Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/IMQpPRPdicTskX6Km9NnV20HXBE.roa
File: IMQpPRPdicTskX6Km9NnV20HXBE.roa (raw, json)
Hash identifier: NW75GAtmIk3mkFa6hCKvQoMtXM9TKXMUTJaZ23K3B9k=
Subject key identifier: 20:C4:29:3D:13:DD:89:C4:EC:91:7E:8A:9B:D3:67:57:6D:07:5C:11
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 19AC
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/IMQpPRPdicTskX6Km9NnV20HXBE.roa
Signing time: Sat 22 Oct 2022 06:07:46 +0000
ROA not before: Sat 22 Oct 2022 06:07:46 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24163
IP address blocks: 49.159.192.0/20 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6572 (0x19ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 06:07:46 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=20C4293D13DD89C4EC917E8A9BD367576D075C11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:84:f5:27:a4:e0:44:95:4f:2c:6b:41:89:e0:
2d:f9:f4:5f:e1:da:71:8a:12:cf:a2:da:af:d1:95:
60:b6:48:51:39:f8:bf:a4:7a:0b:fb:3c:85:91:78:
31:22:b6:b8:5b:5b:04:bb:7a:71:4a:ce:20:5d:f7:
26:55:67:58:04:0e:55:f3:69:03:38:e0:12:87:4d:
27:e4:5a:bb:f1:d7:22:6d:d2:87:33:af:96:e4:22:
5c:a0:82:13:33:78:16:f8:b1:43:d9:db:57:50:74:
16:f4:7f:60:b4:cc:07:fb:ad:93:3b:30:c8:1a:bc:
1a:5a:1b:93:56:1a:54:e6:4f:ee:e8:ba:ed:03:9c:
1b:80:5b:8b:88:29:34:0a:da:c8:6f:f1:eb:c0:cb:
d6:bb:58:be:68:64:1f:dc:29:94:20:84:3b:38:dd:
66:c9:82:2e:cf:6e:26:2d:a7:03:71:55:0e:dd:9e:
ac:b9:c6:38:d2:83:2c:25:7a:54:07:f8:dd:0c:53:
db:91:c3:c9:e8:be:5d:43:fd:c9:57:83:35:84:2a:
42:40:b2:ff:9f:fd:d6:d2:f0:61:c9:6b:69:7f:b1:
72:99:5f:74:9f:e9:4c:6b:18:bb:1f:cb:7a:8d:8c:
89:a0:fa:33:5d:71:4d:b3:a0:46:07:d6:9e:99:77:
f2:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:C4:29:3D:13:DD:89:C4:EC:91:7E:8A:9B:D3:67:57:6D:07:5C:11
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/IMQpPRPdicTskX6Km9NnV20HXBE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.159.192.0/20
Signature Algorithm: sha256WithRSAEncryption
14:50:d2:72:d1:88:e4:50:28:0d:f1:d4:b0:5a:e5:c8:0c:4a:
57:16:67:63:59:25:2e:d3:d7:14:c2:79:41:b6:fa:3e:f3:43:
9d:04:6f:b6:ee:67:20:64:61:df:72:1d:0c:59:50:87:66:69:
6b:13:d1:ed:8a:9c:39:27:f9:b9:62:8c:b7:c0:ab:23:9b:48:
56:72:ac:ba:3b:f5:68:f4:a4:2f:63:55:85:46:49:a6:11:0d:
1b:54:34:78:a5:55:38:e1:b2:78:90:cb:a7:b6:d2:d6:bd:6f:
57:7c:92:97:65:c1:d6:22:ad:a1:0a:de:fa:d7:62:2b:02:f1:
27:72:92:89:44:c8:a4:69:42:95:e7:44:67:c7:36:a5:b3:98:
e9:a7:98:03:28:c9:e0:9f:79:e4:b0:17:c2:16:d2:07:db:62:
ff:f9:94:9c:5a:f3:49:7a:32:04:54:0f:de:59:49:08:94:0c:
8c:4e:af:5c:e6:20:92:d5:fd:ee:40:be:14:32:a7:dc:c4:2e:
85:65:75:bd:5d:b5:35:73:68:5b:2d:22:e5:0b:db:5c:69:f0:
c4:8a:b2:63:fe:7d:08:ac:a2:eb:7c:c7:7c:3b:70:df:75:43:
dd:08:55:a5:c4:16:d4:0f:c4:46:de:d7:ce:38:66:61:12:5e:
58:fc:9d:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:47:14 2023 by rpki-client on console-fra.rpki-client.org