f5:26:1e:18:
67:5b:b3:8a:08:47:11:53:90:fa:db:c3:17:3e:88:04:70:8e:
fe:6d:15:f0:c6:20:68:75:7a:12:0d:c3:5e:3b:86:57:45:d7:
7f:c7:5f:db:09:42:3c:49:2f:7e:24:9b:ad:92:47:2a:4d:63:
25:ec:9e:a1:62:3c:c5:32:6c:47:d5:3c:cd:a7:f1:fd:07:c5:
97:7b:f0:f5:2c:e3:73:03:e5:26:f5:85:20:69:18:a9:c6:b5:
e5:3b:46:63:0b:75:f8:47:ee:14:4c:c7:11:ae:76:0f:ee:2d:
d6:a5:ec:35:f3:a1:1d:9b:1e:51:05:3c:f9:05:fc:06:78:4d:
4e:a6:90:18
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICFW4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTEy
MzQ0MzhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNEQzAwQjEyODEzQzk3
OTE4RUIyRTk5MUMyQkEzMjNCMUZCNDg1RUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDBZvOm3ge3/cveKJQZK5ms/y+/P77J1HNhmdJlTgAnue2o7cAc
2cFXXaR1Gs9l7o3DdMoKb7x4wKszVpB0KqGpcrwuaZywmw98nK4ttm+40Z+sLHyY
DJkNrWY1EgbhIj1KTYF045Sb4dFBaiMhJWJIt2et3Amaog277x95mEsHcRXaQJSs
e74ouarcDM1L1rY8UghBodcq4yCJ+d/mFAayPdhBGL7x8oWUaIGSqwQe0/zuqWD4
R6ENxa9CrMkfdXhub2cSC0qWspKTtn0rQ4OfvoodAz7gFlVBZr1uBSOZj0hGfHw+
Zz5KvQVyBq9WbUdD94d1Ich5ovYWHR5YctjxAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUPcALEoE8l5GOsumRwroyOx+0he8wHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9QY0FMRW9FOGw1R09zdW1Sd3Jv
eU94LTBoZTgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMCPeQw
DQYJKoZIhvcNAQELBQADggEBAA69Gu3N02cnPfF3WFRoPDrmWx8CCIJUJhjZq0rV
l0xlWgZVttkwUXl7GhUS0aaCx0CXsByo+vQNi5q6aA3kVvR511SpOTmp8GkevLus
WKZCHS5ymY49dVVC1evTNP6c73YPngbrz+P4mLI0vBzQaslwa4IbxmF5Nee/9SYe
GGdbs4oIRxFTkPrbwxc+iARwjv5tFfDGIGh1ehINw147hldF13/HX9sJQjxJL34k
m62SRypNYyXsnqFiPMUybEfVPM2n8f0HxZd78PUs43MD5Sb1hSBpGKnGteU7RmML
dfhH7hRMxxGudg/uLdal7DXzoR2bHlEFPPkF/AZ4TU6mkBg=
-----END CERTIFICATE-----
Generated at Sat May 10 12:42:10 2025 by rpki-client