Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/bYl2vrn1XBGwBxx-nfckWaUsvqk.roa
File: bYl2vrn1XBGwBxx-nfckWaUsvqk.roa (raw, json)
Hash identifier: pBptfkZnpQ+HhTryyWv7mXDFYgBUEMcF9F3uJrQLUmk=
Subject key identifier: 6D:89:76:BE:B9:F5:5C:11:B0:07:1C:7E:9D:F7:24:59:A5:2C:BE:A9
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 190D
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/bYl2vrn1XBGwBxx-nfckWaUsvqk.roa
Signing time: Sat 22 Oct 2022 06:06:03 +0000
ROA not before: Sat 22 Oct 2022 06:06:03 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 49.158.136.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6413 (0x190d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 06:06:03 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=6D8976BEB9F55C11B0071C7E9DF72459A52CBEA9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:2c:b8:43:5a:48:1c:bc:48:1d:9a:eb:9f:1f:
3c:83:1c:e6:91:1c:d8:e0:c0:32:46:57:88:de:88:
8c:bc:67:8e:82:f3:5c:ca:eb:0c:42:eb:6a:f8:c2:
e7:6c:2d:e7:bf:ec:2e:0a:26:62:24:09:65:d2:cd:
4f:b7:fd:bd:92:43:b4:ac:6a:6c:3c:80:99:ba:ec:
f6:8a:27:cb:7a:0d:3a:d1:07:96:82:95:4f:ac:a6:
5c:59:85:56:13:bf:76:e5:d6:11:6c:df:93:3d:2b:
f1:7f:19:e9:a0:f0:e4:c2:86:0c:aa:f8:5b:f9:24:
d3:86:80:35:d9:6d:57:5c:06:78:6e:be:9a:20:bd:
54:31:e1:c5:40:f2:15:7d:86:76:a0:a7:e7:6d:3e:
09:02:ee:e7:16:54:cf:ee:cf:02:43:d8:42:cb:82:
98:a8:b0:a8:af:2b:6f:b4:35:67:9f:d2:59:dd:bb:
55:5e:48:08:bc:6f:ad:03:23:6a:a6:39:72:d3:fe:
4d:7d:d8:63:f3:7f:75:f9:3a:8a:ee:57:71:7b:61:
db:4b:35:17:4b:bd:8e:1f:8c:06:da:00:a3:9c:eb:
0e:04:0a:67:77:bb:ec:d6:00:68:90:4f:81:ff:4e:
15:3f:11:c4:04:8e:b0:ce:5d:1b:7a:e9:be:dc:e4:
40:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:89:76:BE:B9:F5:5C:11:B0:07:1C:7E:9D:F7:24:59:A5:2C:BE:A9
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/bYl2vrn1XBGwBxx-nfckWaUsvqk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.136.0/21
Signature Algorithm: sha256WithRSAEncryption
8a:44:79:dd:96:36:ed:d4:60:9b:6a:1f:77:2f:24:42:60:32:
a0:f9:24:22:2d:20:45:df:9a:13:36:4b:6d:9c:4b:b5:a4:4f:
7f:bc:92:be:c6:82:60:9d:aa:36:a9:6e:d2:3e:d0:7e:6a:4e:
74:38:b2:66:0f:35:1e:82:6d:0b:e1:32:69:17:63:34:5d:8f:
a4:a5:58:13:2a:60:85:fe:14:5b:3c:e6:5b:3c:1b:bf:2e:d9:
ce:68:ba:e5:f1:a7:f4:3e:b2:f1:33:05:ea:87:d1:19:66:21:
09:7f:e1:6f:fc:76:2b:37:4e:b9:3e:9f:36:68:01:1c:b8:03:
99:07:36:98:6d:b8:19:ab:aa:3f:b0:0c:86:6f:41:04:81:1e:
b5:6c:dc:a4:72:24:80:08:3b:92:3c:f0:fc:d4:df:cc:a0:75:
45:dc:ec:40:84:f9:21:92:2a:c8:ea:d4:a1:d5:38:58:ac:1b:
fb:72:ad:a6:97:5d:12:bf:be:de:9d:75:f5:f2:c5:dd:35:8a:
1a:ee:ba:a2:4f:bc:e0:1b:b0:da:04:98:64:8a:46:70:69:a5:
55:6f:1b:35:6a:95:8a:70:33:ba:22:60:e7:ad:55:8a:5f:d7:
fe:20:76:ae:e7:b6:08:9d:43:3d:48:3a:f2:bc:4c:ba:9f:e1:
47:97:d8:62
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICGQ0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMjEwMjIw
NjA2MDNaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDZEODk3NkJFQjlGNTVD
MTFCMDA3MUM3RTlERjcyNDU5QTUyQ0JFQTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQChLLhDWkgcvEgdmuufHzyDHOaRHNjgwDJGV4jeiIy8Z46C81zK
6wxC62r4wudsLee/7C4KJmIkCWXSzU+3/b2SQ7Ssamw8gJm67PaKJ8t6DTrRB5aC
lU+splxZhVYTv3bl1hFs35M9K/F/Gemg8OTChgyq+Fv5JNOGgDXZbVdcBnhuvpog
vVQx4cVA8hV9hnagp+dtPgkC7ucWVM/uzwJD2ELLgpiosKivK2+0NWef0lndu1Ve
SAi8b60DI2qmOXLT/k192GPzf3X5OoruV3F7YdtLNRdLvY4fjAbaAKOc6w4ECmd3
u+zWAGiQT4H/ThU/EcQEjrDOXRt66b7c5ECLAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUbYl2vrn1XBGwBxx+nfckWaUsvqkwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2JZbDJ2cm4xWEJHd0J4eC1u
ZmNrV2FVc3Zxay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx
nogwDQYJKoZIhvcNAQELBQADggEBAIpEed2WNu3UYJtqH3cvJEJgMqD5JCItIEXf
mhM2S22cS7WkT3+8kr7GgmCdqjapbtI+0H5qTnQ4smYPNR6CbQvhMmkXYzRdj6Sl
WBMqYIX+FFs85ls8G78u2c5ouuXxp/Q+svEzBeqH0RlmIQl/4W/8dis3Trk+nzZo
ARy4A5kHNphtuBmrqj+wDIZvQQSBHrVs3KRyJIAIO5I88PzU38ygdUXc7ECE+SGS
Ksjq1KHVOFisG/tyraaXXRK/vt6ddfXyxd01ihruuqJPvOAbsNoEmGSKRnBppVVv
GzVqlYpwM7oiYOetVYpf1/4gdq7ntgidQz1IOvK8TLqf4UeX2GI=
-----END CERTIFICATE-----
Generated at Fri Sep 1 10:53:40 2023 by rpki-client on console-ams.rpki-client.org