Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/cEY6eFcXJo-KkgC5aeh-K_gjM3M.roa
File: cEY6eFcXJo-KkgC5aeh-K_gjM3M.roa (raw, json)
Hash identifier: RGc2TGRO67V1V1Y9+RZ+rUzOy3vLAYHOOaPPUWZPG7Y=
Subject key identifier: 70:46:3A:78:57:17:26:8F:8A:92:00:B9:69:E8:7E:2B:F8:23:33:73
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 142D
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/cEY6eFcXJo-KkgC5aeh-K_gjM3M.roa
Signing time: Mon 10 Feb 2025 14:34:41 +0000
ROA not before: Mon 10 Feb 2025 14:34:41 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 211.21.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Feb 2025 23:44:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5165 (0x142d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 10 14:34:41 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=70463A785717268F8A9200B969E87E2BF8233373
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:f4:1b:35:e0:80:29:aa:1c:a7:e2:17:99:a8:
2f:16:cb:68:16:ff:2d:5b:2e:b6:e4:04:d1:5c:ed:
e0:91:f5:67:25:16:da:d3:dc:36:dc:de:cb:a0:d3:
52:d4:b9:3e:cf:89:3e:23:e0:17:d3:ce:01:67:04:
3b:5c:a8:1c:e3:ad:6e:88:e5:7f:31:bb:ab:04:bc:
56:18:c0:df:7f:b0:89:69:79:82:8b:e8:80:51:79:
33:31:a6:bb:ec:62:dd:a4:0c:8b:02:04:8f:0e:f2:
ce:8f:8b:d6:79:0d:0a:13:03:63:f0:30:e3:37:b2:
2a:8e:49:6e:0e:08:dd:1d:fa:b9:cb:94:43:c7:51:
1d:76:18:1d:f9:82:3c:0b:2c:c9:5b:63:d5:39:e3:
be:34:1f:1f:2a:84:4d:81:10:d2:41:62:65:49:4a:
2e:07:58:40:76:2d:d9:96:10:6a:44:d6:59:29:7f:
f6:94:9a:4a:b0:6b:20:5b:98:70:d2:62:7e:5f:d8:
8e:c3:0c:c4:29:24:3d:78:fe:78:05:68:1c:70:af:
59:fc:ea:62:83:66:2f:5c:88:6e:d8:e9:84:e7:13:
75:b0:f8:dc:ff:6b:26:86:ac:67:48:f6:97:c4:c6:
60:89:04:5f:3d:69:86:b8:ea:5b:ee:ac:7c:10:1f:
ee:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:46:3A:78:57:17:26:8F:8A:92:00:B9:69:E8:7E:2B:F8:23:33:73
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/cEY6eFcXJo-KkgC5aeh-K_gjM3M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.21.0.0/16
Signature Algorithm: sha256WithRSAEncryption
bd:1e:75:87:88:99:a2:57:8c:b2:cf:9f:e1:9c:21:0d:51:ff:
3d:70:d0:ee:6c:f8:d5:53:52:2e:f3:42:73:be:4a:49:88:ed:
29:ba:61:91:bf:cb:98:9b:a3:8c:cc:80:a8:ca:ed:8e:03:09:
8d:3e:30:c9:85:ae:f3:b9:ff:39:82:da:15:29:03:6d:a5:b8:
20:db:74:c0:e9:d9:fb:11:80:96:1a:6e:7c:f4:84:03:5b:af:
39:ac:c4:78:46:b1:b3:d9:ac:30:05:7d:d4:9f:f7:45:15:37:
5d:ca:97:11:82:3c:6c:ac:73:85:5f:23:5a:b0:6b:6e:75:27:
e7:b8:9f:5f:8d:aa:5e:68:92:e4:3b:7d:8d:66:eb:be:22:04:
52:1d:69:8e:85:eb:09:17:36:47:57:54:52:c5:3f:69:2a:12:
f2:0b:41:27:c6:5d:ef:b0:f4:ab:b6:d6:d9:eb:7e:b7:a7:99:
10:5a:d5:3b:59:24:9b:d4:3d:86:a3:72:4b:f6:a8:5f:2d:c5:
5c:d4:eb:b0:1d:5d:e6:18:62:b3:ab:a7:d1:3a:05:94:5f:38:
81:a8:81:77:92:1e:8a:ae:55:92:4e:4a:32:95:a5:15:52:39:
9a:73:56:99:b1:77:cc:79:30:74:af:63:b6:aa:26:30:16:ad:
66:66:fa:0b
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICFC0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTAx
NDM0NDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDcwNDYzQTc4NTcxNzI2
OEY4QTkyMDBCOTY5RTg3RTJCRjgyMzMzNzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDk9Bs14IApqhyn4heZqC8Wy2gW/y1bLrbkBNFc7eCR9WclFtrT
3Dbc3sug01LUuT7PiT4j4BfTzgFnBDtcqBzjrW6I5X8xu6sEvFYYwN9/sIlpeYKL
6IBReTMxprvsYt2kDIsCBI8O8s6Pi9Z5DQoTA2PwMOM3siqOSW4OCN0d+rnLlEPH
UR12GB35gjwLLMlbY9U54740Hx8qhE2BENJBYmVJSi4HWEB2LdmWEGpE1lkpf/aU
mkqwayBbmHDSYn5f2I7DDMQpJD14/ngFaBxwr1n86mKDZi9ciG7Y6YTnE3Ww+Nz/
ayaGrGdI9pfExmCJBF89aYa46lvurHwQH+41AgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUcEY6eFcXJo+KkgC5aeh+K/gjM3MwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9jRVk2ZUZjWEpvLUtrZ0M1YWVo
LUtfZ2pNM00ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMA0xUw
DQYJKoZIhvcNAQELBQADggEBAL0edYeImaJXjLLPn+GcIQ1R/z1w0O5s+NVTUi7z
QnO+SkmI7Sm6YZG/y5ibo4zMgKjK7Y4DCY0+MMmFrvO5/zmC2hUpA22luCDbdMDp
2fsRgJYabnz0hANbrzmsxHhGsbPZrDAFfdSf90UVN13KlxGCPGysc4VfI1qwa251
J+e4n1+Nql5okuQ7fY1m674iBFIdaY6F6wkXNkdXVFLFP2kqEvILQSfGXe+w9Ku2
1tnrfrenmRBa1TtZJJvUPYajckv2qF8txVzU67AdXeYYYrOrp9E6BZRfOIGogXeS
HoquVZJOSjKVpRVSOZpzVpmxd8x5MHSvY7aqJjAWrWZm+gs=
-----END CERTIFICATE-----
Generated at Sat May 10 12:27:43 2025 by rpki-client