Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0HnQi4XYLy2IYkTFjiZxfhwONf4.roa
File: 0HnQi4XYLy2IYkTFjiZxfhwONf4.roa (raw, json)
Hash identifier: l6lKh1mZYseFMa+OrJ3C3YhbSTAJ+ew2j1EWjXG3iyI=
Subject key identifier: D0:79:D0:8B:85:D8:2F:2D:88:62:44:C5:8E:26:71:7E:1C:0E:35:FE
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 2229
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0HnQi4XYLy2IYkTFjiZxfhwONf4.roa
Signing time: Mon 26 Aug 2024 05:33:44 +0000
ROA not before: Mon 26 Aug 2024 05:33:44 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24164
IP address blocks: 180.218.128.0/20 maxlen: 20
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:17:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8745 (0x2229)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Aug 26 05:33:44 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=D079D08B85D82F2D886244C58E26717E1C0E35FE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:4a:60:2e:4a:f5:f4:63:41:0a:32:ef:b6:04:
67:1e:83:5e:c6:e9:d9:1c:fa:7e:47:a1:03:7a:8a:
59:c7:b7:e9:a5:d6:e8:04:1f:f4:94:e9:20:50:be:
78:fa:b9:bf:2f:8f:a2:ee:49:c9:55:94:fb:87:f4:
15:9e:a7:92:6a:3d:42:60:1c:73:2e:07:ec:36:53:
75:ec:0d:83:47:88:7d:c7:93:55:60:dd:21:88:dd:
a9:53:f8:16:e0:ba:12:4a:62:e9:57:3b:5c:5b:58:
05:19:6e:27:d1:78:90:dd:bb:b6:7e:7a:ae:e3:20:
f5:aa:4e:eb:a8:86:32:d2:c5:53:c6:c7:c3:d2:1e:
f3:b1:4f:ff:5a:48:f8:e9:55:34:b8:47:5c:f6:0d:
71:b0:4d:e7:c0:52:94:c5:a9:e2:10:8d:73:ff:ab:
20:89:7f:29:24:8c:0c:00:7b:c5:27:83:3b:b4:30:
95:4b:42:9f:33:43:58:aa:00:be:b7:42:f4:7e:dc:
60:ab:c9:e8:45:d6:da:aa:78:bb:65:c8:be:e9:c0:
f7:58:a1:b9:ac:f5:66:7a:9e:3c:62:22:22:aa:fa:
6e:aa:25:34:de:90:fc:5f:b8:3e:7d:d5:e9:c7:67:
d9:4c:87:e0:1e:dc:a0:25:e2:b1:51:15:6e:33:7c:
da:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:79:D0:8B:85:D8:2F:2D:88:62:44:C5:8E:26:71:7E:1C:0E:35:FE
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0HnQi4XYLy2IYkTFjiZxfhwONf4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.128.0/20
Signature Algorithm: sha256WithRSAEncryption
1c:39:e3:0f:e9:70:cb:48:c1:96:f1:f0:e6:ef:47:4d:11:a9:
23:39:73:e0:f3:5e:ad:4a:35:db:fa:a7:ff:81:dc:72:48:1d:
ff:05:19:24:43:e7:81:31:48:30:ce:f2:bc:f8:17:be:2c:06:
ca:5c:39:22:ec:c2:93:ab:18:11:fa:5a:2b:cc:38:6f:de:90:
14:31:78:cd:cf:83:a0:db:35:d5:53:aa:88:59:4a:8a:c0:2c:
0a:10:fe:b1:98:c7:19:fb:ed:2b:fe:66:45:38:e5:7b:b2:b8:
4e:85:38:9a:ec:d9:19:cb:13:65:c9:4c:9f:8d:19:01:87:b7:
fd:01:1a:21:5b:0e:e7:46:4c:e8:e6:39:ab:94:ed:37:60:3a:
18:3a:e7:b0:33:36:41:df:bf:1f:f0:3c:b6:fc:31:2d:a8:91:
d8:28:36:07:88:8f:f0:47:ea:68:07:94:1f:94:71:29:47:86:
6c:d8:45:27:82:b2:8a:bb:8f:0a:0b:d3:f3:1c:a3:d7:3f:eb:
14:17:3d:7c:11:2b:84:2a:d7:1f:a7:17:7f:46:ea:78:0c:21:
fb:81:06:86:4e:60:b0:8f:91:e7:8d:e3:63:68:53:17:41:05:
ad:b2:de:ae:37:7e:24:05:76:fe:6e:22:4e:30:19:92:75:03:
68:e0:2f:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 22:33:42 2025 by rpki-client