Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/rLFoPQLuNXDrPFH625QADQsuSTs.roa
File: rLFoPQLuNXDrPFH625QADQsuSTs.roa (raw, json)
Hash identifier: TIA9iUgU6fA1cl93SKLXPfxh5Hdyb51pQEnSHWb3jtc=
Subject key identifier: AC:B1:68:3D:02:EE:35:70:EB:3C:51:FA:DB:94:00:0D:0B:2E:49:3B
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1550
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/rLFoPQLuNXDrPFH625QADQsuSTs.roa
Signing time: Tue 11 Feb 2025 23:44:31 +0000
ROA not before: Tue 11 Feb 2025 23:44:31 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 59.112.0.0/13 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5456 (0x1550)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:31 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=ACB1683D02EE3570EB3C51FADB94000D0B2E493B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:c3:17:89:3f:17:78:a2:10:a1:8e:e3:fd:3a:
98:6e:8e:21:62:e2:f1:3d:d9:cc:09:d1:12:0e:f5:
9f:a2:88:4f:02:b2:cb:ef:f3:ee:8f:b2:d0:cd:65:
71:a0:65:65:31:31:87:4c:76:53:27:a1:be:5c:41:
64:ed:0a:05:ae:9d:de:c9:03:cc:3c:35:cd:e0:b9:
ad:c3:eb:fb:4a:a9:02:f0:f5:b5:35:0a:30:89:0a:
e4:89:ac:fc:3d:2a:fb:e9:03:9f:87:b9:73:14:db:
85:87:a7:12:6d:08:60:63:fd:22:62:d7:93:62:bd:
85:d9:2b:07:70:9a:1c:03:e6:72:0a:20:a6:30:da:
08:69:35:a4:2a:f1:34:24:7a:9c:44:38:78:d8:b3:
a4:45:60:2a:d1:a7:80:7d:be:eb:58:52:d4:c5:ad:
8e:98:59:4c:85:70:e3:90:c0:48:33:eb:48:72:d5:
c5:38:dd:5e:94:48:2e:9e:21:9f:8e:8d:33:0f:6d:
52:eb:1d:94:78:9e:bd:2b:29:2a:78:30:9e:b9:24:
ff:4f:cc:cb:f6:12:51:c5:33:06:2d:80:5e:69:e8:
a5:d3:52:15:54:28:b0:34:b1:6b:b0:25:9e:e5:59:
79:3d:f5:dd:62:f7:b7:3a:b3:9e:d3:53:2b:f4:b1:
20:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:B1:68:3D:02:EE:35:70:EB:3C:51:FA:DB:94:00:0D:0B:2E:49:3B
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/rLFoPQLuNXDrPFH625QADQsuSTs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
59.112.0.0/13
Signature Algorithm: sha256WithRSAEncryption
d2:33:6c:c0:2f:28:a6:76:2b:e1:df:3a:e9:2b:30:47:1f:e4:
20:04:c5:dd:1c:b9:3d:a7:a2:a3:7b:44:74:67:27:5b:89:dc:
92:21:f2:d6:46:2d:12:b0:01:cb:80:29:76:59:50:e2:5d:c2:
d1:75:5c:5b:91:d1:94:b0:eb:66:67:54:ba:e2:39:27:e4:6d:
d4:f0:82:51:15:9c:86:95:7a:de:45:6f:1c:49:f2:5b:52:5b:
8a:fa:59:41:fd:04:8f:b0:9e:2f:cd:27:f2:87:e6:ca:80:3b:
db:01:e5:fa:b5:11:cc:36:5f:1a:0f:47:69:13:22:ba:d4:ef:
cf:d9:09:ee:3d:61:b8:2e:a8:87:79:0f:62:58:49:f5:70:6f:
f9:17:6d:fd:1e:cd:70:95:87:d0:37:29:e5:93:47:66:43:42:
29:9c:2a:94:2b:b2:99:41:ff:d6:45:c1:97:d1:8e:ca:df:7f:
7e:4f:e4:14:b9:f1:3e:16:bd:29:cd:57:c9:34:87:54:e7:9d:
6e:1b:25:52:ad:a9:2d:3a:42:cf:06:a2:da:bf:de:0e:0d:37:
cf:e1:f4:24:e6:3f:5a:6c:3a:08:13:8c:8d:d6:19:2a:47:ca:
fe:e5:e8:6a:17:31:4e:44:fc:f5:3e:18:ee:10:52:cc:6f:e8:
a2:72:4d:6d
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICFVAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTEy
MzQ0MzFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEFDQjE2ODNEMDJFRTM1
NzBFQjNDNTFGQURCOTQwMDBEMEIyRTQ5M0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC7wxeJPxd4ohChjuP9OphujiFi4vE92cwJ0RIO9Z+iiE8Cssvv
8+6PstDNZXGgZWUxMYdMdlMnob5cQWTtCgWund7JA8w8Nc3gua3D6/tKqQLw9bU1
CjCJCuSJrPw9KvvpA5+HuXMU24WHpxJtCGBj/SJi15NivYXZKwdwmhwD5nIKIKYw
2ghpNaQq8TQkepxEOHjYs6RFYCrRp4B9vutYUtTFrY6YWUyFcOOQwEgz60hy1cU4
3V6USC6eIZ+OjTMPbVLrHZR4nr0rKSp4MJ65JP9PzMv2ElHFMwYtgF5p6KXTUhVU
KLA0sWuwJZ7lWXk99d1i97c6s57TUyv0sSBRAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUrLFoPQLuNXDrPFH625QADQsuSTswHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9yTEZvUFFMdU5YRHJQRkg2MjVR
QURRc3VTVHMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMDO3Aw
DQYJKoZIhvcNAQELBQADggEBANIzbMAvKKZ2K+HfOukrMEcf5CAExd0cuT2noqN7
RHRnJ1uJ3JIh8tZGLRKwAcuAKXZZUOJdwtF1XFuR0ZSw62ZnVLriOSfkbdTwglEV
nIaVet5FbxxJ8ltSW4r6WUH9BI+wni/NJ/KH5sqAO9sB5fq1Ecw2XxoPR2kTIrrU
78/ZCe49YbguqId5D2JYSfVwb/kXbf0ezXCVh9A3KeWTR2ZDQimcKpQrsplB/9ZF
wZfRjsrff35P5BS58T4WvSnNV8k0h1TnnW4bJVKtqS06Qs8Gotq/3g4NN8/h9CTm
P1psOggTjI3WGSpHyv7l6GoXMU5E/PU+GO4QUsxv6KJyTW0=
-----END CERTIFICATE-----
Generated at Sat May 10 14:16:28 2025 by rpki-client