Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/cStf01WUh_ELIEB2qZ4Mha_kBkU.roa
File: cStf01WUh_ELIEB2qZ4Mha_kBkU.roa (raw, json)
Hash identifier: 60PXgWF3SBOSmnD4WqcsHqnbAVEdM3D/AjQuU+crXeg=
Subject key identifier: 71:2B:5F:D3:55:94:87:F1:0B:20:40:76:A9:9E:0C:85:AF:E4:06:45
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 22D9
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/cStf01WUh_ELIEB2qZ4Mha_kBkU.roa
Signing time: Mon 26 Aug 2024 05:34:25 +0000
ROA not before: Mon 26 Aug 2024 05:34:25 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24163
IP address blocks: 114.198.176.0/20 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:18:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8921 (0x22d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Aug 26 05:34:25 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=712B5FD3559487F10B204076A99E0C85AFE40645
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:70:9e:84:f9:72:c4:e9:cf:b5:3f:37:01:6f:
c0:46:40:16:d3:9d:a5:03:52:aa:44:63:14:6d:5c:
d9:4b:1d:d9:79:bc:0c:e1:b3:00:ae:ee:8c:1c:6f:
c3:7c:f1:d2:9d:f0:c0:22:d0:0f:3f:fb:8a:92:63:
5b:10:d0:d3:bd:d1:4b:3e:ac:9c:ff:ce:e0:f6:86:
3a:8a:39:57:56:9a:3a:df:e4:ee:03:91:13:bc:37:
c4:2a:aa:c4:9c:cf:a2:87:6e:65:4e:30:26:76:64:
f9:42:73:a6:fe:b2:e2:66:93:28:5d:e8:aa:ef:56:
14:e2:f7:a3:24:10:b3:46:68:c4:0e:e3:91:6e:45:
96:1f:09:76:42:80:57:29:76:21:ae:5e:4b:b7:fd:
1d:11:54:60:0a:86:2f:08:1f:de:39:3c:71:2a:62:
89:51:66:dd:91:5e:be:ee:65:52:f4:b8:78:4c:31:
1b:6d:18:ba:4a:11:15:ef:af:a4:cf:95:40:7f:9c:
91:b8:2c:75:c1:62:f5:49:8a:e1:13:c3:15:08:ef:
ec:e6:bd:58:a9:48:79:80:d0:19:56:12:8f:c1:be:
81:34:04:fe:e0:4c:35:99:06:01:88:41:e1:9a:e6:
b1:4e:cc:f0:fd:67:19:98:95:17:0e:5b:08:c8:98:
b6:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:2B:5F:D3:55:94:87:F1:0B:20:40:76:A9:9E:0C:85:AF:E4:06:45
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/cStf01WUh_ELIEB2qZ4Mha_kBkU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.198.176.0/20
Signature Algorithm: sha256WithRSAEncryption
44:1a:48:00:0c:3e:f3:c8:2c:13:16:b9:e6:04:fe:a5:12:bb:
35:73:0d:6d:7e:d5:96:1d:2f:47:36:ce:52:10:9b:1c:35:db:
ce:49:38:dc:43:ef:5d:03:72:d6:13:2c:0e:95:da:6a:8b:b7:
3d:2c:a1:7e:20:0b:e2:cb:39:b4:c6:50:0e:fb:4b:67:9d:e8:
8a:8f:82:62:75:14:d5:a0:c5:9f:d8:c0:dd:52:61:4d:5f:b4:
fa:ef:21:cd:ff:d3:d1:dc:7d:cb:f5:ab:e6:c4:a8:ec:42:a6:
b8:c5:6f:ce:1d:14:66:99:f0:b0:ae:41:2e:23:55:60:2b:13:
17:06:63:e9:a0:31:f5:20:08:e6:bd:52:7e:bb:51:66:6f:f0:
f4:47:4b:74:c0:dc:8b:56:10:3a:29:94:a2:02:0f:90:d5:04:
f2:74:2e:1a:1a:29:33:f9:c0:f6:72:50:54:1e:bf:2d:15:6b:
db:7f:0a:29:03:04:eb:e0:01:ba:98:68:e1:89:fb:d5:90:64:
bf:1a:f0:15:0d:5e:36:f3:45:da:e8:df:f5:da:7c:ea:79:04:
da:40:58:c1:84:8f:c9:aa:56:7c:45:f5:f4:7b:62:f4:e1:1f:
ac:70:94:71:c0:43:f8:3f:09:c3:bb:ab:e5:d1:6a:21:b1:3f:
93:9f:38:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 22:26:03 2025 by rpki-client