Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/geO82OgMqsIP-3T4nmeHTI7x8a0.roa
File: geO82OgMqsIP-3T4nmeHTI7x8a0.roa (raw, json)
Hash identifier: kX7vUEaJCYXN7KICNc8QQ3SJqR+Tz2cHCVBsIpeMNTM=
Subject key identifier: 81:E3:BC:D8:E8:0C:AA:C2:0F:FB:74:F8:9E:67:87:4C:8E:F1:F1:AD
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 2200
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/geO82OgMqsIP-3T4nmeHTI7x8a0.roa
Signing time: Mon 26 Aug 2024 05:33:34 +0000
ROA not before: Mon 26 Aug 2024 05:33:34 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24164
IP address blocks: 211.76.40.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:17:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8704 (0x2200)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Aug 26 05:33:34 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=81E3BCD8E80CAAC20FFB74F89E67874C8EF1F1AD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:0e:db:38:23:7f:27:63:0f:54:cc:b9:a2:08:
7a:c1:fb:d9:9c:d6:5d:4f:e4:3d:91:78:bf:fd:6b:
21:c0:b2:03:f7:c5:b9:d2:f9:f0:f5:71:b5:bc:cd:
39:44:f9:bb:fb:43:e1:9e:3a:02:69:43:e0:3a:a2:
59:49:15:4f:e7:4b:0b:41:f8:23:06:15:c9:f8:d7:
ec:0f:dc:34:97:b8:82:c7:58:fe:a5:7a:9d:50:bb:
2b:9c:7f:13:aa:0f:05:92:ba:20:30:5c:3d:50:10:
4c:d0:33:fc:10:bd:89:3f:b3:c3:74:49:b5:f5:8e:
a1:eb:32:0c:78:84:e3:54:c7:b3:d3:13:6e:c7:d1:
1a:30:79:e7:58:04:33:8d:ed:02:41:88:f4:d0:4a:
5c:24:28:1c:e0:59:4c:cf:48:1b:67:13:a2:b0:d8:
c8:18:39:c8:45:5d:63:8a:d6:8c:f4:a9:44:3f:32:
2b:80:b0:e1:7e:0b:0d:fa:e9:7f:fd:dc:c6:03:15:
ee:75:e1:bf:c8:c0:a2:9d:f9:2f:3c:e9:c2:5c:16:
5d:b0:4e:9d:df:8d:8a:f9:ad:4f:79:4b:43:26:4f:
b5:43:65:c0:0c:52:03:60:a6:eb:a8:2e:42:e1:c8:
8e:40:cb:1c:da:cf:41:25:80:d0:43:93:94:5a:fb:
57:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:E3:BC:D8:E8:0C:AA:C2:0F:FB:74:F8:9E:67:87:4C:8E:F1:F1:AD
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/geO82OgMqsIP-3T4nmeHTI7x8a0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.40.0/22
Signature Algorithm: sha256WithRSAEncryption
19:9a:66:7b:55:52:40:74:c2:18:eb:8b:93:96:ee:29:d7:86:
fb:ee:be:de:f5:c9:2f:7e:f0:07:66:b2:e2:3c:87:5d:2e:e9:
ff:d3:b3:72:63:ae:63:dd:78:c1:c4:3a:c6:e6:06:16:1b:fd:
7c:81:73:d9:73:0a:90:57:f3:03:50:7d:93:52:f0:9c:49:c1:
d0:0e:1f:49:78:ce:c2:23:5c:da:05:36:ad:63:af:42:11:3b:
ee:40:be:2b:3a:43:22:d3:6c:6e:69:76:69:9b:14:a9:e2:51:
d4:2f:73:f0:34:a5:b3:a5:56:ba:4b:ff:7f:09:61:23:4b:d2:
bd:a8:46:4b:d9:f7:71:7f:07:63:3e:25:21:1e:d1:a4:5d:38:
47:6e:22:68:50:32:48:e6:a3:1a:40:28:42:6c:9e:da:1b:fa:
bf:c9:3a:5c:dc:bc:6c:e6:32:bc:77:2b:22:26:3e:6e:65:95:
43:d6:2f:18:b5:f1:66:73:19:9a:eb:e5:e2:8f:97:37:ac:2d:
4b:42:b6:8c:67:b8:a2:7d:32:77:1c:c6:8c:8e:d8:85:0f:bc:
d1:f3:fd:ae:f8:ad:3a:39:f3:76:16:fb:96:34:8b:9f:81:21:
17:4c:0d:a6:7a:d1:c6:ba:74:a0:b5:f5:1e:83:06:11:e5:eb:
9f:90:00:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:45:48 2025 by rpki-client