Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/tCNx3V3JWwq7bwLRkBQJH7hmKck.roa
File: tCNx3V3JWwq7bwLRkBQJH7hmKck.roa (raw, json)
Hash identifier: SFGt2Yl6I37aXirRFVewUgQ8eTkBjSg29Rd39GYbKmc=
Subject key identifier: B4:23:71:DD:5D:C9:5B:0A:BB:6F:02:D1:90:14:09:1F:B8:66:29:C9
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 14F3
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/tCNx3V3JWwq7bwLRkBQJH7hmKck.roa
Signing time: Tue 11 Feb 2025 23:44:11 +0000
ROA not before: Tue 11 Feb 2025 23:44:11 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 15133
IP address blocks: 61.221.181.64/26 maxlen: 26
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5363 (0x14f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:11 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=B42371DD5DC95B0ABB6F02D19014091FB86629C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:90:33:3c:d7:65:8e:fb:38:45:df:b0:35:9a:
f6:62:b1:a6:6c:ed:f8:16:66:81:80:34:c4:d7:fc:
b6:48:a4:4b:a8:b8:bc:c2:0a:1c:e5:88:3b:50:b2:
ac:21:4c:a3:38:45:ec:3a:3c:0e:35:25:46:e2:b3:
55:d2:99:00:33:3d:28:3f:68:1d:a1:78:17:d3:25:
dc:c9:27:a9:08:c2:cb:de:6c:cd:a9:5d:47:4f:d5:
db:77:da:71:07:09:93:67:ea:f5:02:ef:e5:d3:a0:
df:39:fe:1c:f5:15:b0:51:04:87:15:1a:a8:92:8d:
5d:0a:1a:4b:85:a7:ec:5d:f7:37:b2:62:3c:37:37:
78:3e:7d:02:fb:56:b7:40:ff:77:85:f8:96:f2:fd:
86:37:c3:89:c9:6c:04:50:46:7c:29:e4:fe:bf:c2:
ca:c7:2f:45:fb:aa:5d:55:a3:c1:1c:76:c8:73:21:
b4:e4:ac:64:fb:99:a8:c6:ab:70:44:9a:57:09:02:
32:e1:c5:19:b7:08:e3:e8:e7:90:a0:02:97:15:75:
a7:9a:dc:c3:27:06:2f:af:0c:a6:65:53:fe:27:47:
4d:86:44:e2:cd:b6:1c:28:71:c3:af:c8:02:7d:35:
fe:c5:51:2d:3f:aa:2b:06:23:9f:06:14:68:8f:b2:
c5:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:23:71:DD:5D:C9:5B:0A:BB:6F:02:D1:90:14:09:1F:B8:66:29:C9
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/tCNx3V3JWwq7bwLRkBQJH7hmKck.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.221.181.64/26
Signature Algorithm: sha256WithRSAEncryption
20:de:d0:01:c7:f2:50:57:88:99:11:c6:e9:9b:d1:78:a2:86:
81:d8:3f:1d:9e:42:3e:b8:bb:6c:1e:f2:62:8d:93:6e:ca:2e:
b5:72:53:b2:4e:bb:f6:ce:17:e6:9a:13:78:4c:70:b6:87:1f:
8e:e1:b3:88:43:10:cd:5c:19:91:6d:64:30:94:4e:14:fa:ef:
32:55:d0:90:5a:80:ca:92:f4:3e:1c:5a:49:e3:2e:09:1d:17:
20:47:4b:27:e6:11:89:3a:23:d4:bf:13:d3:d8:b6:ab:53:55:
04:6c:f1:1f:a0:65:69:a8:82:67:b1:e4:19:0a:ed:f5:d1:a7:
f6:c5:d1:b0:ea:11:b1:70:42:e9:78:9f:07:91:62:91:d8:0a:
2e:67:b1:c0:19:3e:13:bf:d3:0c:87:e4:20:e0:54:58:9a:4d:
3d:1c:1b:98:5e:6e:4f:66:d9:84:be:8d:5d:99:92:9e:05:41:
5e:96:98:52:27:34:28:62:38:e8:7b:4f:ff:b8:c9:86:e5:48:
ae:8e:18:05:c2:8d:14:3f:95:16:6a:90:5d:41:b9:8c:a2:fa:
1c:b9:f9:41:99:a1:55:c0:6c:96:17:4e:3d:60:04:0e:12:a0:
2b:1c:32:b2:3b:9d:3c:50:08:73:b0:c2:4e:d9:7f:0a:a3:65:
4d:16:b5:11
-----BEGIN CERTIFICATE-----
MIIE0TCCA7mgAwIBAgICFPMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTEy
MzQ0MTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI0MjM3MURENURDOTVC
MEFCQjZGMDJEMTkwMTQwOTFGQjg2NjI5QzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDSkDM812WO+zhF37A1mvZisaZs7fgWZoGANMTX/LZIpEuouLzC
ChzliDtQsqwhTKM4Rew6PA41JUbis1XSmQAzPSg/aB2heBfTJdzJJ6kIwsvebM2p
XUdP1dt32nEHCZNn6vUC7+XToN85/hz1FbBRBIcVGqiSjV0KGkuFp+xd9zeyYjw3
N3g+fQL7VrdA/3eF+Jby/YY3w4nJbARQRnwp5P6/wsrHL0X7ql1Vo8EcdshzIbTk
rGT7majGq3BEmlcJAjLhxRm3COPo55CgApcVdaea3MMnBi+vDKZlU/4nR02GROLN
thwoccOvyAJ9Nf7FUS0/qisGI58GFGiPssXBAgMBAAGjggHtMIIB6TAdBgNVHQ4E
FgQUtCNx3V3JWwq7bwLRkBQJH7hmKckwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC90Q054M1YzSld3cTdid0xSa0JR
Skg3aG1LY2sucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUGPd21
QDANBgkqhkiG9w0BAQsFAAOCAQEAIN7QAcfyUFeImRHG6ZvReKKGgdg/HZ5CPri7
bB7yYo2TbsoutXJTsk679s4X5poTeExwtocfjuGziEMQzVwZkW1kMJROFPrvMlXQ
kFqAypL0PhxaSeMuCR0XIEdLJ+YRiToj1L8T09i2q1NVBGzxH6BlaaiCZ7HkGQrt
9dGn9sXRsOoRsXBC6XifB5FikdgKLmexwBk+E7/TDIfkIOBUWJpNPRwbmF5uT2bZ
hL6NXZmSngVBXpaYUic0KGI46HtP/7jJhuVIro4YBcKNFD+VFmqQXUG5jKL6HLn5
QZmhVcBslhdOPWAEDhKgKxwysjudPFAIc7DCTtl/CqNlTRa1EQ==
-----END CERTIFICATE-----
Generated at Sat May 10 11:42:59 2025 by rpki-client