Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/ih7SqTQomNSxihAodoq_uJU10dw.roa
File: ih7SqTQomNSxihAodoq_uJU10dw.roa (raw, json)
Hash identifier: afAN46RXBBVFI9sF2B3mNjrrVSeZgFRVwLJQjB7Aq9E=
Subject key identifier: 8A:1E:D2:A9:34:28:98:D4:B1:8A:10:28:76:8A:BF:B8:95:35:D1:DC
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1595
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ih7SqTQomNSxihAodoq_uJU10dw.roa
Signing time: Tue 11 Feb 2025 23:44:46 +0000
ROA not before: Tue 11 Feb 2025 23:44:46 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 198949
IP address blocks: 203.75.255.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:23:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5525 (0x1595)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:46 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=8A1ED2A9342898D4B18A1028768ABFB89535D1DC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b1:7e:65:fa:1b:55:78:78:07:d2:f4:5a:8e:
e2:52:b4:f6:6c:c1:d1:cb:05:97:f8:4b:ce:4d:a4:
30:e5:88:36:05:da:58:8b:00:e7:59:bd:a5:72:83:
14:0d:ad:c9:75:03:a8:ce:da:bb:95:ed:3f:dc:a5:
b3:99:b2:75:a1:65:da:8e:69:4b:28:53:a1:c5:0a:
0b:ba:26:3e:10:ea:8e:17:8f:43:53:e1:11:86:80:
b9:10:43:2a:37:05:d8:5e:79:01:4c:8e:0d:48:dc:
61:43:98:3a:58:00:af:cb:ff:6a:0b:8f:1b:95:69:
cd:63:b6:be:23:d5:be:20:aa:8a:b4:b9:bf:7e:fd:
f9:3b:b4:87:ea:f9:d9:c4:8e:1f:35:c9:85:aa:7c:
01:2f:c9:b6:ea:8b:1c:82:29:d5:40:f6:5e:5c:da:
fa:43:96:e0:80:8c:81:5f:87:8e:0a:99:6a:6e:fc:
04:28:e5:f3:0c:63:63:6d:9a:33:84:3c:45:88:91:
cb:32:48:56:71:87:45:2d:46:15:f6:89:d8:d7:09:
5c:09:3b:da:cd:fa:5c:11:2b:55:c1:05:31:06:9f:
d6:63:02:ed:1b:8c:a3:52:1f:39:d7:88:c8:85:bd:
72:fe:67:d4:d1:d4:6e:1b:45:66:42:1c:a0:d9:2b:
6a:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:1E:D2:A9:34:28:98:D4:B1:8A:10:28:76:8A:BF:B8:95:35:D1:DC
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ih7SqTQomNSxihAodoq_uJU10dw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.75.255.0/24
Signature Algorithm: sha256WithRSAEncryption
58:3c:e4:7b:bd:fd:8e:c2:37:66:8a:2d:09:25:72:02:39:53:
97:a3:4e:91:0f:a7:8d:f7:58:e5:0b:80:13:ef:f8:7a:d1:d1:
ce:10:e1:6c:35:b4:31:b5:03:5a:1a:af:c9:b0:96:7b:c2:96:
17:9c:b2:f2:0f:08:9e:3f:da:6e:46:0c:3a:8a:1d:16:b4:b1:
f5:bb:85:25:83:22:b3:59:49:f9:b3:0b:76:18:2b:21:47:94:
77:78:b4:39:d5:08:93:40:83:7d:37:23:e9:dc:0b:11:b5:75:
da:52:6c:ff:1f:bc:19:02:f5:f9:8e:94:7b:32:66:45:d6:af:
45:5e:79:f2:9f:aa:2f:7e:dc:c0:fd:41:2f:b4:1f:96:05:5e:
a9:67:84:e5:e2:e9:dc:4a:25:78:1a:fd:29:4a:c0:c0:2d:4e:
23:71:ac:04:39:fc:6d:ca:f7:14:87:a1:a7:e9:93:17:20:ea:
07:23:3c:99:51:b9:a7:fc:93:e1:db:9d:93:37:20:f6:ce:7c:
34:dd:b7:55:2c:9f:5e:13:36:b9:c2:50:82:cf:d7:74:a3:b5:
e5:13:ec:d8:fa:03:8c:1a:86:68:2d:96:6b:84:0d:73:51:89:
6f:9e:8a:34:c3:0a:06:9a:7f:9c:95:a9:44:3e:28:f7:9c:5c:
21:e4:0f:99
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICFZUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTEy
MzQ0NDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhBMUVEMkE5MzQyODk4
RDRCMThBMTAyODc2OEFCRkI4OTUzNUQxREMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCosX5l+htVeHgH0vRajuJStPZswdHLBZf4S85NpDDliDYF2liL
AOdZvaVygxQNrcl1A6jO2ruV7T/cpbOZsnWhZdqOaUsoU6HFCgu6Jj4Q6o4Xj0NT
4RGGgLkQQyo3BdheeQFMjg1I3GFDmDpYAK/L/2oLjxuVac1jtr4j1b4gqoq0ub9+
/fk7tIfq+dnEjh81yYWqfAEvybbqixyCKdVA9l5c2vpDluCAjIFfh44KmWpu/AQo
5fMMY2NtmjOEPEWIkcsySFZxh0UtRhX2idjXCVwJO9rN+lwRK1XBBTEGn9ZjAu0b
jKNSHznXiMiFvXL+Z9TR1G4bRWZCHKDZK2pPAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUih7SqTQomNSxihAodoq/uJU10dwwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9paDdTcVRRb21OU3hpaEFvZG9x
X3VKVTEwZHcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy0v/
MA0GCSqGSIb3DQEBCwUAA4IBAQBYPOR7vf2Owjdmii0JJXICOVOXo06RD6eN91jl
C4AT7/h60dHOEOFsNbQxtQNaGq/JsJZ7wpYXnLLyDwieP9puRgw6ih0WtLH1u4Ul
gyKzWUn5swt2GCshR5R3eLQ51QiTQIN9NyPp3AsRtXXaUmz/H7wZAvX5jpR7MmZF
1q9FXnnyn6ovftzA/UEvtB+WBV6pZ4Tl4uncSiV4Gv0pSsDALU4jcawEOfxtyvcU
h6Gn6ZMXIOoHIzyZUbmn/JPh252TNyD2znw03bdVLJ9eEza5wlCCz9d0o7XlE+zY
+gOMGoZoLZZrhA1zUYlvnoo0wwoGmn+clalEPij3nFwh5A+Z
-----END CERTIFICATE-----
Generated at Sat May 10 11:50:12 2025 by rpki-client