Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/BDtltFPCPtemxA9Jeh9amoK0uSg.roa
File: BDtltFPCPtemxA9Jeh9amoK0uSg.roa (raw, json)
Hash identifier: CyJaZwAlQB6sI/QBeyvbYqzjsWGp/h5z2zQ8Izc3Qbc=
Subject key identifier: 04:3B:65:B4:53:C2:3E:D7:A6:C4:0F:49:7A:1F:5A:9A:82:B4:B9:28
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1981
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/BDtltFPCPtemxA9Jeh9amoK0uSg.roa
Signing time: Sat 22 Oct 2022 06:06:36 +0000
ROA not before: Sat 22 Oct 2022 06:06:36 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 180.218.64.0/20 maxlen: 20
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6529 (0x1981)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 06:06:36 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=043B65B453C23ED7A6C40F497A1F5A9A82B4B928
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:c1:e4:6c:6a:b5:dc:ed:fc:b1:a5:32:f4:ee:
67:38:3e:24:59:50:b0:06:a8:8c:40:1b:c3:79:48:
8e:0b:10:fe:bb:80:43:c5:64:60:fe:25:f7:b8:de:
09:f3:29:2a:28:68:5f:2c:2a:47:63:f0:c1:ce:d3:
15:a4:97:c8:14:79:d0:d5:60:a2:cb:61:50:69:78:
37:af:e0:49:44:a5:1e:b0:77:f2:5d:cc:1d:9d:be:
4b:f0:38:43:0c:19:73:9b:84:df:ca:c8:ba:fb:eb:
f8:56:55:28:e6:80:8c:ac:73:71:31:7c:2f:9d:51:
14:dd:9c:6f:27:de:93:9d:e5:df:34:e3:54:c8:9f:
44:50:1f:fc:64:1d:38:42:b6:4f:08:98:ab:4c:a8:
ad:ad:c6:91:83:e4:de:5a:10:ef:c7:c2:23:f5:be:
41:e0:ff:82:39:d3:d8:49:01:69:87:95:f9:cd:04:
64:3c:3c:53:25:94:f8:ce:3a:7c:97:a4:c9:99:83:
43:b0:b5:43:b7:e2:f3:fa:75:3c:d1:f2:dd:30:ce:
38:ab:de:c9:68:fc:4f:66:c1:26:f3:3d:5f:6e:ff:
d0:08:1a:93:7e:e5:35:bc:6a:3c:3d:07:ae:8f:f0:
f3:5b:a3:2e:f4:c3:e5:48:30:54:9b:a4:5c:17:12:
84:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:3B:65:B4:53:C2:3E:D7:A6:C4:0F:49:7A:1F:5A:9A:82:B4:B9:28
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/BDtltFPCPtemxA9Jeh9amoK0uSg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.64.0/20
Signature Algorithm: sha256WithRSAEncryption
70:bc:06:0a:c6:06:80:2e:5f:bc:a0:86:52:bc:7e:06:96:b7:
08:d5:0b:c8:d1:46:4c:b0:aa:ef:3d:fa:fe:d6:d3:58:fb:6c:
c8:4b:34:48:00:03:10:12:42:1f:de:be:22:df:f5:0e:0e:06:
c2:ca:2c:c3:26:b5:28:c0:e6:04:f5:e8:9c:a2:e8:96:29:34:
ce:96:ab:a9:b7:74:97:e6:9f:81:21:a5:e2:ca:2b:c9:8c:ac:
24:de:b2:6a:e8:b2:5f:34:7d:fb:73:55:58:b4:a9:fd:bf:72:
31:f6:a3:53:5c:9b:1b:80:4d:98:ec:c7:8b:6a:9e:f7:ee:79:
43:02:99:92:9f:5a:52:f0:49:95:9f:f8:2e:83:b6:e7:66:f6:
bc:40:b7:c4:e8:45:08:c4:5b:b8:43:2c:a0:c5:ca:90:02:ed:
88:60:4f:ad:00:23:0f:b9:0a:a2:f9:2b:4b:21:fa:55:68:cf:
5e:33:56:f1:44:c3:d8:71:80:08:da:c4:ad:10:93:cf:9b:b0:
76:57:89:a3:e5:46:aa:45:d8:b3:c6:9f:b1:95:7c:6d:e4:c5:
99:1a:14:b1:71:c9:f4:10:f8:81:ad:4e:e2:34:74:2d:34:ba:
7a:f8:5a:4b:8b:c9:1f:54:00:0b:47:fe:02:cb:34:0c:dc:87:
96:ca:c5:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:47:13 2023 by rpki-client on console-fra.rpki-client.org