Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASNET/bUbOklQb9tiSTIRa6L4MkxdIoUI.roa
File: bUbOklQb9tiSTIRa6L4MkxdIoUI.roa (raw, json)
Hash identifier: jzVqkuG1clGGjh901OLB6Br2NdiMM7F1NGr32TOtTQA=
Subject key identifier: 6D:46:CE:92:54:1B:F6:D8:92:4C:84:5A:E8:BE:0C:93:17:48:A1:42
Certificate issuer: /CN=70984F008CA28F6475DB426353BFD1C433D8BC1A
Certificate serial: 0C4A
Authority key identifier: 70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/bUbOklQb9tiSTIRa6L4MkxdIoUI.roa
Signing time: Mon 26 Aug 2024 05:09:43 +0000
ROA not before: Mon 26 Aug 2024 05:09:43 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9264
IP address blocks: 202.140.160.0/19 maxlen: 19
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:29:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3146 (0xc4a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70984F008CA28F6475DB426353BFD1C433D8BC1A
Validity
Not Before: Aug 26 05:09:43 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6D46CE92541BF6D8924C845AE8BE0C931748A142
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:36:5e:5d:e9:95:f2:32:ce:02:98:3c:14:99:
d9:b1:45:c7:3a:1c:8b:30:f8:f9:82:8e:2b:a8:36:
3c:b7:30:20:89:58:5e:4b:a7:da:c0:43:38:f2:53:
17:69:2d:72:43:ad:f8:08:1e:80:e6:dd:65:bb:c3:
8b:87:d1:f6:12:9c:d0:55:f6:5c:53:34:40:61:4b:
2a:d6:e6:f6:20:d1:7f:92:10:fc:a0:1e:af:c7:8c:
c0:0e:5d:58:86:50:65:a1:52:1f:e4:7c:25:07:71:
59:9f:27:38:09:75:0e:3f:b1:c2:99:ab:65:4f:39:
bf:4a:4e:ff:06:63:a8:5e:fd:77:09:15:f8:f1:09:
0e:ef:a7:5f:a3:be:c1:0c:6a:73:27:29:c9:94:0f:
f7:b2:f2:31:5f:62:e6:a2:93:42:a7:9a:f7:8a:ab:
89:08:dd:44:fe:c5:7d:f6:65:a5:67:dc:a0:93:25:
e6:3c:e6:89:78:d0:53:c4:26:07:90:47:1a:55:7d:
f9:d5:10:df:9e:a8:ea:8e:23:0b:44:4c:32:f4:0c:
3e:5e:bc:64:18:ec:9d:2a:01:ab:f7:5c:5f:68:6a:
c6:1f:84:4b:54:7f:62:d4:f9:4e:5d:40:ae:c2:f7:
3f:eb:5f:37:66:39:da:92:b4:61:ef:26:d7:9d:58:
f9:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:46:CE:92:54:1B:F6:D8:92:4C:84:5A:E8:BE:0C:93:17:48:A1:42
X509v3 Authority Key Identifier:
keyid:70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/bUbOklQb9tiSTIRa6L4MkxdIoUI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.140.160.0/19
Signature Algorithm: sha256WithRSAEncryption
aa:59:5e:6c:39:3c:58:33:fd:97:d9:a9:77:a8:a9:21:3b:0b:
fa:b1:57:cd:e2:94:95:80:13:18:20:07:34:1c:45:3b:c8:e0:
66:e3:6a:72:6e:30:6f:93:b2:50:33:67:82:a8:38:ad:f6:87:
07:68:0b:bc:cd:51:da:73:3e:90:d9:b8:5e:52:47:50:c4:c1:
f2:1a:08:10:95:ef:72:fa:48:6f:c9:4d:58:47:0f:51:aa:a4:
6b:e8:40:75:ad:d8:37:58:32:c3:94:28:06:bd:26:14:7d:dd:
bd:8a:ae:03:95:92:87:bf:4b:ea:98:a0:0d:d4:12:73:98:91:
e0:1c:7a:67:c9:67:cb:42:6b:4d:bd:1c:2e:e1:83:b3:38:c6:
ce:99:78:fa:8e:4b:dc:92:03:64:34:aa:33:9a:60:6a:c6:f1:
6d:c1:df:34:d8:fe:7d:db:4d:d1:b1:93:71:a7:82:e3:ab:db:
52:07:d5:05:cd:08:d5:fe:d9:13:f0:a8:09:5f:8a:3f:a2:00:
28:73:52:e9:35:72:5c:aa:f3:a9:a2:6b:a9:e1:f9:f3:20:3c:
38:57:84:a3:2d:22:a1:3e:cc:d1:8d:9f:76:fd:92:9e:3f:db:
3a:10:52:3c:f5:2f:be:4c:71:03:ed:97:65:a3:6e:d8:2b:8c:
db:05:5d:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:44:45 2025 by rpki-client