Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/PZL9WEW_NcMCaCIN9ZpECctfY38.roa
File: PZL9WEW_NcMCaCIN9ZpECctfY38.roa (raw, json)
Hash identifier: eeXTR/80dhKceCNDt3CCS1zDZoJUmQREboW3+riJxac=
Subject key identifier: 3D:92:FD:58:45:BF:35:C3:02:68:22:0D:F5:9A:44:09:CB:5F:63:7F
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 2272
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/PZL9WEW_NcMCaCIN9ZpECctfY38.roa
Signing time: Mon 26 Aug 2024 05:34:01 +0000
ROA not before: Mon 26 Aug 2024 05:34:01 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24163
IP address blocks: 180.218.240.0/20 maxlen: 20
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:18:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8818 (0x2272)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Aug 26 05:34:01 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=3D92FD5845BF35C30268220DF59A4409CB5F637F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:0b:29:76:29:b0:2b:61:dd:82:e8:7f:93:33:
d4:9c:2e:3c:67:4b:11:21:15:2a:5d:6d:a6:48:81:
0f:c7:8b:67:64:be:f9:89:bd:e5:c7:6f:19:d1:37:
e7:35:51:00:b0:a8:30:f6:c1:96:b8:48:ea:cb:4d:
09:aa:35:d8:e9:ea:dd:b4:e9:fe:c4:c0:99:6a:c1:
cb:18:38:e0:6d:2f:80:64:d5:6f:ea:d4:01:0b:e4:
ef:83:e1:a2:f0:8f:18:9c:af:8f:74:47:67:8e:bd:
71:9e:4a:4d:f6:03:2f:1d:b6:ee:bc:d9:37:7a:99:
91:87:7d:d0:3a:64:af:8f:e3:0d:3c:11:a1:fc:29:
3d:2d:9d:1b:e2:75:6d:0e:1c:fc:a8:f3:0f:fe:60:
a0:b4:51:ee:5f:af:da:79:83:94:23:cf:d4:59:3c:
0d:61:95:63:3c:c6:2c:e6:f1:e6:99:17:5b:19:71:
a6:1b:d9:75:28:31:37:cb:c6:ba:75:cc:24:40:2b:
2a:65:73:f3:4d:9a:9f:b7:03:71:10:31:47:b6:4d:
8c:ad:de:d1:51:22:2d:f5:6d:6f:2c:40:57:26:10:
b9:bc:71:e6:a1:55:0c:56:a8:a9:04:16:4c:45:52:
f8:33:49:e7:11:3d:0a:30:db:85:f6:19:26:5a:e8:
87:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:92:FD:58:45:BF:35:C3:02:68:22:0D:F5:9A:44:09:CB:5F:63:7F
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/PZL9WEW_NcMCaCIN9ZpECctfY38.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.240.0/20
Signature Algorithm: sha256WithRSAEncryption
70:22:1d:18:90:c6:dc:88:35:2f:97:31:45:42:df:8c:1f:27:
1f:8e:08:a0:88:44:84:4c:80:26:0c:13:38:97:61:5c:ba:d9:
22:b4:fb:38:b7:b4:b5:8f:e3:31:c6:de:1c:46:0c:59:2d:61:
77:ac:ed:e8:96:a2:14:0c:84:15:4f:a6:08:42:ec:1c:ca:20:
78:5b:27:65:b4:6f:0c:a9:92:8a:e1:a5:c6:89:da:6a:c3:18:
d7:1f:17:8d:81:b7:b9:94:7d:d4:b8:4e:5e:15:d7:96:28:ce:
af:66:51:15:b2:61:af:68:7e:78:78:00:c4:d1:37:6d:d9:17:
d4:eb:a7:d8:90:4e:0f:9f:29:60:fe:aa:db:d0:d7:45:0f:40:
54:d8:6e:aa:90:5a:25:f5:61:8b:50:0c:57:44:03:c7:55:6e:
be:5f:87:1f:2d:09:5b:64:f6:cd:02:d0:8f:40:75:31:94:03:
f7:f0:73:f0:99:55:ed:e1:43:61:a6:d5:19:cb:b5:cb:fc:69:
2f:1b:72:69:44:6b:3e:92:ac:9a:a6:54:85:e0:0b:74:6b:72:
ab:26:05:fb:60:e1:84:f8:53:8e:e3:a6:95:35:2f:ac:02:c2:
f5:48:dd:67:0a:f4:d3:62:c3:70:38:fd:28:5f:5c:26:04:8c:
83:75:b8:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 22:20:33 2025 by rpki-client