Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/8BwJHdROP8X4xrlROghuCLdkeZU.roa
File: 8BwJHdROP8X4xrlROghuCLdkeZU.roa (raw, json)
Hash identifier: PSHiuccp7DKHSC/0yLKU5LRadSvlaTD4ZHTXNZosGtI=
Subject key identifier: F0:1C:09:1D:D4:4E:3F:C5:F8:C6:B9:51:3A:08:6E:08:B7:64:79:95
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 18D1
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/8BwJHdROP8X4xrlROghuCLdkeZU.roa
Signing time: Sat 22 Oct 2022 06:05:46 +0000
ROA not before: Sat 22 Oct 2022 06:05:46 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 49.158.96.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6353 (0x18d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 06:05:46 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=F01C091DD44E3FC5F8C6B9513A086E08B7647995
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:a8:c0:10:73:0e:09:6c:ac:5e:c7:7f:3b:3a:
14:6e:8d:ac:48:d4:7e:d5:53:9c:d8:07:d4:9b:13:
3f:dd:79:7e:52:0c:4e:52:f3:cb:13:bf:8f:9c:e0:
83:5a:01:90:c5:f5:6f:75:ef:0e:62:e6:b6:17:5e:
c2:09:81:84:7b:07:6a:1e:70:d5:4c:2e:1d:67:1b:
4a:de:81:ed:80:e4:c8:19:bf:ae:ed:55:ca:9c:d4:
f4:85:9c:c5:20:df:83:49:7c:b9:e7:21:75:ed:f6:
c8:0f:10:99:a0:6d:0e:51:0b:ec:be:d1:cb:3d:6f:
2c:69:36:bd:23:5b:c7:24:c5:42:c1:45:d8:0d:6e:
e1:98:bd:0a:27:dd:ed:86:86:40:a1:d9:48:d9:6c:
b5:a1:9d:0d:3b:ab:d0:b5:41:0d:6d:ba:a4:a2:c7:
fa:4d:2d:57:20:44:18:8c:42:65:38:00:49:75:2d:
62:ee:8e:b5:b7:9e:b2:bd:c5:79:58:35:bb:87:73:
f5:5b:21:13:ce:68:a6:fc:e8:d7:36:f6:ec:51:c6:
42:0f:74:bd:96:8a:ac:a7:ae:42:01:4b:f6:ba:90:
a8:6f:df:8d:7e:f0:87:30:69:5a:31:9d:83:be:bc:
f8:fa:db:51:12:ab:e3:9d:ea:8e:aa:cb:77:22:78:
3c:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:1C:09:1D:D4:4E:3F:C5:F8:C6:B9:51:3A:08:6E:08:B7:64:79:95
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/8BwJHdROP8X4xrlROghuCLdkeZU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.96.0/21
Signature Algorithm: sha256WithRSAEncryption
3f:29:e4:c8:a7:7e:22:4a:3f:ac:66:d7:f1:e6:1c:11:7b:05:
f1:b2:11:c1:c4:06:17:8e:45:e2:07:b1:c9:4d:fc:5b:0e:06:
1a:37:ce:c7:2c:65:46:77:ce:17:e6:f4:73:d1:9b:09:7f:c0:
8f:75:19:f9:48:9b:d5:c1:4e:27:aa:d6:af:e8:97:59:c3:ac:
1c:22:cb:5d:e0:ac:29:e6:21:ca:0f:9e:02:12:6f:1f:6e:be:
7a:f2:35:3d:c0:57:36:d6:57:77:ca:3b:7c:64:31:1d:f9:d4:
f9:6a:fa:23:9e:34:97:7d:aa:c7:63:4b:af:0a:c5:23:40:6d:
c7:c0:0a:d9:0f:ba:d7:4e:bf:85:59:47:4c:0b:93:1d:7a:c4:
02:dd:86:41:bc:03:af:5e:e5:92:d4:ad:5d:f7:9f:54:67:17:
c6:66:48:9c:ce:57:b9:3b:27:5a:43:55:6a:b0:30:5c:cd:e0:
b3:a9:2a:04:be:9e:73:e0:69:be:32:e6:b3:04:85:37:7c:fa:
4f:fe:61:be:48:90:13:0c:e3:f1:f7:6f:50:89:2b:7f:c5:0a:
c3:b3:19:fa:df:9d:2a:2d:60:8a:bd:58:6a:b6:95:ec:1f:b2:
43:44:74:46:cf:67:78:a3:eb:e6:69:c1:fb:15:8b:98:5b:bb:
68:1e:38:41
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICGNEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMjEwMjIw
NjA1NDZaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEYwMUMwOTFERDQ0RTNG
QzVGOEM2Qjk1MTNBMDg2RTA4Qjc2NDc5OTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC6qMAQcw4JbKxex387OhRujaxI1H7VU5zYB9SbEz/deX5SDE5S
88sTv4+c4INaAZDF9W917w5i5rYXXsIJgYR7B2oecNVMLh1nG0rege2A5MgZv67t
Vcqc1PSFnMUg34NJfLnnIXXt9sgPEJmgbQ5RC+y+0cs9byxpNr0jW8ckxULBRdgN
buGYvQon3e2GhkCh2UjZbLWhnQ07q9C1QQ1tuqSix/pNLVcgRBiMQmU4AEl1LWLu
jrW3nrK9xXlYNbuHc/VbIRPOaKb86Nc29uxRxkIPdL2WiqynrkIBS/a6kKhv341+
8IcwaVoxnYO+vPj621ESq+Od6o6qy3cieDxfAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQU8BwJHdROP8X4xrlROghuCLdkeZUwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzhCd0pIZFJPUDhYNHhybFJP
Z2h1Q0xka2VaVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx
nmAwDQYJKoZIhvcNAQELBQADggEBAD8p5MinfiJKP6xm1/HmHBF7BfGyEcHEBheO
ReIHsclN/FsOBho3zscsZUZ3zhfm9HPRmwl/wI91GflIm9XBTieq1q/ol1nDrBwi
y13grCnmIcoPngISbx9uvnryNT3AVzbWV3fKO3xkMR351Plq+iOeNJd9qsdjS68K
xSNAbcfACtkPutdOv4VZR0wLkx16xALdhkG8A69e5ZLUrV33n1RnF8ZmSJzOV7k7
J1pDVWqwMFzN4LOpKgS+nnPgab4y5rMEhTd8+k/+Yb5IkBMM4/H3b1CJK3/FCsOz
GfrfnSotYIq9WGq2lewfskNEdEbPZ3ij6+ZpwfsVi5hbu2geOEE=
-----END CERTIFICATE-----
Generated at Fri Sep 1 10:53:38 2023 by rpki-client on console-ams.rpki-client.org