Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/nF9v3TKSLb9EzieaxmKCIkkXK7w.roa
File: nF9v3TKSLb9EzieaxmKCIkkXK7w.roa (raw, json)
Hash identifier: yae/gKCEu+0nm/g+ML+GD8rni8nU4uTTHhDKnpYaRw8=
Subject key identifier: 9C:5F:6F:DD:32:92:2D:BF:44:CE:27:9A:C6:62:82:22:49:17:2B:BC
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 227C
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/nF9v3TKSLb9EzieaxmKCIkkXK7w.roa
Signing time: Mon 26 Aug 2024 05:34:03 +0000
ROA not before: Mon 26 Aug 2024 05:34:03 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24164
IP address blocks: 180.218.64.0/21 maxlen: 21
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:18:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8828 (0x227c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Aug 26 05:34:03 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=9C5F6FDD32922DBF44CE279AC662822249172BBC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:24:89:63:7b:97:7f:84:ce:19:64:51:78:d0:
2b:64:bc:d6:cd:62:ae:43:e5:dd:63:f5:84:7f:89:
a3:38:09:78:f8:f0:7d:20:ea:e8:46:40:38:75:c0:
88:61:29:a5:3e:69:c1:fa:32:c2:b0:27:4d:dc:96:
08:dd:53:c3:5f:e6:d9:ac:69:d9:79:9f:a6:37:36:
db:49:64:b1:a5:15:4e:62:0f:e6:d4:da:a3:f3:0e:
fe:76:d0:20:60:3c:05:9f:ef:46:5e:f3:e4:2c:56:
9a:f2:78:bc:cb:fe:e9:f3:b8:c6:89:0c:cb:b9:3d:
17:a1:73:a5:a3:b2:9e:5d:c2:bc:04:8b:0f:9c:45:
ca:6b:6c:fd:b1:41:ab:9f:cb:50:0f:33:f6:84:78:
a5:33:ff:36:8b:ef:13:4a:f2:aa:98:53:9c:c8:61:
68:a2:38:84:fb:eb:39:40:fe:6f:82:16:36:1b:09:
a9:68:74:a3:f9:c3:29:63:7d:a5:49:3f:f0:bb:3b:
7d:45:9a:5f:45:c2:c6:55:a2:da:b1:f4:8e:f5:7e:
e3:11:01:4f:c4:78:a8:cf:94:c5:a6:b0:9b:92:79:
08:69:17:a9:48:f4:de:38:3b:61:9a:34:39:8b:69:
f9:b7:b2:6c:e7:ba:13:39:cd:a9:2f:6a:64:1a:24:
f4:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:5F:6F:DD:32:92:2D:BF:44:CE:27:9A:C6:62:82:22:49:17:2B:BC
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/nF9v3TKSLb9EzieaxmKCIkkXK7w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.64.0/21
Signature Algorithm: sha256WithRSAEncryption
21:05:c7:ea:3d:bc:79:13:4f:7d:0d:bd:6d:14:01:27:69:97:
e2:08:83:a6:94:7e:c2:64:96:d9:8f:b7:fe:17:0e:88:52:95:
7b:41:48:aa:44:db:3a:67:85:80:99:f6:4b:b9:6c:d1:5d:92:
54:8b:6c:b3:a4:70:ad:35:0a:08:a3:5c:1a:b3:49:e7:54:cd:
4e:e8:52:77:0e:c7:4c:78:0d:32:2a:75:51:df:c9:75:5d:07:
61:2a:be:cb:bf:ec:58:80:b4:47:bb:92:4c:25:fd:ff:1b:2d:
75:cf:03:b1:39:61:8b:26:78:62:16:1d:cd:68:8e:d5:65:3c:
24:16:ca:92:17:f4:7f:db:b9:f6:61:d9:ef:fa:a6:b3:5c:40:
f0:fd:c3:75:5a:80:e0:1b:5a:34:39:04:60:0f:4f:3e:2b:c2:
38:d1:99:3f:41:a8:b3:0d:61:86:ff:e1:3d:7a:8f:19:39:4b:
63:d5:69:1a:53:53:36:e6:6e:3e:ba:f7:8f:64:ea:3e:9a:25:
9e:f7:f5:3d:74:25:95:17:f6:ac:0c:32:c8:54:b2:a9:c4:50:
a7:68:d2:bd:37:86:81:c7:f8:2a:ae:45:51:76:45:e1:47:80:
1e:13:c4:9c:3f:ba:4f:df:58:18:49:45:e3:58:b3:8d:d8:d7:
cf:23:68:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:53:42 2025 by rpki-client