Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/gPNE6jdnhlAyLbLXEtfGkUTJ-2U.roa
File: gPNE6jdnhlAyLbLXEtfGkUTJ-2U.roa (raw, json)
Hash identifier: pCK1GHg3lY79+yzSdCVf2zkfF+7as5aQldbw6VG4TW0=
Subject key identifier: 80:F3:44:EA:37:67:86:50:32:2D:B2:D7:12:D7:C6:91:44:C9:FB:65
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 198F
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/gPNE6jdnhlAyLbLXEtfGkUTJ-2U.roa
Signing time: Sat 22 Oct 2022 06:06:41 +0000
ROA not before: Sat 22 Oct 2022 06:06:41 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24165
IP address blocks: 49.158.132.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6543 (0x198f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 06:06:41 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=80F344EA37678650322DB2D712D7C69144C9FB65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:19:20:d6:0b:2a:96:05:2e:1b:46:a7:47:a4:
eb:72:23:8a:2a:a6:7e:57:99:58:81:fa:db:03:fa:
e8:ad:5e:be:64:9c:85:ac:51:c1:09:77:73:92:a0:
c4:c8:e2:b6:ff:4e:05:e2:24:4b:b2:44:4a:42:7e:
51:ab:95:a3:0f:7d:86:1e:ae:71:8b:eb:6d:05:5d:
78:75:34:54:da:54:56:44:d5:2e:03:ed:46:c1:82:
3c:2a:e2:84:23:39:5d:b5:dc:90:ec:32:78:d7:e9:
6d:84:fd:d4:b7:04:64:08:3c:bb:00:9a:23:84:f0:
5a:7a:b9:29:bf:69:0e:a7:3a:1d:c1:b2:98:8e:e7:
34:4a:5b:6b:c4:ac:d5:c8:aa:21:60:b0:6d:67:1b:
f8:21:67:10:46:53:66:ab:20:b7:91:79:c0:b0:89:
aa:29:1e:0b:ad:26:77:6e:dc:0f:c7:1e:cf:44:ef:
f2:03:f0:71:9e:a5:e7:85:97:42:c1:09:45:ab:23:
7c:c8:e4:c0:57:d2:e4:d6:ca:82:f1:96:ac:fe:70:
8e:18:6b:a6:28:a2:f8:53:19:79:70:fb:c6:8c:46:
5c:f0:e8:ba:e3:26:ee:a2:b1:5b:0e:bc:ed:7f:8c:
48:ed:50:a2:f8:2a:f3:93:c7:cc:09:fe:82:5b:0b:
a2:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:F3:44:EA:37:67:86:50:32:2D:B2:D7:12:D7:C6:91:44:C9:FB:65
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/gPNE6jdnhlAyLbLXEtfGkUTJ-2U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.132.0/22
Signature Algorithm: sha256WithRSAEncryption
4e:70:56:6a:91:d4:eb:b6:f6:e8:4b:af:f9:5b:4c:f9:89:82:
f8:97:38:de:90:3e:19:e7:1f:4e:17:09:df:c3:79:eb:29:ae:
09:fb:1f:16:0f:07:a9:57:9d:8b:b0:7b:fb:89:1f:87:14:ae:
f2:de:26:2a:b7:40:ec:31:97:53:a6:7f:86:de:ec:51:d6:6a:
32:0b:8e:4b:a3:6d:7e:c4:af:aa:ea:bb:d3:dd:b8:5e:e4:d3:
37:86:b9:2c:bd:f2:74:1d:c5:2a:7d:29:df:94:34:41:a6:51:
d2:3f:c2:85:6d:23:4d:d9:c3:70:0a:60:d5:ca:da:b6:6b:41:
5a:ee:e6:c5:1b:77:68:38:d7:71:9c:5c:12:3b:ff:da:b9:9b:
c9:4c:d4:32:c4:17:f7:d5:d6:3f:65:72:46:af:08:53:2f:bd:
4a:49:ee:d1:d9:49:e0:83:4a:73:bf:31:d7:c5:61:00:1a:19:
cc:6a:79:e6:b7:36:41:3e:62:97:6b:3d:6c:24:bc:79:f2:1b:
e5:02:21:a1:b7:8e:d3:53:e8:ad:8c:40:89:81:d7:f8:3c:ed:
5b:6d:70:8e:ba:1c:a4:ca:f2:2e:bd:11:18:aa:3a:b2:49:c2:
80:e8:78:05:4c:c6:b0:39:31:78:94:74:4e:da:20:73:2d:0f:
ce:9b:c7:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:53:40 2023 by rpki-client on console-ams.rpki-client.org