Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/OsYeDgzEDGuVAQ3qPC_kUUanlp0.roa
File: OsYeDgzEDGuVAQ3qPC_kUUanlp0.roa (raw, json)
Hash identifier: BiUwuYZNXFDM9kioxTUDAfJP5cHXvmtCoBhLEdseKKA=
Subject key identifier: 3A:C6:1E:0E:0C:C4:0C:6B:95:01:0D:EA:3C:2F:E4:51:46:A7:96:9D
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 2161
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/OsYeDgzEDGuVAQ3qPC_kUUanlp0.roa
Signing time: Mon 26 Aug 2024 05:32:57 +0000
ROA not before: Mon 26 Aug 2024 05:32:57 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24164
IP address blocks: 114.198.176.0/20 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:18:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8545 (0x2161)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Aug 26 05:32:57 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=3AC61E0E0CC40C6B95010DEA3C2FE45146A7969D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c1:e3:76:bd:c0:1a:4f:01:da:41:71:dd:af:
16:f7:26:74:c7:64:ff:7b:8d:82:36:3f:51:01:2d:
ce:23:90:82:04:ea:7c:17:b0:b6:39:a5:7f:32:58:
98:22:68:7f:df:02:64:10:77:78:71:c8:08:dc:f3:
7c:c3:f7:a7:61:dd:be:34:16:f4:2b:09:7f:39:6c:
27:8b:c5:10:9a:05:7e:a8:87:a3:2d:16:30:d3:93:
2f:e2:50:e9:53:25:cd:35:a2:52:c2:a4:63:cb:25:
bf:f1:3b:f6:13:a4:8d:f2:1a:8b:31:27:82:e2:61:
92:58:7b:cd:a7:98:27:cd:95:d8:c0:34:22:16:aa:
1b:6b:96:2d:94:22:c5:72:2e:68:d8:09:d0:65:de:
bf:53:ba:0d:00:35:9b:1a:1d:3d:d5:66:bf:e1:39:
05:2a:ea:87:f3:0e:7a:02:5d:2f:a2:fb:35:58:b1:
35:64:fc:be:32:17:3d:62:8a:8e:99:d1:52:84:6b:
f3:e4:d6:fd:13:74:73:06:cf:42:72:89:51:a2:3e:
98:a5:2a:f2:d5:df:df:a5:cf:00:87:65:7a:20:6f:
26:78:b5:c7:40:af:84:5a:15:74:2b:a1:4e:4d:59:
fe:0a:10:27:0e:90:e0:26:aa:f5:a3:fa:ff:4b:f7:
fd:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:C6:1E:0E:0C:C4:0C:6B:95:01:0D:EA:3C:2F:E4:51:46:A7:96:9D
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/OsYeDgzEDGuVAQ3qPC_kUUanlp0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.198.176.0/20
Signature Algorithm: sha256WithRSAEncryption
2f:d0:9c:cc:68:fe:b4:5d:56:12:eb:77:56:76:f1:81:4e:ca:
e3:47:c1:db:61:68:04:1a:f8:d1:5b:a6:4a:49:35:b1:d7:65:
ed:76:be:a2:41:1f:00:2a:ed:c0:47:44:f9:b2:da:5f:71:0c:
1b:6a:98:80:87:0a:cb:76:9d:65:99:47:15:20:cb:bc:f5:46:
65:e7:e1:96:ea:39:5d:b3:f7:fe:38:8c:cf:49:35:e3:6d:66:
68:2c:a8:6f:fe:ac:83:7a:e3:61:af:f4:cb:d8:f2:1f:80:1e:
54:ca:c1:b1:e9:22:f5:21:c1:2b:ac:89:30:af:74:88:48:81:
d1:31:e0:6c:0e:ec:d7:f7:a0:4f:dd:50:25:43:46:d5:6f:4a:
27:54:b7:09:50:46:de:a3:60:f7:71:cd:64:79:b4:5a:f8:16:
87:8e:e4:7c:27:09:97:f7:cd:e5:8c:03:8e:52:74:4c:07:32:
15:57:07:73:e9:aa:f4:c1:4f:66:9e:b6:bf:fb:b5:0d:db:36:
fd:43:5e:3f:67:39:af:9e:e3:f6:04:0e:48:be:3b:54:d9:9e:
0f:d0:fa:a8:b8:c6:e5:c0:85:10:65:dd:b8:56:20:76:54:55:
ce:36:bc:9e:3a:e6:7a:ee:92:ed:67:67:da:ed:19:cd:f8:6b:
7a:cb:ef:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:01:58 2025 by rpki-client