Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Y6zXF-jxeU9bFVRjnJll65BnOnA.roa
File: Y6zXF-jxeU9bFVRjnJll65BnOnA.roa (raw, json)
Hash identifier: lmbhiCLzKajkA7vmQyFjevoTF7l3xU//6MuhYp53Ofo=
Subject key identifier: 63:AC:D7:17:E8:F1:79:4F:5B:15:54:63:9C:99:65:EB:90:67:3A:70
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Y6zXF-jxeU9bFVRjnJll65BnOnA.roa
Signing time: Thu 15 Sep 2022 02:35:33 +0000
ROA not before: Thu 15 Sep 2022 02:35:33 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 114.198.184.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5374 (0x14fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Sep 15 02:35:33 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=63ACD717E8F1794F5B1554639C9965EB90673A70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:e6:e2:cc:5c:b0:30:1f:49:38:86:22:32:cc:
a4:e3:e8:e7:11:c5:fa:4f:71:e7:3f:dc:c6:2f:9e:
a6:a2:93:d8:38:9c:ec:5a:13:72:11:b0:31:49:0b:
55:5f:87:4f:2d:7a:98:ce:57:04:03:2d:fd:55:dd:
cb:f5:bf:8a:cd:33:ec:92:c0:de:50:40:60:d8:64:
58:6d:d2:1b:2c:11:fe:e9:46:1a:b3:07:0d:6b:aa:
dc:7e:61:d4:6b:11:ec:8d:8d:d1:92:f9:aa:c7:de:
8f:21:da:8f:f2:27:38:0d:fc:5e:6b:98:b9:8a:07:
4f:25:fe:80:3b:01:d7:71:b6:a2:8a:69:9d:e3:f8:
e4:9a:01:46:19:3b:85:57:c3:8e:12:14:0b:af:41:
78:cf:f1:21:76:05:97:79:09:9b:b9:8c:31:90:81:
77:a5:98:c0:8f:3a:21:26:44:92:49:74:fd:12:fd:
c9:5e:b1:ff:07:f5:63:63:8a:7c:e8:52:94:e0:b9:
75:5a:9e:50:81:df:e1:17:2e:a1:09:04:42:db:dc:
cd:09:73:10:55:cc:46:93:f3:3b:f0:4b:20:01:e6:
be:9f:24:bd:23:33:a0:42:24:f1:fe:59:27:17:ed:
2a:b4:48:b4:fa:b9:1c:51:24:4a:a5:bd:80:c3:e5:
51:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:AC:D7:17:E8:F1:79:4F:5B:15:54:63:9C:99:65:EB:90:67:3A:70
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Y6zXF-jxeU9bFVRjnJll65BnOnA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
114.198.184.0/22
Signature Algorithm: sha256WithRSAEncryption
16:d9:d3:e1:9a:9f:45:a9:b7:7e:f7:9e:e5:25:2e:32:29:8a:
67:00:b5:d4:80:17:c6:af:b4:f9:ea:f1:65:5c:7d:1c:1f:10:
c2:ce:f0:a2:84:eb:71:89:1b:9d:a6:7a:a0:d1:7f:27:7a:cf:
ad:28:01:dc:e9:b8:3a:80:9d:6d:23:36:e0:bb:46:a2:37:3f:
b1:7f:c1:a5:e8:6f:5c:e1:da:4c:fa:8d:9f:5e:4b:d6:9d:b6:
f1:c3:fb:0b:c7:77:7e:62:c9:b3:c0:a7:36:2a:32:8c:a8:57:
6b:6b:f0:4f:3f:17:ed:e7:9d:a8:51:54:13:2c:54:7f:f6:7b:
14:39:ff:3a:3c:d7:a3:77:fd:bd:3c:95:7f:27:cb:20:29:80:
d3:d3:c9:31:b1:68:8b:75:c4:ab:c2:62:66:11:e7:98:d6:a4:
3d:44:86:e8:90:28:b3:41:0d:59:51:4a:23:c1:9b:d6:09:cf:
57:ea:c2:29:bf:ca:61:f3:52:3d:83:8d:57:b4:87:aa:bb:cf:
8c:6b:ce:33:94:1f:2c:82:96:67:10:93:26:2f:1a:7a:7e:66:
15:3f:e1:be:00:f0:52:27:97:9d:c3:5f:eb:fa:9b:97:6a:9a:
88:43:cd:eb:8b:19:6d:44:b7:b6:43:49:fd:b0:4c:8a:67:30:
ce:89:ab:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:49 2023 by rpki-client on console-fra.rpki-client.org