Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/TTHju3vOmCJMJABMPzu3PJsHpds.roa
File: TTHju3vOmCJMJABMPzu3PJsHpds.roa (raw, json)
Hash identifier: DdJMwAXFs/iUtYqEI5kOjjOmDo0wFoCZpvDOKQgMsBw=
Subject key identifier: 4D:31:E3:BB:7B:CE:98:22:4C:24:00:4C:3F:3B:B7:3C:9B:07:A5:DB
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 152E
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/TTHju3vOmCJMJABMPzu3PJsHpds.roa
Signing time: Tue 11 Feb 2025 23:44:24 +0000
ROA not before: Tue 11 Feb 2025 23:44:24 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131660
IP address blocks: 2001:b000:590::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5422 (0x152e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:24 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=4D31E3BB7BCE98224C24004C3F3BB73C9B07A5DB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:8f:e0:01:53:9d:ef:16:67:d5:6c:53:90:fe:
a5:16:b7:32:41:1a:09:a6:35:49:c3:c1:73:a3:8b:
4f:d9:26:df:d5:a7:7b:e6:c5:d4:ce:3e:cf:a0:83:
9f:f8:6b:b6:59:ce:6a:e6:3e:5f:65:94:f6:76:0f:
45:d7:5f:dc:71:8a:a0:24:51:5e:32:ef:ac:98:3c:
ea:30:eb:50:c7:06:61:22:ed:b6:6f:c4:21:7f:39:
0c:57:5c:80:76:29:e0:ed:5c:e7:43:0d:3c:af:c5:
26:e3:d7:06:46:47:de:c8:b8:40:e8:10:e5:f8:e2:
5d:73:e6:de:31:44:8c:83:70:e4:dc:86:ba:cc:0c:
86:e2:3e:ab:bc:17:02:d9:4c:5f:32:f2:f8:09:e1:
ab:2b:d1:71:79:78:2e:7e:f6:f6:2a:3b:0c:6e:f8:
3b:fd:e6:f2:71:92:0f:14:68:29:9a:5f:c6:b4:a0:
71:89:36:11:dc:0f:90:f6:e9:28:c4:e1:80:67:f8:
fc:1d:cb:f0:03:b8:3d:c4:6e:d3:93:33:33:37:0f:
af:1d:dd:5d:9d:6b:84:81:05:8d:53:9a:4d:4a:57:
13:fa:01:fd:88:f2:4b:c1:9e:98:c3:20:92:e3:51:
19:85:88:f7:9d:f6:17:47:75:eb:f5:4d:06:06:52:
ca:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:31:E3:BB:7B:CE:98:22:4C:24:00:4C:3F:3B:B7:3C:9B:07:A5:DB
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/TTHju3vOmCJMJABMPzu3PJsHpds.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b000:590::/48
Signature Algorithm: sha256WithRSAEncryption
ce:42:c5:9e:2b:5d:e0:a9:2a:2c:49:73:41:12:bc:86:05:50:
2d:bd:9e:fd:d7:7b:f6:32:b5:b4:6c:f6:9e:ca:c8:0a:87:6d:
b3:03:52:25:d4:4d:f7:94:61:77:c8:64:cc:01:ce:db:d6:c6:
73:82:27:01:d3:c3:a9:6e:4a:20:46:60:a7:d2:ed:c6:32:19:
4f:d4:88:c0:ef:7f:14:d7:02:d4:dd:4f:ad:08:12:0d:d7:cc:
85:98:b1:5a:98:eb:e9:51:b0:1e:ce:19:9d:c5:e5:de:34:40:
0d:c8:bf:ba:d0:e1:56:80:89:81:1d:ff:b3:52:af:57:b3:74:
a4:c0:cc:74:32:af:8c:ff:70:24:f5:5d:e0:1e:2f:90:c6:ee:
63:b2:c2:29:58:8f:57:64:e2:54:97:d4:69:e7:8b:e1:57:e6:
03:50:2b:f1:c1:f6:c3:d2:fb:9e:eb:8f:38:dd:b2:b3:29:dd:
dc:39:80:ef:4f:fd:14:d8:3a:8d:78:ad:37:5c:1b:f8:ed:7d:
c4:81:3b:79:de:95:d0:12:bd:56:af:9e:7a:6c:06:cf:30:89:
cd:f2:58:a5:c8:ca:f7:a9:71:e3:ad:bb:81:46:45:c4:a5:70:
01:34:7a:5c:6e:a9:af:08:0e:a5:c4:86:7d:16:b9:37:70:36:
00:5a:ca:f9
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgICFS4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTEy
MzQ0MjRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDREMzFFM0JCN0JDRTk4
MjI0QzI0MDA0QzNGM0JCNzNDOUIwN0E1REIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDDj+ABU53vFmfVbFOQ/qUWtzJBGgmmNUnDwXOji0/ZJt/Vp3vm
xdTOPs+gg5/4a7ZZzmrmPl9llPZ2D0XXX9xxiqAkUV4y76yYPOow61DHBmEi7bZv
xCF/OQxXXIB2KeDtXOdDDTyvxSbj1wZGR97IuEDoEOX44l1z5t4xRIyDcOTchrrM
DIbiPqu8FwLZTF8y8vgJ4asr0XF5eC5+9vYqOwxu+Dv95vJxkg8UaCmaX8a0oHGJ
NhHcD5D26SjE4YBn+Pwdy/ADuD3EbtOTMzM3D68d3V2da4SBBY1Tmk1KVxP6Af2I
8kvBnpjDIJLjURmFiPed9hdHdev1TQYGUsohAgMBAAGjggHvMIIB6zAdBgNVHQ4E
FgQUTTHju3vOmCJMJABMPzu3PJsHpdswHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9UVEhqdTN2T21DSk1KQUJNUHp1
M1BKc0hwZHMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAGw
AAWQMA0GCSqGSIb3DQEBCwUAA4IBAQDOQsWeK13gqSosSXNBEryGBVAtvZ7913v2
MrW0bPaeysgKh22zA1Il1E33lGF3yGTMAc7b1sZzgicB08OpbkogRmCn0u3GMhlP
1IjA738U1wLU3U+tCBIN18yFmLFamOvpUbAezhmdxeXeNEANyL+60OFWgImBHf+z
Uq9Xs3SkwMx0Mq+M/3Ak9V3gHi+Qxu5jssIpWI9XZOJUl9Rp54vhV+YDUCvxwfbD
0vue64843bKzKd3cOYDvT/0U2DqNeK03XBv47X3EgTt53pXQEr1Wr556bAbPMInN
8lilyMr3qXHjrbuBRkXEpXABNHpcbqmvCA6lxIZ9Frk3cDYAWsr5
-----END CERTIFICATE-----
Generated at Sat May 10 11:17:57 2025 by rpki-client