Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0bsX4AZFKVdo5kqpP3xLhhE3c8o.roa
File: 0bsX4AZFKVdo5kqpP3xLhhE3c8o.roa (raw, json)
Hash identifier: 7vHqghk80OcYNdcgcthoFwRuja3K1Ztz7gPqQhuqqdQ=
Subject key identifier: D1:BB:17:E0:06:45:29:57:68:E6:4A:A9:3F:7C:4B:86:11:37:73:CA
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 2235
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0bsX4AZFKVdo5kqpP3xLhhE3c8o.roa
Signing time: Mon 26 Aug 2024 05:33:47 +0000
ROA not before: Mon 26 Aug 2024 05:33:47 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24164
IP address blocks: 180.218.200.0/21 maxlen: 21
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8757 (0x2235)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Aug 26 05:33:47 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=D1BB17E00645295768E64AA93F7C4B86113773CA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:e4:2e:2d:63:a6:eb:42:d2:d4:b8:0c:d9:cc:
e7:9a:60:b9:82:86:bc:c8:05:f5:90:4e:24:8e:d6:
b2:ed:d4:f5:53:2f:5e:3f:d7:8e:c3:1f:bc:6e:a3:
61:31:06:dc:ab:31:b1:70:fa:43:22:19:09:75:74:
92:a1:89:7c:cf:74:c6:53:02:7c:8a:2f:a5:21:f6:
30:6e:d7:97:c0:f3:d8:88:dd:17:3e:13:f6:3d:f6:
f1:4e:aa:87:8c:9b:49:8d:eb:71:2f:c4:51:61:c7:
7d:17:75:58:98:b2:ce:7a:93:7b:91:13:69:8e:31:
81:86:10:58:35:b8:ed:ce:5c:de:65:c8:ac:86:2b:
13:dc:3c:6c:18:83:11:8d:88:1f:2c:33:76:c1:24:
d5:a5:f6:4f:af:8d:1d:64:3f:86:84:58:86:b0:f2:
d7:ff:67:da:d4:02:2e:7a:08:12:05:d7:96:82:64:
6e:61:9a:6e:85:fe:7b:da:59:c8:84:f4:9b:9b:e9:
51:2c:eb:bb:e8:7f:7c:79:f1:e2:d6:e7:dc:31:6a:
d5:5c:c8:ac:c9:f4:b9:fa:fd:d5:ca:cb:bb:6f:f8:
6e:a2:df:45:2a:00:08:87:44:f3:48:2a:72:7f:68:
4e:13:fe:4d:95:74:84:96:15:5d:6e:74:19:01:b7:
6a:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:BB:17:E0:06:45:29:57:68:E6:4A:A9:3F:7C:4B:86:11:37:73:CA
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0bsX4AZFKVdo5kqpP3xLhhE3c8o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.200.0/21
Signature Algorithm: sha256WithRSAEncryption
15:bf:a4:a5:2b:61:8f:2b:33:7f:17:84:a9:71:64:ae:66:d9:
c6:29:75:96:39:9e:23:21:f5:b8:3e:73:9e:f4:3a:09:7e:8c:
05:92:84:3b:a6:62:b4:0c:d7:5c:57:f2:1e:bc:3b:8b:52:65:
90:04:a3:a5:bc:84:d6:67:34:a9:9b:5a:d2:51:d6:8f:89:1f:
8d:4b:02:d1:1f:b7:5d:d2:19:a6:26:07:52:6c:c9:63:fb:9b:
6e:22:63:aa:47:13:24:29:22:ea:34:23:3d:ce:f5:b0:d3:74:
58:80:29:fb:93:e9:8e:25:0c:ff:5d:1a:22:06:a7:8e:66:23:
dd:58:88:ed:16:1d:f6:4e:47:69:50:ee:e4:f1:28:17:0d:36:
3a:5e:33:43:bf:81:23:cf:aa:3a:66:4e:92:64:aa:70:fc:57:
b5:ae:74:61:7d:37:2b:0e:de:bc:20:e8:65:0a:b2:69:8d:e6:
83:b9:dd:8a:2f:23:40:1e:79:25:70:06:3d:96:e5:6d:98:4a:
a7:65:2f:61:2d:ff:35:f5:2a:f0:41:c2:b7:73:d9:95:83:da:
6a:5e:37:86:35:9f:b4:5f:ec:05:a9:18:fb:e9:eb:df:95:50:
f8:5f:70:7f:8e:61:7f:79:62:c3:07:ad:bf:f9:18:91:54:2a:
d4:b3:c9:3c
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICIjUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw
NTMzNDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQxQkIxN0UwMDY0NTI5
NTc2OEU2NEFBOTNGN0M0Qjg2MTEzNzczQ0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDL5C4tY6brQtLUuAzZzOeaYLmChrzIBfWQTiSO1rLt1PVTL14/
147DH7xuo2ExBtyrMbFw+kMiGQl1dJKhiXzPdMZTAnyKL6Uh9jBu15fA89iI3Rc+
E/Y99vFOqoeMm0mN63EvxFFhx30XdViYss56k3uRE2mOMYGGEFg1uO3OXN5lyKyG
KxPcPGwYgxGNiB8sM3bBJNWl9k+vjR1kP4aEWIaw8tf/Z9rUAi56CBIF15aCZG5h
mm6F/nvaWciE9Jub6VEs67vof3x58eLW59wxatVcyKzJ9Ln6/dXKy7tv+G6i30Uq
AAiHRPNIKnJ/aE4T/k2VdISWFV1udBkBt2rdAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQU0bsX4AZFKVdo5kqpP3xLhhE3c8owHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzBic1g0QVpGS1ZkbzVrcXBQ
M3hMaGhFM2M4by5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0
2sgwDQYJKoZIhvcNAQELBQADggEBABW/pKUrYY8rM38XhKlxZK5m2cYpdZY5niMh
9bg+c570Ogl+jAWShDumYrQM11xX8h68O4tSZZAEo6W8hNZnNKmbWtJR1o+JH41L
AtEft13SGaYmB1JsyWP7m24iY6pHEyQpIuo0Iz3O9bDTdFiAKfuT6Y4lDP9dGiIG
p45mI91YiO0WHfZOR2lQ7uTxKBcNNjpeM0O/gSPPqjpmTpJkqnD8V7WudGF9NysO
3rwg6GUKsmmN5oO53YovI0AeeSVwBj2W5W2YSqdlL2Et/zX1KvBBwrdz2ZWD2mpe
N4Y1n7Rf7AWpGPvp69+VUPhfcH+OYX95YsMHrb/5GJFUKtSzyTw=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:50:53 2025 by rpki-client