Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/UkaLsyzahtZGlIOQ0bTX_iHJrjc.roa
File: UkaLsyzahtZGlIOQ0bTX_iHJrjc.roa (raw, json)
Hash identifier: 2WiGBVc+JHBaaBueHdTaJ/OEFufHOriTi+8ZppzpBD8=
Subject key identifier: 52:46:8B:B3:2C:DA:86:D6:46:94:83:90:D1:B4:D7:FE:21:C9:AE:37
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 21A2
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/UkaLsyzahtZGlIOQ0bTX_iHJrjc.roa
Signing time: Mon 26 Aug 2024 05:33:11 +0000
ROA not before: Mon 26 Aug 2024 05:33:11 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24164
IP address blocks: 49.158.208.0/21 maxlen: 22
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:18:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8610 (0x21a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Aug 26 05:33:11 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=52468BB32CDA86D646948390D1B4D7FE21C9AE37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:df:3e:0d:ed:25:5c:a0:01:71:6d:1c:bc:bc:
6c:a1:b8:48:fc:22:98:81:c2:3f:76:92:4d:e5:2c:
ac:00:28:50:fe:e7:25:c7:7f:49:ca:9c:2f:05:36:
6f:7a:ae:af:eb:2b:99:62:a8:2a:22:53:e3:62:0a:
58:3c:07:8e:61:92:8f:db:a2:80:35:4a:19:d1:2b:
f1:7d:23:9e:89:8d:2f:32:b1:a9:8b:fa:c1:f6:78:
e1:28:0c:4b:ab:54:f7:8d:f2:f9:85:61:0a:35:37:
02:a4:66:db:29:c8:fc:cb:d4:5f:c2:12:fb:b8:a8:
69:6a:52:34:1a:78:15:62:9e:9b:8f:30:24:fa:60:
c3:2d:1f:e2:1a:b9:20:cf:e4:7a:22:11:09:c6:05:
5f:ba:fc:ea:40:e9:57:4a:87:53:ad:8a:7f:7a:32:
61:85:39:bb:ca:87:d7:b9:71:cf:cf:b9:5b:3c:fc:
41:ff:10:db:b2:56:31:16:b2:85:84:e3:2c:bc:88:
c7:e3:e0:8d:82:37:0c:81:1c:bb:0b:47:ba:86:80:
ae:6c:cc:94:cd:13:f2:dc:10:2c:18:69:1b:b0:81:
f3:81:ef:a5:20:fb:87:46:b7:d7:44:ec:b0:55:1b:
32:69:f9:89:c9:66:ab:af:7c:36:94:1b:2f:f6:df:
a0:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:46:8B:B3:2C:DA:86:D6:46:94:83:90:D1:B4:D7:FE:21:C9:AE:37
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/UkaLsyzahtZGlIOQ0bTX_iHJrjc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.208.0/21
Signature Algorithm: sha256WithRSAEncryption
97:d0:f3:6b:33:72:90:44:8a:59:73:95:d5:5d:5d:c8:bf:6e:
5d:9b:8a:cf:f5:74:11:c1:d9:d4:4c:90:96:67:7c:05:62:d9:
cc:90:d9:93:52:06:e5:62:48:4b:85:c0:26:e9:ef:3f:f1:b9:
c2:de:4f:e2:ea:9a:69:70:43:5c:03:cc:82:8a:ec:44:ae:fe:
85:85:be:ea:0a:fb:69:95:f2:db:ed:83:b4:fa:fb:64:3d:fb:
fe:bc:8b:4f:01:d0:16:24:56:e3:0c:00:71:22:01:ad:af:d5:
ea:8f:b7:9c:60:51:6d:68:01:20:19:be:fd:09:e3:9d:8e:c9:
89:25:c0:86:7f:86:c0:ad:ce:fb:e7:87:f6:07:79:27:11:8f:
a3:f0:3a:b4:27:8b:e4:51:d3:6d:f1:06:54:7e:3b:58:d4:ab:
9b:c3:ea:73:b6:81:79:3c:22:c1:12:d1:39:7b:35:21:1b:af:
e9:b2:b3:23:ac:0c:38:96:dd:0e:c7:7d:0f:8e:26:62:73:53:
a6:40:5d:85:5a:9c:44:ff:d5:d7:8e:88:d9:82:28:98:50:13:
49:6b:0b:83:c8:31:db:1d:fe:7a:f2:9a:a1:68:f4:5f:2d:17:
3f:13:ca:b3:20:1f:51:1d:f5:fe:84:99:fd:88:99:da:53:5a:
2a:05:a2:eb
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICIaIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw
NTMzMTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDUyNDY4QkIzMkNEQTg2
RDY0Njk0ODM5MEQxQjREN0ZFMjFDOUFFMzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC73z4N7SVcoAFxbRy8vGyhuEj8IpiBwj92kk3lLKwAKFD+5yXH
f0nKnC8FNm96rq/rK5liqCoiU+NiClg8B45hko/booA1ShnRK/F9I56JjS8ysamL
+sH2eOEoDEurVPeN8vmFYQo1NwKkZtspyPzL1F/CEvu4qGlqUjQaeBVinpuPMCT6
YMMtH+IauSDP5HoiEQnGBV+6/OpA6VdKh1Otin96MmGFObvKh9e5cc/PuVs8/EH/
ENuyVjEWsoWE4yy8iMfj4I2CNwyBHLsLR7qGgK5szJTNE/LcECwYaRuwgfOB76Ug
+4dGt9dE7LBVGzJp+YnJZquvfDaUGy/236BtAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUUkaLsyzahtZGlIOQ0bTX/iHJrjcwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1VrYUxzeXphaHRaR2xJT1Ew
YlRYX2lISnJqYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx
ntAwDQYJKoZIhvcNAQELBQADggEBAJfQ82szcpBEillzldVdXci/bl2bis/1dBHB
2dRMkJZnfAVi2cyQ2ZNSBuViSEuFwCbp7z/xucLeT+LqmmlwQ1wDzIKK7ESu/oWF
vuoK+2mV8tvtg7T6+2Q9+/68i08B0BYkVuMMAHEiAa2v1eqPt5xgUW1oASAZvv0J
452OyYklwIZ/hsCtzvvnh/YHeScRj6PwOrQni+RR023xBlR+O1jUq5vD6nO2gXk8
IsES0Tl7NSEbr+mysyOsDDiW3Q7HfQ+OJmJzU6ZAXYVanET/1deOiNmCKJhQE0lr
C4PIMdsd/nrymqFo9F8tFz8TyrMgH1Ed9f6Emf2ImdpTWioFous=
-----END CERTIFICATE-----
Generated at Sun Feb 16 21:00:26 2025 by rpki-client