Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/MbPH3cBCj52oDnHRTuYdKl7S6rc.roa
File: MbPH3cBCj52oDnHRTuYdKl7S6rc.roa (raw, json)
Hash identifier: mv7YSslfHtajaBOW7ycePnPfweCQjuiOXSWq+wEYaeA=
Subject key identifier: 31:B3:C7:DD:C0:42:8F:9D:A8:0E:71:D1:4E:E6:1D:2A:5E:D2:EA:B7
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 22A5
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/MbPH3cBCj52oDnHRTuYdKl7S6rc.roa
Signing time: Mon 26 Aug 2024 05:34:13 +0000
ROA not before: Mon 26 Aug 2024 05:34:13 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24164
IP address blocks: 180.218.144.0/21 maxlen: 22
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:18:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8869 (0x22a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Aug 26 05:34:13 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=31B3C7DDC0428F9DA80E71D14EE61D2A5ED2EAB7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:9a:97:40:70:0e:7f:2f:d7:58:c7:5f:85:37:
09:fd:3f:21:40:7b:8c:9e:0b:f1:57:8b:b1:fa:41:
9a:5f:aa:b3:ec:02:bc:f1:5f:45:91:c1:1d:22:f7:
00:fb:93:4c:15:d0:c0:f9:60:dd:45:45:11:23:bc:
15:16:94:28:75:5a:6c:9c:46:79:f1:59:29:64:e3:
18:c3:c9:4d:bc:81:83:31:ac:71:78:6b:5e:03:a5:
c9:ac:90:fa:10:17:8d:29:8e:34:40:84:d9:95:a4:
0d:2a:8d:75:db:77:f2:e8:8b:e7:35:97:08:a5:91:
ae:09:cc:28:9f:6a:49:ca:1b:d0:a0:69:64:f6:5e:
c1:a8:68:dc:a8:fa:cf:d9:11:f7:f0:86:5b:e7:bc:
c4:12:f1:7e:59:1a:ef:fa:e1:df:76:58:67:e5:37:
f8:89:de:a8:42:59:bd:1c:a1:cc:b0:f4:d6:3f:27:
4e:b1:e0:d6:3c:8f:1b:05:5e:55:a4:cb:01:4b:c4:
20:20:2f:56:1c:f5:b6:33:b8:9a:a4:ad:b9:bc:ad:
62:52:51:88:16:61:12:6a:4a:70:1f:be:22:67:8b:
82:d1:ba:c7:53:aa:ca:1f:00:07:85:a0:e9:59:52:
21:a7:24:ad:6a:ba:49:38:e8:1b:41:44:c1:18:ce:
d2:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:B3:C7:DD:C0:42:8F:9D:A8:0E:71:D1:4E:E6:1D:2A:5E:D2:EA:B7
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/MbPH3cBCj52oDnHRTuYdKl7S6rc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.144.0/21
Signature Algorithm: sha256WithRSAEncryption
08:63:8a:98:f4:ff:68:73:90:5e:37:73:be:05:e9:9d:bc:e6:
30:7e:06:26:33:6a:dc:f6:fe:b7:c2:3a:d0:eb:f9:79:a4:38:
a2:5c:ba:3c:e5:7c:80:5b:50:45:dd:c0:34:08:ff:95:a2:6f:
c7:93:59:bd:8d:a3:d9:75:a4:cf:0f:e0:3f:5d:45:a7:13:90:
0c:c2:9d:03:67:bc:60:26:4a:f7:9e:15:1f:6c:97:95:63:0a:
5b:e2:ab:f9:0a:ed:f7:6c:a5:6b:df:e0:7f:02:7b:9f:35:d2:
7f:9c:15:a4:d4:34:f4:20:52:0f:8a:4c:5b:73:a5:23:d4:e9:
41:f9:da:1e:30:43:37:5b:e6:58:5c:7f:33:da:16:26:93:00:
97:3c:9f:a2:86:62:5e:db:4f:ed:ac:40:f7:70:25:72:77:fa:
4f:cc:59:d3:b0:5d:09:63:46:e2:01:c9:47:27:6a:c3:10:d6:
ba:65:3b:17:30:71:e7:6b:e6:c5:be:93:ab:7b:02:60:39:67:
01:75:a0:2e:5d:cc:29:02:af:68:f0:b3:e8:88:54:fc:0c:c6:
3b:72:61:1a:91:71:9c:46:c4:06:a8:76:42:3c:68:5c:1c:ec:
05:b2:d4:fd:4e:31:90:af:f1:40:a4:7b:0e:3a:aa:21:b4:7f:
30:d8:72:be
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICIqUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw
NTM0MTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDMxQjNDN0REQzA0MjhG
OURBODBFNzFEMTRFRTYxRDJBNUVEMkVBQjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCimpdAcA5/L9dYx1+FNwn9PyFAe4yeC/FXi7H6QZpfqrPsArzx
X0WRwR0i9wD7k0wV0MD5YN1FRREjvBUWlCh1WmycRnnxWSlk4xjDyU28gYMxrHF4
a14DpcmskPoQF40pjjRAhNmVpA0qjXXbd/Loi+c1lwilka4JzCifaknKG9CgaWT2
XsGoaNyo+s/ZEffwhlvnvMQS8X5ZGu/64d92WGflN/iJ3qhCWb0cocyw9NY/J06x
4NY8jxsFXlWkywFLxCAgL1Yc9bYzuJqkrbm8rWJSUYgWYRJqSnAfviJni4LRusdT
qsofAAeFoOlZUiGnJK1qukk46BtBRMEYztJNAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUMbPH3cBCj52oDnHRTuYdKl7S6rcwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL01iUEgzY0JDajUyb0RuSFJU
dVlkS2w3UzZyYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0
2pAwDQYJKoZIhvcNAQELBQADggEBAAhjipj0/2hzkF43c74F6Z285jB+BiYzatz2
/rfCOtDr+XmkOKJcujzlfIBbUEXdwDQI/5Wib8eTWb2No9l1pM8P4D9dRacTkAzC
nQNnvGAmSveeFR9sl5VjClviq/kK7fdspWvf4H8Ce5810n+cFaTUNPQgUg+KTFtz
pSPU6UH52h4wQzdb5lhcfzPaFiaTAJc8n6KGYl7bT+2sQPdwJXJ3+k/MWdOwXQlj
RuIByUcnasMQ1rplOxcwcedr5sW+k6t7AmA5ZwF1oC5dzCkCr2jws+iIVPwMxjty
YRqRcZxGxAaodkI8aFwc7AWy1P1OMZCv8UCkew46qiG0fzDYcr4=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:56:14 2025 by rpki-client