Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/8vjuCZLILQLmn1HW9fWZ3WvcvbI.roa
File: 8vjuCZLILQLmn1HW9fWZ3WvcvbI.roa (raw, json)
Hash identifier: V50Gae0R9Lka/g9nJHQ6GqHJM0dC9GbqJRMkPyIoGlo=
Subject key identifier: F2:F8:EE:09:92:C8:2D:02:E6:9F:51:D6:F5:F5:99:DD:6B:DC:BD:B2
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 2263
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/8vjuCZLILQLmn1HW9fWZ3WvcvbI.roa
Signing time: Mon 26 Aug 2024 05:33:57 +0000
ROA not before: Mon 26 Aug 2024 05:33:57 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9924
IP address blocks: 61.60.214.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:17:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8803 (0x2263)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Aug 26 05:33:57 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F2F8EE0992C82D02E69F51D6F5F599DD6BDCBDB2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:13:f8:55:1f:3c:d8:c4:b4:2f:59:39:07:a8:
36:da:26:8d:19:8c:78:b8:9b:88:d5:1a:74:d7:47:
f3:59:87:54:fe:35:d8:e5:c0:45:75:79:3e:e2:6e:
5d:b7:b5:d6:e4:05:4f:82:1d:c0:69:c1:07:d6:95:
02:67:03:29:60:6d:35:9a:c6:dc:3e:fd:41:1d:7c:
70:cd:97:cc:ef:77:e7:bb:0b:4c:f2:6c:5a:c3:a4:
c3:30:4c:7d:50:66:60:4f:e1:54:f8:08:05:f5:56:
50:72:0e:d9:e5:84:24:77:f1:1b:77:22:6f:f2:c0:
98:80:73:30:5b:2f:65:40:5d:b1:0c:83:47:4e:10:
6c:e6:ac:2f:b2:55:ab:23:5d:f5:fc:ac:ec:d6:e8:
7c:c7:97:c1:cb:f8:12:3f:51:dc:78:77:db:c6:4e:
33:04:d1:0f:45:c5:84:f7:8a:e8:7b:39:e4:58:a0:
c0:4d:fa:f0:fc:60:ba:73:db:45:d8:53:f4:9f:d1:
22:a5:0d:43:0b:eb:93:f5:ab:9d:54:fe:89:a5:cc:
fa:82:95:04:1b:d6:de:e7:93:2f:fe:a5:35:5f:d2:
f5:c3:fd:2a:c5:bf:e5:05:55:c0:2b:42:88:10:35:
57:40:17:72:c4:18:e2:96:80:4c:e5:08:cb:2b:5e:
6f:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:F8:EE:09:92:C8:2D:02:E6:9F:51:D6:F5:F5:99:DD:6B:DC:BD:B2
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/8vjuCZLILQLmn1HW9fWZ3WvcvbI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.60.214.0/23
Signature Algorithm: sha256WithRSAEncryption
39:6e:77:a2:1a:10:80:07:58:74:ba:8b:a6:9c:f4:55:0b:99:
8b:da:9e:b8:2f:a3:85:a0:d7:79:0f:c7:7b:ba:70:41:f9:2f:
cf:fd:1a:f0:ee:16:84:dd:b0:dc:dc:ea:03:0f:81:93:1b:c1:
98:14:68:2a:92:97:d4:08:57:45:2f:63:6e:98:c6:1b:c8:e8:
51:26:b7:7e:4c:ac:b7:7b:ac:b0:fc:f3:17:6e:22:3a:30:e9:
42:f6:47:c3:dd:96:6a:fc:77:c8:b6:c7:48:32:b0:25:96:18:
30:43:48:52:07:f4:70:e8:49:3a:14:79:cd:e2:55:21:3a:4a:
b1:dd:60:fb:89:d6:fc:d5:bc:40:b4:2a:00:e4:f0:f7:5f:c5:
02:85:4f:5c:be:d9:51:bf:0d:2b:05:be:e5:6d:fc:35:6c:f1:
ea:01:d2:de:78:ba:ac:6a:1d:85:5f:f2:55:b7:05:1f:f9:f8:
a6:a5:55:08:ab:dc:65:c9:61:52:4b:b0:b4:6b:90:c2:50:81:
aa:79:67:1b:77:ec:36:24:f0:d2:af:5c:00:61:49:95:31:cf:
a8:1c:2e:55:ad:af:5f:cf:8c:03:c1:2f:1f:32:7a:b4:77:b2:
6b:69:85:c2:56:04:be:9c:5c:87:d3:3d:25:76:44:30:b7:30:
fd:75:9d:b9
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICImMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw
NTMzNTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEYyRjhFRTA5OTJDODJE
MDJFNjlGNTFENkY1RjU5OURENkJEQ0JEQjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDzE/hVHzzYxLQvWTkHqDbaJo0ZjHi4m4jVGnTXR/NZh1T+Ndjl
wEV1eT7ibl23tdbkBU+CHcBpwQfWlQJnAylgbTWaxtw+/UEdfHDNl8zvd+e7C0zy
bFrDpMMwTH1QZmBP4VT4CAX1VlByDtnlhCR38Rt3Im/ywJiAczBbL2VAXbEMg0dO
EGzmrC+yVasjXfX8rOzW6HzHl8HL+BI/Udx4d9vGTjME0Q9FxYT3iuh7OeRYoMBN
+vD8YLpz20XYU/Sf0SKlDUML65P1q51U/omlzPqClQQb1t7nky/+pTVf0vXD/SrF
v+UFVcArQogQNVdAF3LEGOKWgEzlCMsrXm9dAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQU8vjuCZLILQLmn1HW9fWZ3WvcvbIwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzh2anVDWkxJTFFMbW4xSFc5
ZldaM1d2Y3ZiSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAE9
PNYwDQYJKoZIhvcNAQELBQADggEBADlud6IaEIAHWHS6i6ac9FULmYvanrgvo4Wg
13kPx3u6cEH5L8/9GvDuFoTdsNzc6gMPgZMbwZgUaCqSl9QIV0UvY26YxhvI6FEm
t35MrLd7rLD88xduIjow6UL2R8Pdlmr8d8i2x0gysCWWGDBDSFIH9HDoSToUec3i
VSE6SrHdYPuJ1vzVvEC0KgDk8PdfxQKFT1y+2VG/DSsFvuVt/DVs8eoB0t54uqxq
HYVf8lW3BR/5+KalVQir3GXJYVJLsLRrkMJQgap5Zxt37DYk8NKvXABhSZUxz6gc
LlWtr1/PjAPBLx8yerR3smtphcJWBL6cXIfTPSV2RDC3MP11nbk=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:49:40 2025 by rpki-client