Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/jZVY6sRV0qyFM5cEwOfVbOzshdc.roa
File: jZVY6sRV0qyFM5cEwOfVbOzshdc.roa (raw, json)
Hash identifier: wEr3lwGoOi3E171hTiD4pftKrQ7aYVeE16v3rSpDwPY=
Subject key identifier: 8D:95:58:EA:C4:55:D2:AC:85:33:97:04:C0:E7:D5:6C:EC:EC:85:D7
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1577
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/jZVY6sRV0qyFM5cEwOfVbOzshdc.roa
Signing time: Tue 11 Feb 2025 23:44:40 +0000
ROA not before: Tue 11 Feb 2025 23:44:40 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 23675
IP address blocks: 203.66.101.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:23:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5495 (0x1577)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:40 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=8D9558EAC455D2AC85339704C0E7D56CECEC85D7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:1c:0a:66:f4:37:92:c2:d3:65:1a:40:5b:f6:
f2:c4:0b:e3:de:00:6d:93:e4:3b:27:8d:14:70:46:
90:c9:64:e3:4c:13:ae:bc:e7:27:30:1d:bb:81:4c:
32:24:64:85:9c:de:b3:f2:48:9f:35:4e:63:12:6c:
42:9d:d1:ba:1b:e2:74:72:49:2b:b6:10:15:9e:4a:
bd:f0:39:06:26:01:b6:78:54:4a:8e:72:df:b5:cb:
42:b4:8a:d6:96:5a:63:1d:29:b6:a5:20:5d:05:64:
35:f8:34:d5:b6:2c:3b:48:16:a8:6c:a6:3a:4f:a9:
64:60:c1:75:c4:42:36:35:ef:2a:60:19:13:89:73:
aa:3a:6d:96:50:0b:67:87:cb:ba:f8:5f:13:12:fa:
f9:64:85:c8:45:64:24:0d:d3:07:08:f2:40:ff:b4:
5a:52:6f:41:b8:86:05:72:47:fc:c6:eb:a5:f7:1f:
9d:e9:ad:d0:aa:57:fa:de:13:84:9f:0d:d7:1d:63:
5d:51:2f:1b:03:3e:e7:1a:9b:26:a4:da:30:ab:0c:
a7:ea:e7:ea:17:ec:db:50:83:d6:b8:bf:51:be:d4:
38:9c:23:8f:62:6b:4b:44:9a:46:1f:7f:0f:ff:28:
c3:e8:e0:3d:70:47:14:a8:98:26:8c:72:ba:40:cc:
7b:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:95:58:EA:C4:55:D2:AC:85:33:97:04:C0:E7:D5:6C:EC:EC:85:D7
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/jZVY6sRV0qyFM5cEwOfVbOzshdc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.66.101.0/24
Signature Algorithm: sha256WithRSAEncryption
32:83:ba:5c:dd:9b:b7:9d:b7:f6:e7:da:ce:52:39:3f:ed:77:
88:e7:02:5a:aa:32:dd:ae:72:92:02:0b:c1:c0:41:3f:c9:c2:
85:fa:79:42:df:25:b9:e7:3c:ee:cf:3a:4b:db:ea:7b:d8:2d:
7c:b5:ac:10:0b:ff:e3:f5:d6:09:7e:8c:c3:9a:94:c4:23:0c:
ae:ee:99:11:c3:c5:ae:0b:20:ed:46:b4:eb:49:66:98:f1:4d:
f0:60:7e:6f:62:4c:6e:38:f4:93:28:58:ce:26:de:8b:79:d4:
72:2a:7a:ff:40:1e:e4:48:69:e8:2d:a0:e0:f9:34:cc:d7:d5:
ed:b0:ad:27:1a:e1:98:f6:c6:59:59:44:f5:4b:8b:57:e2:b4:
57:ae:73:7e:be:d3:ba:de:51:71:29:8c:16:ae:13:9b:4c:4b:
2a:c6:53:4e:dd:1a:b7:74:17:22:a7:ff:58:c9:50:53:70:49:
99:7f:0f:a8:78:69:51:12:c9:7d:fc:8e:2b:52:f1:5d:5c:cf:
3b:77:ad:a4:3e:62:1c:e4:6d:e7:31:1c:bd:4c:ca:fa:46:00:
21:80:54:bb:9a:c9:1c:f2:60:d6:d2:2c:e6:f0:8a:09:95:5d:
23:06:aa:bd:59:4e:f9:54:bd:2f:0f:07:be:0d:1e:c3:a8:cf:
cb:6a:84:84
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICFXcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTEy
MzQ0NDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhEOTU1OEVBQzQ1NUQy
QUM4NTMzOTcwNEMwRTdENTZDRUNFQzg1RDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDHHApm9DeSwtNlGkBb9vLEC+PeAG2T5DsnjRRwRpDJZONME668
5ycwHbuBTDIkZIWc3rPySJ81TmMSbEKd0bob4nRySSu2EBWeSr3wOQYmAbZ4VEqO
ct+1y0K0itaWWmMdKbalIF0FZDX4NNW2LDtIFqhspjpPqWRgwXXEQjY17ypgGROJ
c6o6bZZQC2eHy7r4XxMS+vlkhchFZCQN0wcI8kD/tFpSb0G4hgVyR/zG66X3H53p
rdCqV/reE4SfDdcdY11RLxsDPucamyak2jCrDKfq5+oX7NtQg9a4v1G+1DicI49i
a0tEmkYffw//KMPo4D1wRxSomCaMcrpAzHsHAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUjZVY6sRV0qyFM5cEwOfVbOzshdcwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9qWlZZNnNSVjBxeUZNNWNFd09m
VmJPenNoZGMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy0Jl
MA0GCSqGSIb3DQEBCwUAA4IBAQAyg7pc3Zu3nbf259rOUjk/7XeI5wJaqjLdrnKS
AgvBwEE/ycKF+nlC3yW55zzuzzpL2+p72C18tawQC//j9dYJfozDmpTEIwyu7pkR
w8WuCyDtRrTrSWaY8U3wYH5vYkxuOPSTKFjOJt6LedRyKnr/QB7kSGnoLaDg+TTM
19XtsK0nGuGY9sZZWUT1S4tX4rRXrnN+vtO63lFxKYwWrhObTEsqxlNO3Rq3dBci
p/9YyVBTcEmZfw+oeGlREsl9/I4rUvFdXM87d62kPmIc5G3nMRy9TMr6RgAhgFS7
mskc8mDW0izm8IoJlV0jBqq9WU75VL0vDwe+DR7DqM/LaoSE
-----END CERTIFICATE-----
Generated at Sat May 10 11:46:09 2025 by rpki-client