Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/1xXlUIILAjnakCQUisvkvE-5r7c.roa
File: 1xXlUIILAjnakCQUisvkvE-5r7c.roa (raw, json)
Hash identifier: +05xHlCAqlL2aUJji3in29/QNlfzEIpdytx9zMfJ5TA=
Subject key identifier: D7:15:E5:50:82:0B:02:39:DA:90:24:14:8A:CB:E4:BC:4F:B9:AF:B7
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1972
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/1xXlUIILAjnakCQUisvkvE-5r7c.roa
Signing time: Sat 22 Oct 2022 06:06:32 +0000
ROA not before: Sat 22 Oct 2022 06:06:32 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24165
IP address blocks: 180.218.120.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6514 (0x1972)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 06:06:32 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D715E550820B0239DA9024148ACBE4BC4FB9AFB7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:00:69:7c:ef:ad:8f:ae:b4:a7:ba:25:50:bf:
16:95:7d:f4:3f:c7:6b:a0:ae:a1:97:7b:b5:21:f6:
63:33:17:a6:13:95:6d:77:da:2a:8c:8f:4f:aa:a2:
a9:27:8b:8c:e6:9e:98:e4:7c:67:15:02:6c:58:a1:
ed:16:22:d6:fc:a8:a1:23:05:5d:b5:54:35:dd:fb:
17:28:ef:f7:43:e6:69:a5:f5:27:4a:47:0e:54:9e:
0a:cf:49:20:9f:90:9b:c2:ae:c6:a9:4c:5b:1d:af:
df:b9:b6:35:3e:24:8d:1b:78:d1:c1:fa:84:67:c3:
a3:34:88:33:36:5c:84:be:61:a5:28:26:c5:1d:90:
a3:74:30:5c:4e:f4:8c:29:2f:ae:d2:03:ca:92:09:
78:68:a8:b9:c7:57:07:16:9a:e3:db:18:3e:ba:a9:
f1:e3:33:a1:f8:bc:f3:bb:b9:22:7a:fe:46:4a:d6:
cd:01:55:4e:48:0f:d9:ca:c1:2e:32:28:02:75:72:
d2:10:3b:27:5d:30:be:f2:87:a0:b1:83:94:18:14:
f8:f1:d1:ba:ae:0e:50:0a:0a:47:44:38:3b:fa:77:
70:e5:5c:16:94:3e:03:1a:f8:07:7b:54:a5:c0:6c:
27:45:10:8b:11:14:91:df:e2:48:33:c1:9c:55:c0:
bc:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:15:E5:50:82:0B:02:39:DA:90:24:14:8A:CB:E4:BC:4F:B9:AF:B7
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/1xXlUIILAjnakCQUisvkvE-5r7c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.120.0/22
Signature Algorithm: sha256WithRSAEncryption
4b:39:fb:70:3a:88:77:85:ee:d1:df:fa:ac:06:da:3c:b9:cf:
77:4f:15:33:52:ec:15:3a:02:1a:ab:a8:e2:59:47:5c:a2:18:
d8:0c:51:f6:52:80:b2:f1:40:32:5b:9b:65:4f:e0:d8:7e:91:
24:89:2d:43:ad:3e:12:68:d6:78:fb:2a:65:9a:39:f8:35:2d:
9e:42:ee:85:c0:e0:8f:13:1c:0e:11:ca:cd:3f:96:dd:2c:31:
28:2a:4f:d0:09:d2:31:99:59:c6:c4:40:ad:03:06:21:cf:20:
0a:0b:6c:a3:7d:1b:c8:dd:32:77:bc:2f:fd:4c:2a:57:8d:f7:
dd:13:b7:27:4b:65:96:af:a1:b7:bf:ff:6a:45:83:f2:4a:0e:
44:5f:91:03:ed:ff:ac:d1:b6:9b:ea:b7:a5:50:9c:ad:a7:b8:
da:1d:25:a8:ac:af:ff:47:e2:54:ea:5b:db:28:9d:fd:f7:46:
bf:4d:f8:83:7c:71:77:97:4f:87:be:5d:5f:ac:bf:29:65:0a:
42:ef:ad:f2:ed:72:c0:79:86:17:dd:bd:ca:0f:a2:9d:fc:e5:
59:ea:e6:98:ea:73:b6:16:49:01:7e:70:7a:42:4f:1d:8b:5b:
c6:ab:b9:38:b4:53:ce:5f:65:ec:e8:7a:c1:7c:09:3c:59:56:
f9:07:fe:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:53:38 2023 by rpki-client on console-ams.rpki-client.org