Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/hNlPeitllfHYWScduQCmwWXoYN4.roa
File: hNlPeitllfHYWScduQCmwWXoYN4.roa (raw, json)
Hash identifier: pFJrXAkjPHxdf5VJszw5rR7soWD2KwV80y5O043CVjA=
Subject key identifier: 84:D9:4F:7A:2B:65:95:F1:D8:59:27:1D:B9:00:A6:C1:65:E8:60:DE
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1960
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/hNlPeitllfHYWScduQCmwWXoYN4.roa
Signing time: Sat 22 Oct 2022 06:06:27 +0000
ROA not before: Sat 22 Oct 2022 06:06:27 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 180.218.0.0/20 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6496 (0x1960)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 06:06:27 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=84D94F7A2B6595F1D859271DB900A6C165E860DE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:a1:64:9f:b9:6b:92:76:9d:b8:9e:d7:73:c0:
25:5e:90:cb:83:84:23:1e:23:28:74:4c:6d:93:ff:
a3:aa:bb:93:30:40:a3:e4:a8:e5:00:80:51:f0:37:
d6:ab:9b:78:17:be:c7:f6:72:f1:52:4d:a2:be:72:
85:c3:3b:e1:be:61:17:09:14:76:63:1b:74:4a:cd:
58:e1:1c:8b:77:90:aa:c3:d9:64:7c:df:50:0c:b2:
f7:9e:1b:94:5b:04:44:41:7d:1e:3e:4d:aa:e1:5b:
93:1b:14:e7:d1:19:f1:6f:45:85:a8:3e:5b:60:0f:
12:08:dd:df:1d:57:02:95:15:89:d2:eb:c6:9f:ee:
4b:f0:20:0d:22:09:8c:97:86:39:be:8f:1c:03:4b:
8a:45:d6:71:88:cc:cf:59:1c:aa:ac:f1:2f:b0:4f:
83:32:d2:73:09:f0:54:10:2c:ef:65:68:e3:59:f6:
1b:bd:36:0f:c9:2e:29:86:e3:48:34:96:b1:5f:7f:
9a:98:b2:7a:25:cc:84:c2:3a:a4:95:83:08:e0:1f:
d1:c7:ec:4c:f2:62:89:ac:a6:70:79:8d:8b:0e:c2:
37:65:f0:6b:54:a3:a1:57:cf:ec:83:a8:01:3a:19:
5b:01:ef:c9:93:df:c0:30:0c:d2:8f:e3:1e:a5:1d:
66:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:D9:4F:7A:2B:65:95:F1:D8:59:27:1D:B9:00:A6:C1:65:E8:60:DE
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/hNlPeitllfHYWScduQCmwWXoYN4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.0.0/20
Signature Algorithm: sha256WithRSAEncryption
29:84:9e:5c:69:fa:23:16:7d:9f:73:9f:14:80:7e:c2:67:98:
48:cf:09:e0:b0:06:0e:1d:d4:97:a4:e3:27:93:f7:66:4c:c2:
9c:11:46:e2:a9:ce:56:fd:c2:56:de:76:d9:c8:ac:bc:06:7c:
9f:d2:68:e7:44:5a:20:2c:bd:d3:5e:77:06:98:4a:89:bf:e0:
17:08:b2:85:cb:c8:0f:67:99:96:ce:9b:31:3a:e3:72:42:b7:
a7:f4:8f:81:07:18:2a:d2:8f:44:e7:8f:64:32:cb:ec:fb:92:
d1:db:34:14:c9:21:87:48:fd:0b:4e:81:06:ff:8f:4c:8c:c2:
ba:fb:46:6e:3a:2a:bc:96:82:ab:4f:df:df:c5:61:39:0f:d6:
05:ff:ee:75:bf:56:0f:bd:cb:c5:ec:c0:ff:4c:75:34:8d:53:
f2:71:3d:b8:12:d8:e2:88:49:a5:e2:be:17:6e:c8:83:67:a6:
93:8b:71:8d:e5:cb:e0:d8:41:dd:fb:3e:33:c9:9a:7e:3c:71:
6f:b2:4d:b3:67:f8:05:ad:74:7d:fe:5d:62:d1:62:12:00:47:
25:ea:6c:85:24:a9:cb:48:a2:13:97:01:f7:bc:ef:ec:28:d4:
16:bb:00:7f:74:ae:16:09:15:7f:ff:ee:83:79:46:99:23:90:
73:4a:09:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:47:15 2023 by rpki-client on console-fra.rpki-client.org