Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/AjT_NDh9nZlmIYu3hYXmK0J8gVk.roa
File: AjT_NDh9nZlmIYu3hYXmK0J8gVk.roa (raw, json)
Hash identifier: MA87Tu6cPGn92+wHpU28IvTBTzfJpq5E7/njscyqHKQ=
Subject key identifier: 02:34:FF:34:38:7D:9D:99:66:21:8B:B7:85:85:E6:2B:42:7C:81:59
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 228B
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/AjT_NDh9nZlmIYu3hYXmK0J8gVk.roa
Signing time: Mon 26 Aug 2024 05:34:07 +0000
ROA not before: Mon 26 Aug 2024 05:34:07 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4662
IP address blocks: 122.254.0.0/18 maxlen: 18
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:18:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8843 (0x228b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Aug 26 05:34:07 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=0234FF34387D9D9966218BB78585E62B427C8159
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:5d:cf:37:c2:e3:08:d1:7d:92:46:99:c6:e0:
fa:dd:19:7c:08:1b:0a:41:7b:10:92:ea:59:6e:d9:
da:5b:1c:e3:3e:5b:6e:5a:e5:16:f9:79:70:ad:8f:
0e:e6:81:68:6b:38:2d:52:44:e0:f1:d7:16:e9:16:
5c:42:be:f1:ef:19:81:f9:34:35:55:22:9c:f8:28:
f7:83:2d:30:d9:f3:16:26:7e:2d:7c:bf:5a:d4:ae:
a6:ff:51:39:92:c7:ca:56:5a:fd:97:4f:a2:a2:7b:
f9:4c:3c:b4:ab:61:2c:37:3a:6a:9c:9d:e7:0b:72:
63:95:3a:0c:bc:da:29:9e:e9:1f:96:36:c3:c0:c6:
16:bf:7a:b3:52:78:d7:8c:25:39:e4:b2:e2:3e:d0:
d1:08:40:b7:07:2d:12:b2:bb:be:b1:a2:35:01:b7:
f3:b7:74:b6:59:f4:f5:16:d2:3c:52:3e:dc:28:ae:
c5:cb:3e:78:b2:69:85:b4:eb:8e:f8:52:11:4c:38:
61:01:84:cd:fe:ad:16:76:1f:da:11:cc:b0:d9:a5:
83:cc:c5:35:06:d9:df:cb:13:48:cb:91:25:83:31:
38:a7:07:18:75:e3:a5:c5:71:0a:9f:75:af:8d:23:
2a:4b:98:5f:4d:dd:b6:07:25:e5:6a:5f:4c:d5:83:
5b:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:34:FF:34:38:7D:9D:99:66:21:8B:B7:85:85:E6:2B:42:7C:81:59
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/AjT_NDh9nZlmIYu3hYXmK0J8gVk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.254.0.0/18
Signature Algorithm: sha256WithRSAEncryption
33:01:c9:4e:80:5d:2a:41:ca:ac:2f:46:eb:fd:40:4e:c0:2f:
24:fe:9a:28:90:01:7e:c3:0a:e8:7d:12:43:66:45:98:89:23:
a1:7c:9a:a7:f3:22:9e:83:3d:03:bd:24:71:48:e0:a5:fa:5d:
e9:26:8c:31:60:01:01:ed:a0:86:f8:ef:be:68:6e:af:ae:08:
46:f1:66:17:c2:7e:eb:e9:87:cd:65:86:11:eb:45:f3:ed:cf:
c0:78:93:da:aa:21:98:05:35:3b:fb:f7:db:f6:4f:83:19:fb:
18:e5:ff:e4:15:da:f3:bd:d9:8a:12:d8:5c:99:04:ee:d3:1f:
7d:b1:82:56:f4:f7:0f:b8:37:63:70:ad:df:19:ab:4b:4d:3a:
1d:89:d2:76:18:a8:60:06:8a:d8:97:33:ab:2b:95:53:ce:2a:
41:7a:95:13:76:b2:22:dd:24:df:1c:b5:c7:47:1c:7d:4e:d4:
75:33:42:bb:84:65:47:ce:86:d4:47:ad:24:af:b7:82:06:b7:
cd:04:4c:7d:aa:83:9d:37:02:cd:81:85:cd:32:b0:ca:3a:ad:
6a:90:e6:2c:65:c6:f0:92:e1:fe:0d:6f:5c:77:d0:87:52:98:
09:01:05:61:a7:de:f8:8f:1a:6e:4a:20:8c:ac:ee:71:20:5b:
09:db:15:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:42:17 2025 by rpki-client