Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/f-_watwkb77zMRxoUxAXPnTGKXw.roa
File: f-_watwkb77zMRxoUxAXPnTGKXw.roa (raw, json)
Hash identifier: gi385dkSmZwM/c5qVuQPVWXNyZ6B8DBPAnrAT2rlBcU=
Subject key identifier: 7F:EF:F0:6A:DC:24:6F:BE:F3:31:1C:68:53:10:17:3E:74:C6:29:7C
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1546
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/f-_watwkb77zMRxoUxAXPnTGKXw.roa
Signing time: Tue 11 Feb 2025 23:44:29 +0000
ROA not before: Tue 11 Feb 2025 23:44:29 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 15133
IP address blocks: 203.74.4.64/26 maxlen: 26
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5446 (0x1546)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:29 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=7FEFF06ADC246FBEF3311C685310173E74C6297C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:53:31:a3:9f:ba:df:ee:d4:94:9c:53:a5:6e:
34:8b:9a:22:de:bd:4f:81:22:bd:f3:2f:b3:b9:27:
a0:cc:da:2f:29:74:ff:d7:65:32:43:4f:78:76:8b:
5c:cb:4d:c6:48:ee:16:09:89:28:62:04:fe:2a:6d:
b8:36:c2:05:da:0a:a5:4e:7f:04:93:89:7d:37:35:
a6:27:76:cd:42:b8:bc:2d:1e:f2:30:66:14:1c:a8:
ff:b7:f3:b6:20:a5:1a:ed:9a:3b:08:27:75:18:4a:
e4:8e:14:10:0c:77:bf:7a:96:d6:a2:1f:78:c5:26:
9c:52:a7:ff:cc:58:27:16:cf:7c:96:94:a2:24:56:
bf:57:01:65:07:24:ff:8e:e4:55:5c:ee:d6:72:4c:
1a:57:73:06:7e:70:47:2d:5f:d7:c2:5e:57:b2:2e:
05:5f:72:33:42:85:7f:f9:a8:41:b9:27:d6:49:47:
d3:30:d8:71:f3:bb:5a:68:07:21:ac:e6:ae:c0:0a:
f7:f6:e2:2c:a7:0b:56:2a:b0:84:88:fa:af:5e:ad:
b3:5c:4f:84:16:98:aa:11:4f:ad:33:34:00:3d:c0:
8b:92:87:47:3b:7b:b2:c9:d4:2b:5e:8d:43:fd:7b:
73:8b:17:b3:f9:19:5a:ab:3e:70:1a:a0:a8:20:b2:
05:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:EF:F0:6A:DC:24:6F:BE:F3:31:1C:68:53:10:17:3E:74:C6:29:7C
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/f-_watwkb77zMRxoUxAXPnTGKXw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.74.4.64/26
Signature Algorithm: sha256WithRSAEncryption
62:b7:5c:79:52:0e:93:b7:34:86:5e:20:6f:16:73:84:fb:76:
f0:80:6f:97:86:e8:b2:66:47:ab:98:a9:f2:b3:db:2e:99:34:
c1:16:8d:82:0b:be:a4:b3:4e:af:57:e0:86:ba:ac:94:cd:af:
65:f7:aa:53:54:f6:ab:b0:25:76:24:1d:b2:9f:d1:08:13:b8:
4a:04:1c:d9:d0:b5:4e:81:6e:56:a7:f9:1e:7a:74:77:94:a9:
e2:a0:a4:03:9f:e4:6f:5d:0d:86:4b:07:6a:9e:32:0d:23:6c:
2c:76:b8:9f:08:21:88:13:cb:75:db:9e:63:39:56:f6:47:71:
32:9b:0f:26:9c:10:a6:18:9b:5c:91:c4:af:64:15:93:69:87:
95:6d:56:fa:0f:3f:a6:e4:96:22:6c:cb:94:87:90:10:62:5e:
26:55:53:e0:24:03:60:7f:72:61:8c:6a:3f:f1:c4:00:cc:fe:
68:1c:e5:2d:2f:be:70:28:2c:24:db:b6:5d:ef:7a:92:c9:22:
ec:bd:90:04:25:72:8e:86:8b:50:a7:20:3e:f9:43:ae:8b:b5:
86:26:85:40:a9:06:c5:4d:ba:84:21:d1:bd:e7:0e:18:50:83:
26:98:97:73:ae:4c:bd:ca:9b:ce:2a:44:ca:9d:b7:eb:9c:a1:
3d:af:90:7b
-----BEGIN CERTIFICATE-----
MIIE0TCCA7mgAwIBAgICFUYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTEy
MzQ0MjlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDdGRUZGMDZBREMyNDZG
QkVGMzMxMUM2ODUzMTAxNzNFNzRDNjI5N0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDUUzGjn7rf7tSUnFOlbjSLmiLevU+BIr3zL7O5J6DM2i8pdP/X
ZTJDT3h2i1zLTcZI7hYJiShiBP4qbbg2wgXaCqVOfwSTiX03NaYnds1CuLwtHvIw
ZhQcqP+387YgpRrtmjsIJ3UYSuSOFBAMd796ltaiH3jFJpxSp//MWCcWz3yWlKIk
Vr9XAWUHJP+O5FVc7tZyTBpXcwZ+cEctX9fCXleyLgVfcjNChX/5qEG5J9ZJR9Mw
2HHzu1poByGs5q7ACvf24iynC1YqsISI+q9erbNcT4QWmKoRT60zNAA9wIuSh0c7
e7LJ1CtejUP9e3OLF7P5GVqrPnAaoKggsgX9AgMBAAGjggHtMIIB6TAdBgNVHQ4E
FgQUf+/watwkb77zMRxoUxAXPnTGKXwwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9mLV93YXR3a2I3N3pNUnhvVXhB
WFBuVEdLWHcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUGy0oE
QDANBgkqhkiG9w0BAQsFAAOCAQEAYrdceVIOk7c0hl4gbxZzhPt28IBvl4bosmZH
q5ip8rPbLpk0wRaNggu+pLNOr1fghrqslM2vZfeqU1T2q7AldiQdsp/RCBO4SgQc
2dC1ToFuVqf5Hnp0d5Sp4qCkA5/kb10NhksHap4yDSNsLHa4nwghiBPLddueYzlW
9kdxMpsPJpwQphibXJHEr2QVk2mHlW1W+g8/puSWImzLlIeQEGJeJlVT4CQDYH9y
YYxqP/HEAMz+aBzlLS++cCgsJNu2Xe96kski7L2QBCVyjoaLUKcgPvlDrou1hiaF
QKkGxU26hCHRvecOGFCDJpiXc65MvcqbzipEyp2365yhPa+Qew==
-----END CERTIFICATE-----
Generated at Wed Jun 25 22:57:15 2025 by rpki-client