Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/vku35Ayp3GLNws_aKfl1r_6vY0c.roa
File: vku35Ayp3GLNws_aKfl1r_6vY0c.roa (raw, json)
Hash identifier: Pg7ap7+rr3P+ulIyj8AGDyosDcTVmdaKWcCkTAWuRiU=
Subject key identifier: BE:4B:B7:E4:0C:A9:DC:62:CD:C2:CF:DA:29:F9:75:AF:FE:AF:63:47
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 14F8
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/vku35Ayp3GLNws_aKfl1r_6vY0c.roa
Signing time: Tue 11 Feb 2025 23:44:12 +0000
ROA not before: Tue 11 Feb 2025 23:44:12 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 198949
IP address blocks: 203.74.177.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Feb 2025 01:22:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5368 (0x14f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Feb 11 23:44:12 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=BE4BB7E40CA9DC62CDC2CFDA29F975AFFEAF6347
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:97:e1:ce:cb:5e:54:04:12:2d:c0:78:f5:bf:
de:48:c5:b4:8f:72:04:98:d5:ab:84:c5:ff:d7:a3:
86:f9:ee:a2:33:97:cf:3a:cb:65:14:ec:2d:30:cf:
4a:73:88:4a:df:a8:39:1c:94:d2:c8:65:54:bb:2d:
d7:69:80:51:1f:1d:e9:94:be:8d:15:5e:cc:c3:4a:
f5:36:e9:1f:fd:ec:d5:8c:ea:e0:75:72:7c:a2:a6:
f8:cc:53:5e:03:54:c8:ab:ca:d7:65:42:2b:85:95:
3a:2f:e5:53:05:4e:9b:41:db:d3:e4:62:49:b8:49:
2e:03:e9:f8:82:c9:55:33:27:59:3c:89:ff:45:12:
ab:da:f7:f4:99:92:c9:7a:95:0d:7f:e0:c1:93:63:
3d:cc:1c:cd:87:e5:6f:b4:44:02:9d:24:2f:5c:fd:
85:a6:15:f1:6d:70:ed:a0:fb:e6:42:37:d4:d3:54:
59:b2:af:7e:d7:85:27:60:13:fe:00:f6:ad:fd:cf:
1e:cb:4d:df:41:cc:e9:a3:64:0b:d9:c8:9b:f2:b4:
b3:92:94:60:b6:08:a6:d1:f6:e9:98:b9:fb:da:3e:
c0:f4:fd:4c:d2:6f:14:00:c8:34:a2:9e:a8:51:e0:
ac:34:05:90:b1:bc:9b:93:3b:01:5f:73:86:41:fa:
d5:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:4B:B7:E4:0C:A9:DC:62:CD:C2:CF:DA:29:F9:75:AF:FE:AF:63:47
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/vku35Ayp3GLNws_aKfl1r_6vY0c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.74.177.0/24
Signature Algorithm: sha256WithRSAEncryption
70:51:87:cd:31:d7:14:e7:0a:2e:98:b4:08:ef:bb:e8:ab:3d:
7f:5e:79:49:3c:b6:2c:46:9d:fb:21:54:a9:81:78:89:66:3b:
a9:bb:ec:b3:0f:1f:8e:1c:38:59:15:7b:f2:a6:81:06:28:03:
a0:e1:bc:2e:dd:6e:16:92:4b:15:f0:20:f3:40:08:e5:4a:65:
11:80:f2:88:db:3a:39:ad:81:23:f5:99:79:89:d4:5f:48:64:
ef:f4:14:8f:84:65:66:5f:7a:ea:00:d9:cf:c3:36:b2:8d:10:
45:c9:ea:da:6f:00:7f:2c:64:1c:bc:19:5e:da:e3:82:c8:dc:
4c:98:05:47:c8:63:b0:43:2a:06:6c:81:16:7b:4a:13:5e:59:
b3:e4:ad:bf:06:2f:4c:4c:38:c1:9e:69:d5:b3:e7:da:7d:b5:
41:60:0e:16:8f:f9:a3:00:b3:90:ad:cb:73:37:67:e4:b8:a6:
ce:b0:67:97:2d:65:49:29:fd:04:5e:bb:fc:03:70:84:70:f1:
99:83:c0:ec:90:68:ce:02:6a:e1:82:c1:19:5e:86:d1:21:5d:
d1:d5:1d:7d:c0:18:d1:e0:28:f7:89:7f:ab:a2:2a:b0:65:c0:
8d:ad:c1:89:45:d1:f6:08:04:f6:20:10:7a:4a:be:18:60:06:
dd:13:1e:f8
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICFPgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTEy
MzQ0MTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEJFNEJCN0U0MENBOURD
NjJDREMyQ0ZEQTI5Rjk3NUFGRkVBRjYzNDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC6l+HOy15UBBItwHj1v95IxbSPcgSY1auExf/Xo4b57qIzl886
y2UU7C0wz0pziErfqDkclNLIZVS7LddpgFEfHemUvo0VXszDSvU26R/97NWM6uB1
cnyipvjMU14DVMirytdlQiuFlTov5VMFTptB29PkYkm4SS4D6fiCyVUzJ1k8if9F
Eqva9/SZksl6lQ1/4MGTYz3MHM2H5W+0RAKdJC9c/YWmFfFtcO2g++ZCN9TTVFmy
r37XhSdgE/4A9q39zx7LTd9BzOmjZAvZyJvytLOSlGC2CKbR9umYufvaPsD0/UzS
bxQAyDSinqhR4Kw0BZCxvJuTOwFfc4ZB+tU1AgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUvku35Ayp3GLNws/aKfl1r/6vY0cwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC92a3UzNUF5cDNHTE53c19hS2Zs
MXJfNnZZMGMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy0qx
MA0GCSqGSIb3DQEBCwUAA4IBAQBwUYfNMdcU5woumLQI77voqz1/XnlJPLYsRp37
IVSpgXiJZjupu+yzDx+OHDhZFXvypoEGKAOg4bwu3W4WkksV8CDzQAjlSmURgPKI
2zo5rYEj9Zl5idRfSGTv9BSPhGVmX3rqANnPwzayjRBFyerabwB/LGQcvBle2uOC
yNxMmAVHyGOwQyoGbIEWe0oTXlmz5K2/Bi9MTDjBnmnVs+fafbVBYA4Wj/mjALOQ
rctzN2fkuKbOsGeXLWVJKf0EXrv8A3CEcPGZg8DskGjOAmrhgsEZXobRIV3R1R19
wBjR4Cj3iX+roiqwZcCNrcGJRdH2CAT2IBB6Sr4YYAbdEx74
-----END CERTIFICATE-----
Generated at Sat May 10 14:03:43 2025 by rpki-client