Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/iT-8jWxAr60tKwqJl9UIaFI0wJk.roa
File: iT-8jWxAr60tKwqJl9UIaFI0wJk.roa (raw, json)
Hash identifier: IBAex9Bnty7oEY+4rLAtj2AxLSOwEaXKbY0VenjMAzA=
Subject key identifier: 89:3F:BC:8D:6C:40:AF:AD:2D:2B:0A:89:97:D5:08:68:52:34:C0:99
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1566
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/iT-8jWxAr60tKwqJl9UIaFI0wJk.roa
Signing time: Fri 21 Oct 2022 09:30:59 +0000
ROA not before: Fri 21 Oct 2022 09:30:59 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24163
IP address blocks: 49.158.152.0/21 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5478 (0x1566)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 21 09:30:59 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=893FBC8D6C40AFAD2D2B0A8997D508685234C099
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:18:50:18:4d:c0:89:fb:d9:5e:bf:88:3f:0d:
cb:c0:ad:06:7f:c5:cb:a4:8e:7f:1a:30:3a:ea:fc:
5a:6c:17:5d:e7:98:af:64:b4:9e:75:8f:24:31:e5:
54:c5:e8:79:eb:c3:10:8f:66:fc:53:b2:01:ba:ed:
66:eb:5e:ce:72:eb:fd:ef:f4:8a:d6:c1:43:3f:9a:
9c:57:cf:fc:e0:e3:a0:8d:3c:ad:c4:b5:82:c5:b8:
fe:9a:6e:8f:98:4d:47:76:33:fa:9f:8c:54:7f:4f:
b3:9b:7b:ee:40:32:bd:15:57:1e:13:7c:10:0e:93:
3a:bb:74:f2:9a:d4:14:f4:78:07:06:fc:41:07:79:
86:93:d9:bf:92:48:c5:0c:13:bf:b8:eb:d2:c0:95:
98:64:19:0a:e4:5a:9c:d0:26:90:b6:bb:42:da:40:
3a:04:3e:3d:5c:3d:13:fa:7c:3e:52:3c:12:32:6c:
e7:52:ab:c1:b3:1e:05:2b:3c:13:28:6b:76:e9:57:
7e:c3:0e:75:17:e6:09:18:c9:4e:ff:46:13:13:99:
e2:39:cd:12:ba:87:65:8b:95:1c:a0:31:c0:97:a7:
44:88:9c:bc:75:a3:95:12:a2:e1:bd:30:ca:0e:16:
d2:82:4a:79:3d:d9:81:f2:19:c6:93:cc:bf:d4:8d:
c3:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:3F:BC:8D:6C:40:AF:AD:2D:2B:0A:89:97:D5:08:68:52:34:C0:99
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/iT-8jWxAr60tKwqJl9UIaFI0wJk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.152.0/21
Signature Algorithm: sha256WithRSAEncryption
2b:2e:36:42:c7:40:b4:66:60:04:c0:52:1a:bb:ec:bb:dc:1f:
50:ad:c3:0a:e1:fe:55:ff:3b:7f:1c:d5:ec:47:fa:cf:05:bf:
c5:3d:4c:7e:0c:ff:32:68:c7:f1:2d:1f:e3:27:1b:28:92:a3:
10:a7:24:ac:89:62:b5:22:7a:88:f1:d7:b2:54:28:3b:f3:98:
d6:95:3e:34:ba:3d:8b:91:f7:c4:88:5a:db:9a:88:07:ad:d7:
d2:48:d3:5b:08:7c:41:c2:94:4d:e5:79:29:64:4f:1f:71:cc:
31:96:c4:2f:5d:3e:13:74:96:c0:7f:6a:17:57:89:97:f7:8e:
0a:18:48:5a:37:31:1e:51:81:6c:fc:4f:45:3b:03:68:30:ca:
39:fe:98:8b:e7:77:db:4e:6d:ad:46:79:40:cf:84:b4:78:19:
69:b8:0c:c0:d8:18:27:f4:01:80:83:90:fb:39:02:c7:6f:71:
17:ef:05:5e:55:57:03:f0:f9:85:aa:c1:92:3b:2d:7c:79:98:
f0:7e:32:aa:d4:89:d0:55:ca:27:cb:71:b0:c3:3e:bd:4b:17:
43:e1:0e:fd:00:9e:96:9c:01:07:09:f3:5a:9d:4d:01:b0:ff:
0d:f4:72:83:dd:fd:94:61:28:67:1d:fc:a1:b3:6f:ba:7b:a9:
9d:31:32:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:39 2023 by rpki-client on console-ams.rpki-client.org