Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ciHxSrpnkmW4UY6qsEn0p3N1FGo.roa
File: ciHxSrpnkmW4UY6qsEn0p3N1FGo.roa (raw, json)
Hash identifier: klUnkMNevIPS78et2V2zX3KfRF38OlmRQ8t8yjhAOMI=
Subject key identifier: 72:21:F1:4A:BA:67:92:65:B8:51:8E:AA:B0:49:F4:A7:73:75:14:6A
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 2282
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ciHxSrpnkmW4UY6qsEn0p3N1FGo.roa
Signing time: Mon 26 Aug 2024 05:34:05 +0000
ROA not before: Mon 26 Aug 2024 05:34:05 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24164
IP address blocks: 61.61.224.0/20 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:18:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8834 (0x2282)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Aug 26 05:34:05 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=7221F14ABA679265B8518EAAB049F4A77375146A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:9a:a1:34:f9:3d:30:a7:82:6e:f9:87:d2:d4:
49:66:de:69:ff:e7:d9:bb:1e:95:fe:de:4e:68:1d:
84:71:1d:1a:6c:00:21:c8:cf:84:0b:71:e4:25:81:
81:d8:f2:e4:e7:c3:64:ed:f8:df:be:1c:90:c1:c0:
6e:dd:b7:ef:cc:c5:59:86:ab:5a:29:b6:23:ed:07:
c2:cf:d0:07:c1:12:b9:d1:f3:09:f9:cb:d8:a9:18:
d2:7e:86:22:11:c3:28:44:dc:3a:e4:fd:69:17:c1:
27:6e:a8:07:1a:71:1f:4a:53:92:fd:c0:59:05:01:
2e:7a:bb:20:42:a2:af:34:ca:ba:9a:4d:cb:00:d4:
3b:3c:16:0b:ef:3e:14:e2:aa:6d:af:ce:e3:4b:b0:
a9:e0:68:96:3a:8c:59:6e:3b:a5:76:90:da:48:48:
6e:f5:6a:44:40:7a:81:fc:28:bf:69:32:58:c4:1a:
cf:c5:9a:fb:a5:19:22:3a:e2:1c:13:3f:17:7e:6b:
b8:60:37:81:4f:57:f1:41:37:08:dd:cd:3d:77:16:
85:64:a4:cb:6d:13:b9:01:63:4f:85:4b:5f:98:b8:
a2:57:ac:0e:60:82:75:f0:e9:90:fe:b7:9a:42:3a:
14:74:b2:e3:a0:47:2d:52:91:4f:0d:92:cd:30:57:
01:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:21:F1:4A:BA:67:92:65:B8:51:8E:AA:B0:49:F4:A7:73:75:14:6A
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ciHxSrpnkmW4UY6qsEn0p3N1FGo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.224.0/20
Signature Algorithm: sha256WithRSAEncryption
93:e3:29:c3:38:cc:f9:ac:45:b9:93:d0:77:37:4d:58:7f:c1:
47:c9:5f:c1:0a:7b:f6:fb:3c:4a:33:f1:10:6a:d4:40:c7:6c:
3a:39:89:2a:39:1e:b7:d4:26:2b:2e:bd:59:f4:06:32:f3:f9:
3e:56:53:d0:b2:59:33:12:c9:b9:bf:26:1b:d7:e2:0f:f5:31:
37:44:f3:6d:0f:54:b4:cf:8f:a6:5f:11:dd:81:22:08:ea:94:
c2:ef:45:7c:23:0e:57:cb:24:75:09:42:89:f7:76:65:04:84:
84:06:83:f4:40:51:26:ca:37:30:36:62:19:3b:72:27:fe:11:
bf:71:17:45:38:4e:56:59:1d:a4:15:95:11:3c:b5:b7:a4:31:
4b:d6:8a:69:5d:ed:89:3b:83:3f:dd:cd:3b:15:5f:1b:c1:49:
3a:6c:2f:c4:6d:05:f3:6b:20:26:5e:50:6d:e5:40:96:b5:0f:
ac:7b:fb:2b:11:f2:f4:d0:94:52:b4:58:86:5c:02:09:7e:d2:
2b:26:d2:fc:c7:16:65:20:93:68:8f:8a:86:f7:09:ab:04:90:
06:04:4b:f0:25:2e:ab:8d:52:51:35:22:f0:e9:31:1e:fe:77:
69:ac:3e:2a:8b:71:6c:c6:12:40:94:94:36:be:6e:0d:4d:33:
93:c7:c5:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:50:13 2025 by rpki-client