Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/UsuGCvMKxli3w1b6s-CBmVpiRF4.roa
File: UsuGCvMKxli3w1b6s-CBmVpiRF4.roa (raw, json)
Hash identifier: YZnK4uUEPgpJOlZBBq556t2d6Djf2bVX+C8IpBHh6kA=
Subject key identifier: 52:CB:86:0A:F3:0A:C6:58:B7:C3:56:FA:B3:E0:81:99:5A:62:44:5E
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 216B
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/UsuGCvMKxli3w1b6s-CBmVpiRF4.roa
Signing time: Mon 26 Aug 2024 05:32:59 +0000
ROA not before: Mon 26 Aug 2024 05:32:59 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24164
IP address blocks: 180.218.152.0/21 maxlen: 22
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:18:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8555 (0x216b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Aug 26 05:32:59 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=52CB860AF30AC658B7C356FAB3E081995A62445E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:8f:66:bf:8a:fe:55:cc:2e:cd:ef:ab:2f:0c:
4c:be:36:3a:e5:48:41:ce:fb:c8:7d:20:bc:e5:19:
37:b4:69:ca:d1:13:01:be:a9:65:e0:6b:f1:a2:1a:
18:25:b0:6b:eb:f8:4f:56:f7:f6:de:07:07:0c:2c:
cf:44:23:66:65:1d:ff:72:f8:0b:c6:ce:8c:43:b7:
c6:ef:87:09:04:ab:8d:6d:a8:e2:43:97:87:97:05:
f1:05:9b:5a:75:36:d6:d6:e7:7b:9c:09:0b:d9:cc:
b7:18:c3:e9:36:e9:a6:e9:78:5c:cb:2e:f0:85:5e:
e1:a4:a5:69:2a:a0:1e:d6:18:5b:cc:44:b5:c8:2b:
7c:26:09:b8:28:f8:f5:ed:b5:a0:75:f3:59:b1:40:
83:d5:48:dd:6f:e8:45:24:88:02:b6:32:5d:5a:58:
dc:ec:11:a8:d1:6b:5d:a1:1c:68:52:58:74:73:fe:
df:5a:cf:ba:91:ba:d1:b4:84:fe:73:70:c3:2a:b6:
6f:c5:cc:18:68:c3:ff:ff:f3:4e:a2:1d:33:6e:e0:
33:fd:51:8b:8f:5d:18:32:2d:0a:b7:7b:fd:86:d9:
64:65:6e:5d:45:4c:fd:3b:1b:d2:af:35:5c:15:cc:
f1:75:96:03:ff:ee:73:bc:1e:60:89:c9:83:cc:5c:
95:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:CB:86:0A:F3:0A:C6:58:B7:C3:56:FA:B3:E0:81:99:5A:62:44:5E
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/UsuGCvMKxli3w1b6s-CBmVpiRF4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.152.0/21
Signature Algorithm: sha256WithRSAEncryption
91:b1:b6:7c:e8:c7:6c:99:89:e6:86:23:aa:23:ff:4f:97:f7:
20:22:ce:99:1d:ca:2f:34:e8:cb:de:70:b6:0f:42:25:3b:d2:
f5:e0:1e:ba:e7:14:86:45:f9:11:b0:db:31:c5:01:9b:6b:54:
87:00:ca:a5:42:0e:f5:5c:85:73:4d:05:70:4e:d8:7c:86:0e:
d0:3b:9b:82:41:39:24:65:66:7e:e4:9a:f8:23:bf:0a:8a:9b:
9c:49:64:09:36:8b:83:e9:3f:89:dd:6c:0a:bc:1c:08:8d:f1:
b8:87:a6:96:64:36:e7:44:13:aa:85:e1:32:04:17:ce:64:a1:
9c:1d:c4:25:91:24:42:c1:82:40:51:96:a5:34:3b:f6:85:a0:
85:a9:b9:4e:c2:10:21:bd:54:b4:3e:7c:eb:9d:63:9b:91:b0:
3d:70:de:9a:40:8c:4c:e7:40:50:bb:19:b6:2a:0f:a4:ea:1d:
b5:eb:8c:ff:b6:60:36:75:eb:7a:12:68:be:6d:77:68:7a:4e:
bb:9c:70:ab:c5:14:34:82:c1:a5:ef:2d:98:2f:97:7a:74:c6:
f9:a4:1c:d1:e6:27:25:9b:81:50:e3:4c:57:3e:fe:cb:a8:be:
a8:cf:1a:49:5f:1d:8b:0b:c1:5e:4a:a6:a8:8c:31:df:53:0d:
a5:59:91:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 22:34:19 2025 by rpki-client