Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/i8Di6lMLafMwHn87zSFQ8Z1vgbs.roa
File: i8Di6lMLafMwHn87zSFQ8Z1vgbs.roa (raw, json)
Hash identifier: HGxtL6o3OntnHkDXPss6wZuSzSBfz38886Qd2JM9iSE=
Subject key identifier: 8B:C0:E2:EA:53:0B:69:F3:30:1E:7F:3B:CD:21:50:F1:9D:6F:81:BB
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1587
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/i8Di6lMLafMwHn87zSFQ8Z1vgbs.roa
Signing time: Tue 11 Feb 2025 23:44:44 +0000
ROA not before: Tue 11 Feb 2025 23:44:44 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 220.129.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:23:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5511 (0x1587)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:44 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=8BC0E2EA530B69F3301E7F3BCD2150F19D6F81BB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:50:b1:ab:5f:b1:96:f4:87:6c:50:2a:e4:1f:
cc:b4:da:2e:95:ba:fe:7e:d3:4f:23:8e:e3:3a:97:
98:df:81:ec:9e:e9:94:30:94:70:8d:e3:d1:45:59:
37:cf:9d:fb:7b:6d:b5:1a:24:69:3a:a2:e6:48:4e:
5a:4b:61:14:d8:ce:b5:39:f8:d0:02:c6:a5:d2:2e:
1e:ce:03:93:4e:55:03:fe:9d:49:22:32:0c:76:06:
29:f6:69:95:f0:5d:02:a3:e2:69:96:74:06:46:01:
00:66:a7:30:fc:96:7b:e8:ff:b8:50:23:3a:2c:46:
19:22:d4:f6:94:27:84:ca:a4:60:5e:41:05:53:17:
3a:52:67:e9:55:e1:49:0b:4c:47:19:8e:54:b6:c9:
c4:f9:d1:fd:e7:0c:95:79:c1:51:f1:04:5c:c7:ae:
75:80:45:31:ee:e4:cc:26:06:62:61:88:64:9f:3d:
e0:21:a1:ac:55:09:37:2f:62:b5:75:62:cc:2b:b8:
a7:c4:1f:07:4c:89:e1:5c:28:a5:99:c8:0a:5d:da:
c5:c4:a6:d7:7d:41:58:63:d6:1f:1c:e5:fc:37:6e:
a8:5a:ea:c4:ef:61:a8:99:57:4e:f8:b7:ce:3a:5b:
8b:a9:13:f2:eb:a9:3f:d2:12:de:7a:ba:8a:24:74:
9a:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:C0:E2:EA:53:0B:69:F3:30:1E:7F:3B:CD:21:50:F1:9D:6F:81:BB
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/i8Di6lMLafMwHn87zSFQ8Z1vgbs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
220.129.0.0/16
Signature Algorithm: sha256WithRSAEncryption
c6:26:b3:00:4b:0a:3e:cc:d6:3c:a4:86:58:86:88:ee:12:b9:
8e:71:a7:f9:e7:5b:50:23:f5:c6:ba:b2:25:1f:9c:48:f6:d6:
88:89:08:10:be:78:68:fb:ea:a2:e6:fc:69:b8:8a:c2:c6:ef:
e5:40:72:e4:7f:82:e0:ed:af:04:2e:ce:ef:09:aa:35:9d:37:
72:90:db:ef:34:64:45:0b:c5:8c:ad:2b:79:9d:9e:fc:59:2f:
a8:2a:02:b4:2f:f6:52:80:85:2a:05:4d:9b:24:8b:bb:8e:b2:
91:ad:53:9a:02:c9:ff:30:12:e4:f1:30:9e:98:2c:ef:da:a3:
2a:fe:8b:c5:29:bc:3b:b1:0b:4f:23:02:26:2b:ef:f6:2f:9d:
36:5f:f9:f9:38:17:16:b8:4f:0a:d7:3b:58:af:36:ef:6a:66:
82:8f:09:b5:60:50:61:30:55:6e:19:a0:7a:bb:c2:5b:38:a1:
31:37:70:03:dd:71:49:39:69:08:fe:bb:36:ce:9b:1c:83:27:
f0:ec:d6:97:d2:f8:df:0b:4d:ac:cc:91:3f:95:c9:4b:a7:57:
6e:28:90:47:e0:68:57:ed:b8:b6:98:ee:e0:be:27:86:5f:4a:
29:e4:da:ce:30:33:29:df:09:71:d6:00:0a:a6:78:69:59:ab:
b4:d2:80:05
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICFYcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTEy
MzQ0NDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhCQzBFMkVBNTMwQjY5
RjMzMDFFN0YzQkNEMjE1MEYxOUQ2RjgxQkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDdULGrX7GW9IdsUCrkH8y02i6Vuv5+008jjuM6l5jfgeye6ZQw
lHCN49FFWTfPnft7bbUaJGk6ouZITlpLYRTYzrU5+NACxqXSLh7OA5NOVQP+nUki
Mgx2Bin2aZXwXQKj4mmWdAZGAQBmpzD8lnvo/7hQIzosRhki1PaUJ4TKpGBeQQVT
FzpSZ+lV4UkLTEcZjlS2ycT50f3nDJV5wVHxBFzHrnWARTHu5MwmBmJhiGSfPeAh
oaxVCTcvYrV1YswruKfEHwdMieFcKKWZyApd2sXEptd9QVhj1h8c5fw3bqha6sTv
YaiZV074t846W4upE/LrqT/SEt56uookdJo/AgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUi8Di6lMLafMwHn87zSFQ8Z1vgbswHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9pOERpNmxNTGFmTXdIbjg3elNG
UThaMXZnYnMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMA3IEw
DQYJKoZIhvcNAQELBQADggEBAMYmswBLCj7M1jykhliGiO4SuY5xp/nnW1Aj9ca6
siUfnEj21oiJCBC+eGj76qLm/Gm4isLG7+VAcuR/guDtrwQuzu8JqjWdN3KQ2+80
ZEULxYytK3mdnvxZL6gqArQv9lKAhSoFTZski7uOspGtU5oCyf8wEuTxMJ6YLO/a
oyr+i8UpvDuxC08jAiYr7/YvnTZf+fk4Fxa4TwrXO1ivNu9qZoKPCbVgUGEwVW4Z
oHq7wls4oTE3cAPdcUk5aQj+uzbOmxyDJ/Ds1pfS+N8LTazMkT+VyUunV24okEfg
aFftuLaY7uC+J4ZfSink2s4wMynfCXHWAAqmeGlZq7TSgAU=
-----END CERTIFICATE-----
Generated at Sat May 10 12:41:01 2025 by rpki-client