Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ia-wnCbZk5M9CEyLvdbMUoBl7Ck.roa
File: ia-wnCbZk5M9CEyLvdbMUoBl7Ck.roa (raw, json)
Hash identifier: q7NB0seUiB72HWnaLZtDGNZD/JBkzx5DNH5rBdhpae0=
Subject key identifier: 89:AF:B0:9C:26:D9:93:93:3D:08:4C:8B:BD:D6:CC:52:80:65:EC:29
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 2202
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ia-wnCbZk5M9CEyLvdbMUoBl7Ck.roa
Signing time: Mon 26 Aug 2024 05:33:34 +0000
ROA not before: Mon 26 Aug 2024 05:33:34 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24164
IP address blocks: 103.225.0.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:17:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8706 (0x2202)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Aug 26 05:33:34 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=89AFB09C26D993933D084C8BBDD6CC528065EC29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:98:1c:47:4a:99:97:0a:fc:05:0e:89:59:ad:
28:83:5d:69:5a:2e:2b:df:5b:a0:8c:c2:bc:d7:68:
a3:3d:3f:16:24:1c:e7:47:1c:bf:30:22:59:32:93:
11:f0:86:ec:bd:33:e7:c5:7d:bc:ca:92:81:32:42:
53:9e:00:47:f3:77:37:8d:d2:91:47:53:d9:6b:47:
0c:cb:73:09:b7:de:b8:e8:7f:ea:60:b7:94:49:06:
3a:6e:99:40:40:af:79:df:81:a2:23:0d:f3:55:25:
e9:57:c0:4f:ff:d2:18:56:47:47:fd:00:0b:76:b0:
97:d3:1e:32:97:75:e4:43:06:e9:bc:f7:be:23:2f:
c5:60:16:50:eb:45:a2:69:04:dd:a9:5f:96:e2:d6:
1d:cb:9c:ec:6d:04:e3:51:8e:6c:0a:7d:1e:34:a1:
a5:12:3e:98:ed:55:bf:66:cf:11:df:f9:e4:01:f7:
7a:d9:7d:bf:f4:1c:87:18:1f:98:15:98:69:92:f9:
6a:77:f0:25:1e:c3:a0:af:d2:a2:51:86:e8:99:1b:
2e:b3:f1:f8:7c:2c:fb:ab:40:c1:d3:2e:b9:6e:df:
f6:47:00:9d:1e:76:0e:1d:36:da:2f:f1:09:bf:e9:
c7:f1:f3:c9:cc:a9:00:4b:36:b8:6d:7b:e7:d1:4c:
2f:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:AF:B0:9C:26:D9:93:93:3D:08:4C:8B:BD:D6:CC:52:80:65:EC:29
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ia-wnCbZk5M9CEyLvdbMUoBl7Ck.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.225.0.0/22
Signature Algorithm: sha256WithRSAEncryption
64:05:01:4e:36:fd:d1:a5:1f:2a:18:1d:01:fd:4d:35:41:c0:
14:d4:7f:f2:44:94:8e:03:aa:10:8c:32:74:04:9f:88:c7:11:
d4:12:c4:ce:3e:58:52:32:1e:46:59:2a:9c:f9:48:2e:07:cb:
41:1b:8e:64:08:97:a4:75:7c:6d:fe:b4:3e:38:e2:52:62:87:
ce:9c:ce:c3:ad:f7:15:b8:61:90:9c:d0:8a:e4:ca:69:b3:94:
b8:cf:f0:36:0c:55:93:2b:8e:e0:fb:36:1e:ac:ee:4d:27:3c:
f1:36:ad:d1:79:b3:fd:b1:bf:21:19:6e:ee:23:a2:8f:9e:16:
f8:74:d8:ac:cf:8f:6b:98:0b:24:36:c8:0e:ac:bb:1f:a9:c7:
08:d3:c5:da:13:96:b9:5b:51:4c:ec:64:83:c4:76:ba:45:dd:
41:6d:b4:22:fa:d9:f2:c0:59:a7:fb:bd:00:52:63:50:dc:89:
be:b0:f5:44:30:b1:ac:21:2d:34:79:17:e5:45:db:1d:49:d1:
db:92:43:bd:01:46:bf:a0:fe:6c:31:db:b9:3c:46:d0:35:62:
b4:77:dc:53:3f:92:f7:12:a1:01:98:8c:b9:45:f5:30:c0:f0:
3a:4f:f7:8c:b7:7a:52:04:70:bf:68:c3:8a:14:24:89:3f:ea:
8e:9f:dd:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:56:14 2025 by rpki-client