Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/eX1uOqZ8LKmiuJaGg8g37m6lG1c.roa
File: eX1uOqZ8LKmiuJaGg8g37m6lG1c.roa (raw, json)
Hash identifier: j3i7NorIW0B5SXG0OT2uXp73OV9za3y4UUo3jUT1biM=
Subject key identifier: 79:7D:6E:3A:A6:7C:2C:A9:A2:B8:96:86:83:C8:37:EE:6E:A5:1B:57
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 184A
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/eX1uOqZ8LKmiuJaGg8g37m6lG1c.roa
Signing time: Sat 22 Oct 2022 05:53:44 +0000
ROA not before: Sat 22 Oct 2022 05:53:44 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 49.158.120.0/21 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6218 (0x184a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 05:53:44 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=797D6E3AA67C2CA9A2B8968683C837EE6EA51B57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:fc:40:79:4a:08:63:f3:fb:cd:8f:c2:a2:f6:
34:67:c4:2f:a0:dc:7a:e3:e1:e6:aa:6b:ff:24:8a:
08:e3:46:56:f1:bf:ac:a7:af:46:8a:f9:e2:0d:f1:
f2:99:ba:e8:51:61:28:b8:95:9b:3b:20:39:9f:10:
0a:b3:96:ae:f2:00:18:78:5a:39:c7:c2:c6:7d:a9:
d1:f8:33:57:2d:87:dc:b9:ba:86:af:8f:56:be:c1:
cb:89:f2:0d:19:6f:4e:01:f7:85:11:2e:1d:de:44:
4c:a3:83:d4:b7:0e:22:cb:cb:ed:1a:11:89:84:58:
7d:0f:bf:1e:55:c7:6d:14:3c:28:a1:01:96:2a:e6:
ca:e3:3e:91:a1:8d:83:50:e3:08:fa:c4:8d:3e:bd:
85:1f:a4:41:e9:41:56:a6:53:83:3a:4b:60:5c:72:
e4:b3:89:54:a8:ad:f1:cd:e1:b8:6e:44:1b:3c:40:
94:3d:64:6e:3c:d4:66:00:c3:6e:88:b9:7f:cf:73:
61:fb:2c:c7:51:35:b7:71:19:f2:63:7d:86:f6:6b:
ff:e3:b3:93:25:63:ed:44:26:e4:12:7b:e4:ea:32:
ec:bb:c9:88:e7:8d:8d:50:52:9f:80:4b:73:a2:ae:
4c:70:50:b3:64:df:4c:da:66:64:b6:a3:6e:b4:44:
ed:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:7D:6E:3A:A6:7C:2C:A9:A2:B8:96:86:83:C8:37:EE:6E:A5:1B:57
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/eX1uOqZ8LKmiuJaGg8g37m6lG1c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.120.0/21
Signature Algorithm: sha256WithRSAEncryption
5c:e4:e3:d6:d5:f3:10:a5:ba:34:c9:53:01:d4:36:b7:38:ef:
d8:0f:35:22:3c:dd:17:c5:09:e8:51:2c:9d:7a:4a:8d:bf:d1:
7e:d5:48:60:49:6f:0a:3d:d5:2e:94:f9:5d:39:7e:cb:6a:da:
40:d4:e3:95:51:0b:79:d3:71:22:5d:84:8c:3f:28:44:12:05:
62:2d:d5:81:fc:51:c7:a0:fa:2c:fe:df:40:eb:4a:11:d0:9c:
26:bf:f6:f1:57:b2:b6:69:93:c0:59:cc:89:24:92:df:af:45:
56:18:a2:e1:9e:af:c6:0b:92:6b:f1:10:c9:ca:38:7c:a4:5d:
0e:a9:df:96:e6:54:44:c9:b9:48:ab:fe:17:10:57:a1:6d:0b:
79:36:aa:4f:a5:df:3a:73:e2:8c:39:47:11:f1:ab:db:21:90:
91:0d:db:b4:7f:5b:55:1e:3d:27:53:55:1d:45:ce:de:b5:a6:
d3:53:2d:1b:b3:16:67:3a:98:0c:3a:5c:74:aa:48:3b:67:ac:
a3:67:15:e2:8f:71:63:d9:f3:7a:28:b5:a4:8e:ab:b4:24:46:
de:f1:a7:56:c7:7e:da:cc:ae:6a:70:de:25:db:d0:7b:9f:f0:
51:27:7a:e3:42:65:18:46:c9:5c:d6:63:8f:5b:b5:9d:fd:07:
66:26:4e:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:47:15 2023 by rpki-client on console-fra.rpki-client.org