Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/AiXHE-YWJqm73QjBgWhEcfA5_YI.roa
File: AiXHE-YWJqm73QjBgWhEcfA5_YI.roa (raw, json)
Hash identifier: qvTzOcAtyoeAp5Ylz03aBjyH8WXiY06KSLjKkxfBxnk=
Subject key identifier: 02:25:C7:13:E6:16:26:A9:BB:DD:08:C1:81:68:44:71:F0:39:FD:82
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 188C
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/AiXHE-YWJqm73QjBgWhEcfA5_YI.roa
Signing time: Sat 22 Oct 2022 05:58:54 +0000
ROA not before: Sat 22 Oct 2022 05:58:54 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24165
IP address blocks: 49.158.240.0/21 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6284 (0x188c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 05:58:54 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=0225C713E61626A9BBDD08C181684471F039FD82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:6d:4e:7b:a4:38:50:7c:ef:6a:42:5b:58:7b:
13:72:9b:2c:a8:8a:e5:87:47:56:81:fb:6e:3c:43:
45:9b:06:d6:d0:91:c3:fb:92:d4:ec:ae:19:ff:df:
5c:7c:f2:54:c9:db:f7:e6:7e:20:e8:51:64:08:e0:
48:18:ed:c8:0f:14:2c:7e:36:44:8f:a0:e2:55:a4:
11:8c:c2:e7:7a:c8:85:7e:97:38:d1:35:fd:ed:74:
0e:99:a0:ef:e8:33:9e:62:ae:ce:8b:1b:3c:34:f9:
5a:53:39:3b:ef:94:e0:50:77:63:a1:3b:20:d3:09:
71:db:43:2d:e4:dd:ce:52:c6:c5:b1:68:60:fb:a0:
ba:fd:ca:e8:01:f2:97:17:13:f2:15:2d:ba:48:b3:
1e:91:7a:45:f8:8f:a4:eb:f8:ce:8c:29:6f:57:8f:
d3:6f:73:36:23:ac:3c:a4:36:bf:87:ae:78:fe:aa:
68:63:ad:4d:db:b1:48:b4:af:80:37:4a:17:f0:4a:
e4:10:2f:f6:d7:de:00:6f:61:65:be:30:81:45:c7:
b0:bf:a9:9d:73:3f:93:6a:c6:85:fa:05:0f:bd:90:
c4:49:a3:53:33:07:3d:0e:d4:9f:11:30:ba:ee:2b:
32:26:fa:37:d7:dd:d5:bd:f5:db:f1:d4:54:04:9a:
02:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:25:C7:13:E6:16:26:A9:BB:DD:08:C1:81:68:44:71:F0:39:FD:82
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/AiXHE-YWJqm73QjBgWhEcfA5_YI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.240.0/21
Signature Algorithm: sha256WithRSAEncryption
94:97:c6:00:26:96:73:d2:e4:17:15:e5:49:54:7f:37:97:c6:
ed:aa:06:67:13:fa:02:10:b3:3b:26:f1:90:68:c0:3a:db:48:
44:44:74:6d:83:8b:38:6a:f2:fa:1f:83:b1:4f:2c:28:c1:b8:
d5:a2:80:50:d8:05:00:d9:76:b7:1d:ef:9d:f9:03:5e:eb:89:
9f:dc:e2:64:93:bb:c3:81:93:a1:b7:b6:73:fd:09:b4:a2:88:
6c:ce:4c:f5:2e:a5:2a:ff:5e:f8:15:1d:8f:c9:92:6b:50:44:
ec:1d:b5:6e:d7:01:e5:93:99:f9:b0:6c:01:e6:bd:43:17:65:
6f:12:98:f1:b1:13:f2:af:b6:1d:a0:3a:94:5e:f9:4b:c5:82:
55:d7:04:54:17:b2:f4:0d:37:a8:3d:8f:65:a8:e0:c8:85:8d:
ac:5d:e3:91:75:2d:2a:2b:a8:cf:98:b3:12:df:21:3e:f1:c8:
52:2d:0c:14:31:ad:14:ff:60:d0:a7:d4:d2:32:5b:d6:0c:89:
28:c6:e1:ac:a2:6d:b8:7e:39:57:19:e2:e5:dd:ae:55:95:3e:
2a:09:8f:e7:b0:15:14:50:53:b9:1c:6a:63:e9:19:c2:b2:9e:
60:7a:42:7f:21:93:f6:5e:b7:56:8c:f5:78:14:d9:f1:91:10:
e5:7e:c4:8b
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICGIwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMjEwMjIw
NTU4NTRaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDAyMjVDNzEzRTYxNjI2
QTlCQkREMDhDMTgxNjg0NDcxRjAzOUZEODIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDCbU57pDhQfO9qQltYexNymyyoiuWHR1aB+248Q0WbBtbQkcP7
ktTsrhn/31x88lTJ2/fmfiDoUWQI4EgY7cgPFCx+NkSPoOJVpBGMwud6yIV+lzjR
Nf3tdA6ZoO/oM55irs6LGzw0+VpTOTvvlOBQd2OhOyDTCXHbQy3k3c5SxsWxaGD7
oLr9yugB8pcXE/IVLbpIsx6RekX4j6Tr+M6MKW9Xj9NvczYjrDykNr+Hrnj+qmhj
rU3bsUi0r4A3ShfwSuQQL/bX3gBvYWW+MIFFx7C/qZ1zP5NqxoX6BQ+9kMRJo1Mz
Bz0O1J8RMLruKzIm+jfX3dW99dvx1FQEmgJdAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUAiXHE+YWJqm73QjBgWhEcfA5/YIwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0FpWEhFLVlXSnFtNzNRakJn
V2hFY2ZBNV9ZSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx
nvAwDQYJKoZIhvcNAQELBQADggEBAJSXxgAmlnPS5BcV5UlUfzeXxu2qBmcT+gIQ
szsm8ZBowDrbSEREdG2Dizhq8vofg7FPLCjBuNWigFDYBQDZdrcd7535A17riZ/c
4mSTu8OBk6G3tnP9CbSiiGzOTPUupSr/XvgVHY/JkmtQROwdtW7XAeWTmfmwbAHm
vUMXZW8SmPGxE/Kvth2gOpRe+UvFglXXBFQXsvQNN6g9j2Wo4MiFjaxd45F1LSor
qM+YsxLfIT7xyFItDBQxrRT/YNCn1NIyW9YMiSjG4ayibbh+OVcZ4uXdrlWVPioJ
j+ewFRRQU7kcamPpGcKynmB6Qn8hk/Zet1aM9XgU2fGREOV+xIs=
-----END CERTIFICATE-----
Generated at Fri Sep 1 10:47:13 2023 by rpki-client on console-fra.rpki-client.org