Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/NYcM_qaMLAZD5xuL1CJk4IUiVlk.roa
File: NYcM_qaMLAZD5xuL1CJk4IUiVlk.roa (raw, json)
Hash identifier: UxcySvAbNT16G45zGInYkGEtC/O20z0YXAWSXvHwsDY=
Subject key identifier: 35:87:0C:FE:A6:8C:2C:06:43:E7:1B:8B:D4:22:64:E0:85:22:56:59
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 21F8
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/NYcM_qaMLAZD5xuL1CJk4IUiVlk.roa
Signing time: Mon 26 Aug 2024 05:33:31 +0000
ROA not before: Mon 26 Aug 2024 05:33:31 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24164
IP address blocks: 180.218.128.0/17 maxlen: 17
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:17:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8696 (0x21f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Aug 26 05:33:31 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=35870CFEA68C2C0643E71B8BD42264E085225659
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:af:ae:3d:3b:c7:6b:16:30:c6:ba:ad:ba:14:
9d:7b:37:33:b6:17:16:82:38:42:96:56:59:0d:c2:
c5:24:72:38:d4:50:0c:50:5a:8f:16:7f:09:30:eb:
4d:12:6d:8b:6d:ec:3a:8b:3b:70:83:a9:cc:e3:b8:
0d:43:3f:8b:29:91:76:90:4a:7a:14:3a:78:4f:9e:
9a:2c:58:ca:1a:b2:2f:4e:6f:88:49:10:cc:32:3b:
3e:7b:02:c7:5d:b3:2c:16:aa:05:e2:42:f7:cb:1a:
7c:38:ba:14:2f:37:1c:77:59:5b:94:ed:00:52:e0:
80:dd:a5:f6:ea:26:99:b6:82:90:b1:35:18:7f:29:
8e:23:a4:0b:55:6d:35:b3:08:fd:5f:52:34:ed:71:
f3:d5:14:64:b9:34:10:3a:cc:74:10:7f:91:7a:2a:
6a:98:45:05:51:20:b9:d8:e3:62:7d:aa:bc:f0:43:
41:b5:b2:80:a9:79:54:88:5f:46:a4:5c:a1:7d:89:
98:dc:86:ff:fa:48:74:8d:14:54:6a:88:33:d1:2d:
0d:b9:fc:f6:0e:12:be:ef:74:0d:1e:95:be:3c:98:
d4:0b:c4:00:6d:c3:be:a5:0e:8b:56:9d:66:db:c2:
2e:35:66:ad:5f:50:f0:e5:aa:2d:ea:0e:22:c2:52:
90:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:87:0C:FE:A6:8C:2C:06:43:E7:1B:8B:D4:22:64:E0:85:22:56:59
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/NYcM_qaMLAZD5xuL1CJk4IUiVlk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.128.0/17
Signature Algorithm: sha256WithRSAEncryption
60:ca:e8:79:4d:9e:ae:b6:c8:8e:37:e7:08:42:8c:70:5c:38:
b9:c6:c5:9c:6e:50:b2:06:e6:6d:3f:61:51:72:b4:8e:cc:16:
2b:e6:ca:02:e0:14:73:9c:8b:51:06:5f:40:da:30:f9:25:c9:
80:fb:14:31:47:d4:12:b1:a9:44:1c:cb:00:9f:67:a0:cb:76:
14:b7:74:13:d8:06:e1:fc:54:1a:9b:f6:c2:a9:d1:21:4d:af:
43:15:f3:98:49:b8:95:c4:90:aa:f8:e9:50:a0:37:5e:c0:16:
25:7e:af:ec:12:4b:b3:62:56:1f:2e:0f:4c:0e:69:30:e7:01:
36:61:d4:aa:05:7d:d3:47:4f:8e:b8:08:03:65:4e:d6:3a:e0:
47:ec:85:f8:09:1c:2f:6e:f5:63:8b:c9:fa:6b:2e:88:ab:5f:
3e:99:59:d5:41:bd:29:b1:07:c6:be:7f:d6:99:f2:ea:df:35:
63:1a:c2:e1:4c:93:1b:5d:ba:b5:af:8f:07:07:83:ee:04:6e:
f9:85:a7:bf:25:d4:b8:50:44:8a:e5:b3:31:db:23:08:55:75:
03:13:21:cd:42:a6:22:40:30:07:fc:bd:ce:ea:95:88:72:72:
8e:ac:7a:e8:cf:0b:91:38:5c:1a:c4:22:2d:31:31:37:46:a5:
c9:83:8d:8c
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICIfgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw
NTMzMzFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDM1ODcwQ0ZFQTY4QzJD
MDY0M0U3MUI4QkQ0MjI2NEUwODUyMjU2NTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDTr649O8drFjDGuq26FJ17NzO2FxaCOEKWVlkNwsUkcjjUUAxQ
Wo8Wfwkw600SbYtt7DqLO3CDqczjuA1DP4spkXaQSnoUOnhPnposWMoasi9Ob4hJ
EMwyOz57AsddsywWqgXiQvfLGnw4uhQvNxx3WVuU7QBS4IDdpfbqJpm2gpCxNRh/
KY4jpAtVbTWzCP1fUjTtcfPVFGS5NBA6zHQQf5F6KmqYRQVRILnY42J9qrzwQ0G1
soCpeVSIX0akXKF9iZjchv/6SHSNFFRqiDPRLQ25/PYOEr7vdA0elb48mNQLxABt
w76lDotWnWbbwi41Zq1fUPDlqi3qDiLCUpATAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUNYcM/qaMLAZD5xuL1CJk4IUiVlkwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL05ZY01fcWFNTEFaRDV4dUwx
Q0prNElVaVZsay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAe0
2oAwDQYJKoZIhvcNAQELBQADggEBAGDK6HlNnq62yI435whCjHBcOLnGxZxuULIG
5m0/YVFytI7MFivmygLgFHOci1EGX0DaMPklyYD7FDFH1BKxqUQcywCfZ6DLdhS3
dBPYBuH8VBqb9sKp0SFNr0MV85hJuJXEkKr46VCgN17AFiV+r+wSS7NiVh8uD0wO
aTDnATZh1KoFfdNHT464CANlTtY64EfshfgJHC9u9WOLyfprLoirXz6ZWdVBvSmx
B8a+f9aZ8urfNWMawuFMkxtdurWvjwcHg+4EbvmFp78l1LhQRIrlszHbIwhVdQMT
Ic1CpiJAMAf8vc7qlYhyco6seujPC5E4XBrEIi0xMTdGpcmDjYw=
-----END CERTIFICATE-----
Generated at Sun Feb 16 21:02:44 2025 by rpki-client