Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/RgwcSSFhbft5unuUBlY-YuKIdt4.roa
File: RgwcSSFhbft5unuUBlY-YuKIdt4.roa (raw, json)
Hash identifier: 5KqliMM6s5MiTFOgiavzGpPHQawzsrkj+oLRcdt+QV0=
Subject key identifier: 46:0C:1C:49:21:61:6D:FB:79:BA:7B:94:06:56:3E:62:E2:88:76:DE
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 2176
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/RgwcSSFhbft5unuUBlY-YuKIdt4.roa
Signing time: Mon 26 Aug 2024 05:33:01 +0000
ROA not before: Mon 26 Aug 2024 05:33:01 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24164
IP address blocks: 49.158.16.0/21 maxlen: 21
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:18:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8566 (0x2176)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Aug 26 05:33:01 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=460C1C4921616DFB79BA7B9406563E62E28876DE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:41:f7:8a:86:61:d3:8e:79:fe:0d:99:ae:7e:
7f:12:f4:38:1c:fc:3f:7f:d4:cd:c9:36:00:99:88:
54:1b:5b:84:ca:c3:86:55:95:35:22:f0:ac:85:78:
3f:e7:29:ae:51:b1:76:02:1a:ff:23:0e:af:64:f5:
f3:5a:ef:89:0f:05:6b:39:6f:71:d9:2d:74:39:a9:
23:34:1c:29:12:09:fc:83:20:5e:30:f8:cb:62:07:
d5:46:db:85:41:2b:c5:14:0e:c5:1e:ed:1e:09:6d:
95:ef:05:11:cb:f3:e2:3f:74:1b:ca:b2:c9:ca:dd:
c8:34:e7:08:23:99:44:dc:45:b1:e8:2b:f9:e7:c3:
86:97:f3:62:52:cc:a8:37:05:af:a2:5c:01:62:98:
55:dd:03:ae:e8:fe:05:56:6d:90:b2:4e:e8:bc:14:
5a:9f:cf:37:2a:c6:ee:7f:d9:6b:cf:d6:fe:64:e6:
d8:33:c1:85:4c:ed:9e:27:a7:79:86:b7:a5:d7:ef:
dd:f8:5b:bf:7f:af:7b:1a:b6:bd:95:f2:98:f2:dd:
cc:3c:07:49:a3:11:1c:3d:1c:01:80:c2:11:3d:60:
d7:c7:3a:82:53:ae:77:26:f4:d3:a0:bf:06:27:f6:
3c:fb:87:19:c9:55:6a:15:5e:83:bf:c0:f5:06:30:
04:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:0C:1C:49:21:61:6D:FB:79:BA:7B:94:06:56:3E:62:E2:88:76:DE
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/RgwcSSFhbft5unuUBlY-YuKIdt4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.16.0/21
Signature Algorithm: sha256WithRSAEncryption
7f:37:e1:f5:6c:4d:4f:a4:68:d0:16:b6:a6:f4:e4:91:e7:fb:
ad:f6:45:8c:c8:a3:67:5e:b9:c4:dd:48:d1:e6:f3:a9:ef:ec:
f7:11:c4:4b:7e:8f:5d:3a:0f:3b:b0:0e:b0:45:13:73:c5:70:
61:a2:8a:31:d1:c6:2a:d2:10:53:c5:83:e0:f8:0b:9a:42:b4:
34:4d:23:e4:08:fe:e9:8e:d2:11:83:72:4b:97:52:61:de:d0:
30:ea:9b:a2:9b:fa:93:98:24:46:ca:1c:08:1d:32:ac:70:e2:
f3:4c:f3:46:d0:3d:62:fb:c4:74:51:ff:00:b2:cb:b9:1f:54:
8c:47:ac:1e:38:06:cb:b2:91:33:9d:da:ff:1c:a1:12:4f:e7:
de:c6:51:f5:00:b0:f1:56:de:73:fd:b6:d1:fd:d0:ed:ea:0d:
61:4e:d8:45:26:0a:75:21:53:d1:56:56:4b:41:9a:03:4f:94:
9d:8a:09:24:8e:a6:4d:5b:e1:d0:84:32:44:8e:2a:47:4b:e3:
bc:17:2c:1c:bf:80:13:bd:b9:84:ef:8d:17:ee:14:05:e7:44:
1f:de:1e:59:06:35:c6:02:d0:ef:bb:5f:cb:c4:5e:b6:df:e1:
b4:29:66:ef:46:63:c8:48:a1:c7:1d:75:63:fe:31:c7:23:e9:
e1:80:9e:1a
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICIXYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw
NTMzMDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ2MEMxQzQ5MjE2MTZE
RkI3OUJBN0I5NDA2NTYzRTYyRTI4ODc2REUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDcQfeKhmHTjnn+DZmufn8S9Dgc/D9/1M3JNgCZiFQbW4TKw4ZV
lTUi8KyFeD/nKa5RsXYCGv8jDq9k9fNa74kPBWs5b3HZLXQ5qSM0HCkSCfyDIF4w
+MtiB9VG24VBK8UUDsUe7R4JbZXvBRHL8+I/dBvKssnK3cg05wgjmUTcRbHoK/nn
w4aX82JSzKg3Ba+iXAFimFXdA67o/gVWbZCyTui8FFqfzzcqxu5/2WvP1v5k5tgz
wYVM7Z4np3mGt6XX7934W79/r3satr2V8pjy3cw8B0mjERw9HAGAwhE9YNfHOoJT
rncm9NOgvwYn9jz7hxnJVWoVXoO/wPUGMAQpAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQURgwcSSFhbft5unuUBlY+YuKIdt4wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1Jnd2NTU0ZoYmZ0NXVudVVC
bFktWXVLSWR0NC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx
nhAwDQYJKoZIhvcNAQELBQADggEBAH834fVsTU+kaNAWtqb05JHn+632RYzIo2de
ucTdSNHm86nv7PcRxEt+j106DzuwDrBFE3PFcGGiijHRxirSEFPFg+D4C5pCtDRN
I+QI/umO0hGDckuXUmHe0DDqm6Kb+pOYJEbKHAgdMqxw4vNM80bQPWL7xHRR/wCy
y7kfVIxHrB44BsuykTOd2v8coRJP597GUfUAsPFW3nP9ttH90O3qDWFO2EUmCnUh
U9FWVktBmgNPlJ2KCSSOpk1b4dCEMkSOKkdL47wXLBy/gBO9uYTvjRfuFAXnRB/e
HlkGNcYC0O+7X8vEXrbf4bQpZu9GY8hIoccddWP+Mccj6eGAnho=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:42:18 2025 by rpki-client