Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ACOHmRtweS_TW8tBrPpSAgUz13k.roa
File: ACOHmRtweS_TW8tBrPpSAgUz13k.roa (raw, json)
Hash identifier: AUP6pxqRHIK+HUkLGCxRNcqNgzJCUuw9qNzxQqCHY8o=
Subject key identifier: 00:23:87:99:1B:70:79:2F:D3:5B:CB:41:AC:FA:52:02:05:33:D7:79
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1969
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ACOHmRtweS_TW8tBrPpSAgUz13k.roa
Signing time: Sat 22 Oct 2022 06:06:29 +0000
ROA not before: Sat 22 Oct 2022 06:06:29 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 4662
IP address blocks: 123.0.32.0/19 maxlen: 19
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6505 (0x1969)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 06:06:29 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=002387991B70792FD35BCB41ACFA52020533D779
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:32:d4:e1:a8:ee:87:24:6d:62:c7:4c:ee:56:
bb:6e:32:c1:fc:fb:77:94:97:1e:07:89:5e:10:b2:
d3:0d:ab:82:0b:98:79:9e:24:41:6c:40:cc:16:bf:
c9:d6:76:5c:13:a6:b8:c7:c3:5b:87:91:7b:e3:32:
ae:53:ce:aa:a8:01:d7:38:94:60:58:d5:6a:42:7d:
5e:ca:ef:9a:a3:7a:be:c2:d4:8a:67:27:21:5b:d2:
83:7e:a9:84:b7:3c:12:ae:1e:b9:56:a6:39:ad:a7:
92:c6:97:62:00:a4:52:fe:2a:70:31:95:6f:13:53:
20:ca:92:95:4a:d4:ed:a8:23:7e:c1:e4:e3:dd:2b:
0a:c1:40:4d:c2:23:37:07:3b:c3:b5:c6:dc:6d:37:
06:48:a4:bf:31:14:fe:32:b8:84:ff:d6:17:92:67:
1a:f2:a9:e6:b4:1b:10:a5:58:20:64:b4:f7:1e:0d:
c7:11:48:0e:59:fa:f4:11:64:c9:47:9c:93:6e:c8:
89:c1:14:73:e8:4b:54:3e:f3:1c:ba:bb:36:cc:ee:
af:81:8d:27:af:ca:cc:6d:4c:19:b3:0c:a6:26:33:
24:6e:1e:83:e5:86:96:82:ed:b5:62:a6:9b:10:56:
60:d3:dd:a9:05:ff:1e:66:0b:23:f7:4f:c0:7a:d2:
f6:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:23:87:99:1B:70:79:2F:D3:5B:CB:41:AC:FA:52:02:05:33:D7:79
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ACOHmRtweS_TW8tBrPpSAgUz13k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.0.32.0/19
Signature Algorithm: sha256WithRSAEncryption
99:a9:9a:88:6a:73:2f:b4:e1:85:fe:e7:dd:04:08:bc:2c:d4:
5d:85:b0:a6:99:30:f3:ea:24:ec:95:23:2a:c0:47:f2:11:4b:
8e:ef:55:52:23:16:07:d4:02:62:e5:7a:bc:7f:a9:25:d7:36:
29:62:89:70:ec:83:44:62:39:be:14:66:55:1f:ff:27:4a:88:
b0:46:38:eb:6d:05:ba:66:b0:b9:b3:da:3d:2c:82:01:83:63:
0e:8b:32:75:80:b9:3f:96:0d:55:d3:4b:6d:32:3b:27:fc:69:
6b:be:df:9d:d7:e6:00:e0:ba:10:55:8d:8b:fb:85:c5:8a:4d:
46:5b:71:4f:41:d9:ea:3d:e8:a2:bb:4a:8e:f5:ce:c4:78:c3:
c2:92:08:4b:b7:01:3f:23:06:99:59:24:46:2a:4d:e2:d4:93:
7e:67:54:29:cc:ec:39:96:a4:91:53:6f:2f:0e:0e:d9:77:d9:
68:d5:72:59:7c:44:cb:0b:30:10:8f:e0:ac:4a:2e:86:2e:6c:
ee:69:4f:2c:9c:e0:c0:41:ae:f8:aa:a9:4d:2b:00:40:ea:30:
b2:48:d7:6d:f5:dd:03:3e:a8:ab:a1:50:ad:5e:4f:a3:e7:d0:
6e:af:cc:13:07:ac:27:0f:19:3c:41:f9:b5:b0:4d:99:7b:7a:
9c:6e:af:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:53:38 2023 by rpki-client on console-ams.rpki-client.org