Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/wHNXsqLW_jxIRqvmNtvgvVO1rbM.roa
File: wHNXsqLW_jxIRqvmNtvgvVO1rbM.roa (raw, json)
Hash identifier: +9/SWjkKKxQdEANYKc1LVzTnO1g4BnrEIITU+ZdLb48=
Subject key identifier: C0:73:57:B2:A2:D6:FE:3C:48:46:AB:E6:36:DB:E0:BD:53:B5:AD:B3
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 21C8
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/wHNXsqLW_jxIRqvmNtvgvVO1rbM.roa
Signing time: Mon 26 Aug 2024 05:33:20 +0000
ROA not before: Mon 26 Aug 2024 05:33:20 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24163
IP address blocks: 114.198.160.0/20 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:18:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8648 (0x21c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Aug 26 05:33:20 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C07357B2A2D6FE3C4846ABE636DBE0BD53B5ADB3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:07:fd:35:19:d3:93:b4:64:c1:96:d3:ae:d5:
d2:71:37:25:35:e3:83:92:a8:f9:54:bf:03:ba:01:
eb:e3:56:04:a0:01:72:cc:88:2f:d1:a0:02:78:8d:
e4:97:fa:7d:ee:1a:d3:09:b5:54:ab:df:84:0f:74:
f1:bf:c3:02:26:4c:be:89:54:f8:77:91:db:22:8c:
75:df:16:90:f3:29:a2:7c:10:31:15:31:72:0d:80:
74:33:c3:c2:94:09:b8:3e:8b:47:e9:c8:84:33:e8:
dc:56:83:ce:29:79:b0:41:ff:a2:1c:1b:00:36:c0:
c5:d8:8e:c8:35:8e:4e:01:fd:66:43:1a:9b:d3:ec:
15:2c:61:17:11:db:7a:45:32:90:0b:1e:f1:05:12:
fb:19:88:3b:ad:e8:b0:78:26:c4:fa:fa:8a:99:51:
e8:f3:9d:b1:3d:6b:76:d7:e1:d0:60:6a:86:49:85:
aa:a1:d0:10:04:2b:69:c6:2c:93:04:06:ce:bc:e7:
49:7e:63:86:32:d2:30:a9:6c:e3:93:1d:d6:b2:09:
bc:f5:90:9c:42:e1:62:e3:e6:78:f6:ed:82:1f:0d:
17:3d:65:88:59:1e:34:90:30:6e:22:cf:71:db:aa:
fa:db:f4:d4:ea:73:eb:8f:d7:b3:0e:3b:cf:f2:72:
2c:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:73:57:B2:A2:D6:FE:3C:48:46:AB:E6:36:DB:E0:BD:53:B5:AD:B3
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/wHNXsqLW_jxIRqvmNtvgvVO1rbM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.198.160.0/20
Signature Algorithm: sha256WithRSAEncryption
9e:09:f5:a1:d7:fc:fc:0e:92:b5:fe:c0:77:95:d7:06:7a:cd:
6a:9a:35:71:f7:f4:88:75:7c:ee:42:e8:10:70:99:35:32:a5:
81:6a:57:db:35:f4:0e:25:b8:58:28:a1:35:b1:85:97:f3:5a:
6d:89:91:00:37:54:8d:04:fd:9f:fe:c7:16:a0:43:88:5b:a9:
9a:76:8d:8c:b9:f6:0e:c6:28:ce:52:e8:f5:84:94:70:c0:21:
fc:49:83:c0:c6:af:68:29:c3:88:e8:15:1d:af:49:16:34:37:
70:09:2c:7c:ca:fd:d4:f3:51:e9:84:b9:df:48:97:c7:c5:38:
51:b5:46:f9:db:d8:1c:21:c4:b5:98:d3:8a:88:03:1d:e3:95:
53:51:b6:98:b5:e4:18:25:a6:84:cb:38:22:59:3a:47:2e:ba:
74:60:f0:45:6d:aa:88:06:41:69:7f:96:50:ac:38:35:22:fb:
15:54:9d:a5:11:0c:36:8f:6b:19:5d:b4:55:b5:1c:b5:57:09:
e7:d4:cd:29:5f:cd:99:12:9d:d4:72:eb:88:ab:e4:ce:da:96:
f7:8d:ab:8e:49:c8:ef:46:1c:2e:1a:73:9c:be:b5:5d:2a:50:
89:39:ce:b2:8e:b0:bc:ee:c7:12:df:f8:44:52:f5:84:8a:ca:
e2:a7:52:79
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICIcgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw
NTMzMjBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEMwNzM1N0IyQTJENkZF
M0M0ODQ2QUJFNjM2REJFMEJENTNCNUFEQjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDdB/01GdOTtGTBltOu1dJxNyU144OSqPlUvwO6AevjVgSgAXLM
iC/RoAJ4jeSX+n3uGtMJtVSr34QPdPG/wwImTL6JVPh3kdsijHXfFpDzKaJ8EDEV
MXINgHQzw8KUCbg+i0fpyIQz6NxWg84pebBB/6IcGwA2wMXYjsg1jk4B/WZDGpvT
7BUsYRcR23pFMpALHvEFEvsZiDut6LB4JsT6+oqZUejznbE9a3bX4dBgaoZJhaqh
0BAEK2nGLJMEBs6850l+Y4Yy0jCpbOOTHdayCbz1kJxC4WLj5nj27YIfDRc9ZYhZ
HjSQMG4iz3Hbqvrb9NTqc+uP17MOO8/ycizlAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUwHNXsqLW/jxIRqvmNtvgvVO1rbMwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3dITlhzcUxXX2p4SVJxdm1O
dHZndlZPMXJiTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBARy
xqAwDQYJKoZIhvcNAQELBQADggEBAJ4J9aHX/PwOkrX+wHeV1wZ6zWqaNXH39Ih1
fO5C6BBwmTUypYFqV9s19A4luFgooTWxhZfzWm2JkQA3VI0E/Z/+xxagQ4hbqZp2
jYy59g7GKM5S6PWElHDAIfxJg8DGr2gpw4joFR2vSRY0N3AJLHzK/dTzUemEud9I
l8fFOFG1Rvnb2BwhxLWY04qIAx3jlVNRtpi15BglpoTLOCJZOkcuunRg8EVtqogG
QWl/llCsODUi+xVUnaURDDaPaxldtFW1HLVXCefUzSlfzZkSndRy64ir5M7alveN
q45JyO9GHC4ac5y+tV0qUIk5zrKOsLzuxxLf+ERS9YSKyuKnUnk=
-----END CERTIFICATE-----
Generated at Fri Apr 18 22:47:21 2025 by rpki-client