Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/SNOWolXB2IU_QeRgy2gbQmgmRkQ.roa
File: SNOWolXB2IU_QeRgy2gbQmgmRkQ.roa (raw, json)
Hash identifier: NJGMZ8XIXZTkr8pAp61dFASZk5fvoUNXvwHzqsq3wNc=
Subject key identifier: 48:D3:96:A2:55:C1:D8:85:3F:41:E4:60:CB:68:1B:42:68:26:46:44
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 18FA
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/SNOWolXB2IU_QeRgy2gbQmgmRkQ.roa
Signing time: Sat 22 Oct 2022 06:05:57 +0000
ROA not before: Sat 22 Oct 2022 06:05:57 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 180.218.128.0/20 maxlen: 20
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6394 (0x18fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 06:05:57 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=48D396A255C1D8853F41E460CB681B4268264644
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:ec:83:9f:0e:86:9f:65:88:7d:1d:6d:cc:df:
d4:b5:e8:ea:e6:4b:46:94:13:81:1e:37:18:33:1d:
9e:76:19:9d:e1:f3:26:45:4d:f0:a7:7a:30:48:f4:
4c:bd:bf:c4:e0:74:41:34:62:7b:8d:7b:27:bb:3f:
01:32:6e:d1:dc:32:d1:66:e2:24:9a:90:22:1d:f2:
89:fd:04:63:6f:37:57:61:25:70:e1:95:40:6b:ca:
b2:02:fc:a1:96:14:48:1c:33:15:14:60:2f:7d:93:
24:63:ed:83:74:47:09:08:53:ae:65:b3:aa:68:76:
bc:98:84:d6:80:79:e5:09:c9:31:28:9d:4e:4c:1b:
ec:f8:28:0a:59:78:f2:66:f1:c8:72:87:09:70:4b:
e2:eb:20:a5:c2:ae:92:fa:11:c8:62:4b:fb:d5:d0:
ba:12:74:a2:f8:11:dc:bf:71:71:49:f0:b4:f9:55:
56:9d:aa:f9:8d:f7:14:e0:24:93:08:fc:34:26:60:
66:3b:fb:4a:12:bb:4b:eb:9f:58:57:8e:08:70:f6:
3e:58:e2:71:1c:41:8b:f0:cc:17:cb:7d:62:6e:21:
b9:47:8c:57:00:39:88:87:2e:37:b1:76:a3:ed:bc:
37:64:4a:5f:35:da:5b:ec:0b:3a:b1:38:38:73:f3:
bc:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:D3:96:A2:55:C1:D8:85:3F:41:E4:60:CB:68:1B:42:68:26:46:44
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/SNOWolXB2IU_QeRgy2gbQmgmRkQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.128.0/20
Signature Algorithm: sha256WithRSAEncryption
33:a3:00:52:8c:c2:39:d7:68:9f:b6:52:b7:a6:5b:35:0f:00:
60:b8:82:a5:25:bb:71:3c:b4:9e:29:41:e9:36:cb:a8:f3:66:
e4:75:7a:df:01:7b:c8:b5:49:b2:12:57:56:96:61:e2:67:16:
d3:51:f8:45:37:99:68:a5:ab:d7:0f:88:5a:21:07:ff:f8:7c:
cb:d1:95:6f:88:06:03:eb:51:3b:ef:9f:d5:81:68:2e:78:2b:
d6:87:a6:be:66:1c:64:7a:9d:e9:d4:ed:b8:f7:70:4e:36:b6:
23:fd:ad:0a:32:6d:91:9d:1d:60:dc:5c:6b:b5:77:77:28:21:
d6:11:be:b8:2f:76:79:76:9b:40:e5:eb:78:64:78:7c:c1:f2:
9a:0a:70:6b:ca:fd:11:ac:b2:d6:11:45:83:18:6a:e4:dc:91:
be:0f:4b:4f:49:26:15:bf:23:13:c2:69:9e:8d:6d:f3:6a:b6:
e4:be:e2:8a:8a:16:2d:b1:36:ea:74:c9:f7:91:ad:f9:cd:d7:
8e:e8:a9:57:96:20:b5:82:71:64:53:5e:9d:80:a5:af:44:b3:
97:ba:71:da:b9:18:7e:58:6d:f5:1e:f6:1a:e0:96:9b:7c:3d:
9b:bc:50:6d:6b:0d:31:84:de:ea:70:42:49:71:6c:4b:49:96:
93:c1:84:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:53:39 2023 by rpki-client on console-ams.rpki-client.org