Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/27WoevKFwZQY_I6c68KWQzFbbns.roa
File: 27WoevKFwZQY_I6c68KWQzFbbns.roa (raw, json)
Hash identifier: BWUL8Vk1gDjH94h1uxxi2D0Ib4g+THSt3X+EN4SULAQ=
Subject key identifier: DB:B5:A8:7A:F2:85:C1:94:18:FC:8E:9C:EB:C2:96:43:31:5B:6E:7B
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 22CC
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/27WoevKFwZQY_I6c68KWQzFbbns.roa
Signing time: Mon 26 Aug 2024 05:34:23 +0000
ROA not before: Mon 26 Aug 2024 05:34:23 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24164
IP address blocks: 124.6.8.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:18:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8908 (0x22cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Aug 26 05:34:23 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=DBB5A87AF285C19418FC8E9CEBC29643315B6E7B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:23:fb:45:a8:e8:54:84:c2:4f:ed:a2:a2:29:
0c:d9:0b:05:34:eb:61:97:ed:35:37:9d:87:4f:02:
26:e9:80:e4:78:18:d6:f0:17:0e:46:ab:67:18:2b:
94:fd:af:03:22:6a:38:49:80:e9:98:ac:1e:3b:33:
c5:1d:8e:c1:2c:c8:45:ff:25:ef:08:87:99:1d:fa:
4a:37:5e:cb:51:d9:89:f5:06:75:54:68:75:e9:fe:
e4:40:d7:b1:a9:90:bd:13:7a:61:3b:9b:0a:3a:59:
72:e2:ce:ea:7e:64:15:c1:77:c6:e3:51:ff:73:99:
56:3b:5b:69:56:32:4a:fa:2b:96:45:ab:fe:0e:66:
41:2d:30:a2:f7:63:cb:93:b3:fa:82:51:9d:9c:26:
57:87:b7:3d:b3:66:e4:91:7c:32:87:c0:52:20:ea:
a9:5a:19:32:61:d9:a3:6a:e6:c3:43:79:12:6e:5b:
20:4a:f9:7c:8c:cc:20:22:26:43:9e:5f:97:f6:05:
7f:ab:46:96:8d:08:5d:7d:15:3f:ac:72:9c:08:92:
42:6d:77:8a:cc:6c:56:56:4f:b3:48:cf:13:35:1a:
6e:7a:d2:82:3d:92:a5:34:75:20:aa:bc:c8:71:4d:
22:ce:98:09:4e:e0:3e:4b:4d:4f:f5:68:f0:b0:cd:
27:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:B5:A8:7A:F2:85:C1:94:18:FC:8E:9C:EB:C2:96:43:31:5B:6E:7B
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/27WoevKFwZQY_I6c68KWQzFbbns.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.6.8.0/22
Signature Algorithm: sha256WithRSAEncryption
24:13:8c:e1:14:34:4b:5a:7f:e4:d0:93:c2:1f:ef:58:fd:b1:
a3:01:4b:03:4c:be:06:f8:92:10:ce:99:1d:a1:09:c3:f9:46:
e9:40:c8:27:c7:91:96:bc:38:c3:2d:ff:9e:0c:d4:4c:6c:d4:
d8:0f:ea:bd:fa:95:c9:7f:5a:6c:55:78:d8:2d:73:9e:2d:06:
87:89:f0:92:00:c6:07:4f:0f:ae:a9:5b:fc:cc:2e:6e:02:b2:
44:96:f2:95:12:24:2c:47:cf:a2:ae:66:92:34:6a:9d:84:d9:
f8:8e:fa:d8:ec:21:c9:c2:a8:70:5b:96:f3:92:f8:48:84:10:
02:81:2a:6a:8c:81:0c:49:5a:84:77:22:5c:6b:5e:64:b6:33:
bf:22:4b:c5:14:70:e8:4b:70:10:42:5c:b9:67:88:4c:0b:23:
41:69:59:49:cc:8e:08:5e:84:02:2c:47:ef:45:43:d2:cc:8f:
d7:33:6c:76:f5:3e:21:32:aa:4c:7b:41:09:ab:e7:f2:af:68:
69:50:48:a3:5e:11:b4:57:a7:fe:9a:db:5c:52:0d:ee:4d:4c:
0c:08:76:83:cc:60:ae:66:4f:4b:12:e3:8e:83:04:c2:bf:78:
d2:4d:3d:72:e1:f3:e6:27:dc:dc:40:1d:61:e5:be:b9:3d:8e:
92:42:66:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:47:16 2025 by rpki-client