Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/O5NNe2JkXWmsbsSm_p5rH6sHrB0.roa
File: O5NNe2JkXWmsbsSm_p5rH6sHrB0.roa (raw, json)
Hash identifier: GfuCJO3LB0k3r+gMfUwJ4dmhaaa7KjeX3rhTEcXZG9g=
Subject key identifier: 3B:93:4D:7B:62:64:5D:69:AC:6E:C4:A6:FE:9E:6B:1F:AB:07:AC:1D
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 2297
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/O5NNe2JkXWmsbsSm_p5rH6sHrB0.roa
Signing time: Mon 26 Aug 2024 05:34:10 +0000
ROA not before: Mon 26 Aug 2024 05:34:10 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24165
IP address blocks: 103.225.0.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:18:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8855 (0x2297)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Aug 26 05:34:10 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=3B934D7B62645D69AC6EC4A6FE9E6B1FAB07AC1D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:c0:ae:f4:f6:2d:a6:ef:10:f7:d9:d0:a3:20:
d3:ef:68:1a:92:95:c8:75:12:f0:f8:f0:1f:7a:c9:
7c:b8:c3:33:d8:80:4a:39:4d:a7:a6:40:36:2a:79:
3b:6b:be:eb:4c:c2:76:d2:3d:73:40:0c:28:16:93:
fb:44:c7:09:93:b4:56:10:15:51:f7:fe:b4:f7:c6:
2f:74:ce:10:18:6b:bc:ed:4e:8d:ea:0b:00:41:c0:
17:53:da:01:d4:1c:94:27:c7:ac:6b:e4:fb:2c:5f:
4d:f5:d5:c6:ae:22:4c:8e:ee:67:bb:35:88:76:eb:
9c:99:03:bd:bd:43:f9:f0:f5:ac:a7:8d:52:ca:38:
b0:c7:29:fc:13:7f:db:7d:22:26:53:6f:b0:24:de:
90:ca:ab:67:b9:79:d9:f8:4d:49:5f:6f:b5:f6:12:
3a:91:d9:4e:f0:24:89:95:e4:5e:b3:a2:76:2c:6e:
f9:23:69:14:83:1c:2f:9c:13:aa:94:a9:ac:43:95:
4e:6f:9e:47:b1:31:89:e6:80:87:b1:fc:45:03:9f:
9e:b8:0e:a3:6d:da:5c:99:b1:ed:19:fd:1b:35:54:
e4:c9:67:22:cc:27:d4:97:d7:c7:bb:27:1e:8a:29:
1e:ab:c9:51:cf:8a:89:86:93:47:3a:2d:d8:44:b1:
11:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:93:4D:7B:62:64:5D:69:AC:6E:C4:A6:FE:9E:6B:1F:AB:07:AC:1D
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/O5NNe2JkXWmsbsSm_p5rH6sHrB0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.225.0.0/22
Signature Algorithm: sha256WithRSAEncryption
8a:da:0b:5e:11:1a:9f:a6:8b:91:1d:cc:c3:b2:1f:46:47:33:
fe:3f:a1:09:62:67:45:46:67:7e:6e:28:ec:0a:b9:c1:93:a3:
e5:64:af:9e:fe:b0:4d:e7:89:69:7e:53:5d:7b:eb:63:e4:dc:
92:70:2f:5c:cd:e4:d5:1f:ce:62:97:49:f6:2b:84:6e:dd:86:
64:50:69:0b:53:b3:e7:e1:97:65:6a:89:ed:cf:41:86:1d:fb:
ac:c3:a8:fb:74:f5:ac:2a:c2:eb:af:d1:6f:cb:a0:c0:9d:39:
7e:09:2b:c2:76:c5:e5:f6:de:c4:8c:81:ce:78:28:aa:6c:d6:
ad:af:2b:c2:b4:46:85:74:d5:e9:70:2b:14:9f:73:60:80:2a:
fb:0b:f7:89:b4:42:1f:12:69:06:5a:f3:ce:73:7c:2b:1f:e1:
53:01:22:7f:4a:96:ad:57:81:47:84:a5:3c:4b:cf:9b:2a:bc:
db:fc:16:9b:e0:50:0f:46:9b:ef:66:f3:9d:9a:2d:a5:d5:b4:
9f:d2:6c:22:7c:24:8e:b2:e6:e1:43:6c:cd:0b:d1:2c:d3:cb:
f2:8e:ed:18:07:49:3a:41:17:ab:6e:64:a3:fa:36:ea:fe:93:
75:11:18:77:53:9c:71:2a:05:67:f9:c2:e6:b8:3c:11:58:aa:
97:c1:8f:5f
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICIpcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw
NTM0MTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNCOTM0RDdCNjI2NDVE
NjlBQzZFQzRBNkZFOUU2QjFGQUIwN0FDMUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDEwK709i2m7xD32dCjINPvaBqSlch1EvD48B96yXy4wzPYgEo5
TaemQDYqeTtrvutMwnbSPXNADCgWk/tExwmTtFYQFVH3/rT3xi90zhAYa7ztTo3q
CwBBwBdT2gHUHJQnx6xr5PssX0311cauIkyO7me7NYh265yZA729Q/nw9aynjVLK
OLDHKfwTf9t9IiZTb7Ak3pDKq2e5edn4TUlfb7X2EjqR2U7wJImV5F6zonYsbvkj
aRSDHC+cE6qUqaxDlU5vnkexMYnmgIex/EUDn564DqNt2lyZse0Z/Rs1VOTJZyLM
J9SX18e7Jx6KKR6ryVHPiomGk0c6LdhEsRERAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUO5NNe2JkXWmsbsSm/p5rH6sHrB0wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL081Tk5lMkprWFdtc2JzU21f
cDVySDZzSHJCMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn
4QAwDQYJKoZIhvcNAQELBQADggEBAIraC14RGp+mi5EdzMOyH0ZHM/4/oQliZ0VG
Z35uKOwKucGTo+Vkr57+sE3niWl+U11762Pk3JJwL1zN5NUfzmKXSfYrhG7dhmRQ
aQtTs+fhl2Vqie3PQYYd+6zDqPt09awqwuuv0W/LoMCdOX4JK8J2xeX23sSMgc54
KKps1q2vK8K0RoV01elwKxSfc2CAKvsL94m0Qh8SaQZa885zfCsf4VMBIn9Klq1X
gUeEpTxLz5sqvNv8FpvgUA9Gm+9m852aLaXVtJ/SbCJ8JI6y5uFDbM0L0SzTy/KO
7RgHSTpBF6tuZKP6Nur+k3URGHdTnHEqBWf5wua4PBFYqpfBj18=
-----END CERTIFICATE-----
Generated at Sun Feb 16 21:02:02 2025 by rpki-client