Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/oGjCVoJXwai6QHqpPNTkFL7BXDk.roa
File: oGjCVoJXwai6QHqpPNTkFL7BXDk.roa (raw, json)
Hash identifier: 4bThOFhoSu9OHTWtQ4gGDs8ov5j5wILNTN3/HzQgo4M=
Subject key identifier: A0:68:C2:56:82:57:C1:A8:BA:40:7A:A9:3C:D4:E4:14:BE:C1:5C:39
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 196D
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/oGjCVoJXwai6QHqpPNTkFL7BXDk.roa
Signing time: Sat 22 Oct 2022 06:06:30 +0000
ROA not before: Sat 22 Oct 2022 06:06:30 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 180.218.220.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6509 (0x196d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 06:06:30 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A068C2568257C1A8BA407AA93CD4E414BEC15C39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:2b:19:aa:7a:0c:d8:5f:69:69:68:9b:35:66:
39:b0:21:46:18:cc:26:71:3c:b8:a1:33:e2:c1:4c:
b4:60:db:de:2c:ac:94:63:85:3a:be:78:79:16:68:
18:67:4f:44:08:d1:0d:60:14:30:cf:76:95:44:0c:
71:2b:7b:db:ee:99:28:9e:b3:36:29:18:ed:1f:78:
d6:eb:26:c0:51:08:ad:51:18:7a:81:0a:71:4d:9a:
68:3d:02:d3:16:61:e5:27:14:a3:6c:75:3b:94:17:
d3:8d:a5:8c:ce:54:df:14:3f:55:c6:cb:22:28:62:
d0:b0:d1:6a:e5:8d:81:6b:f7:d7:a8:88:d9:8b:06:
ad:6c:6e:e2:48:4c:77:cd:c3:48:0e:40:43:7c:37:
d1:10:e2:f9:88:e8:03:0a:a2:b0:70:3a:33:e4:70:
44:e4:8b:f5:59:91:5e:d5:dc:88:23:4e:f8:b1:d8:
fc:bf:49:6a:29:4b:be:78:8c:f5:9d:88:2f:50:f7:
e9:e8:b4:e2:24:57:77:8a:d3:73:a3:84:f5:8f:a6:
f4:ae:5e:f8:87:f5:6c:7b:df:0d:be:0e:da:a1:21:
f6:a8:62:5b:5e:7c:64:4f:91:97:97:93:a0:15:61:
77:76:47:f1:ae:ff:18:6a:8b:a4:cf:eb:93:2d:7b:
48:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:68:C2:56:82:57:C1:A8:BA:40:7A:A9:3C:D4:E4:14:BE:C1:5C:39
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/oGjCVoJXwai6QHqpPNTkFL7BXDk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.220.0/23
Signature Algorithm: sha256WithRSAEncryption
5b:50:9f:77:11:74:d5:27:d0:96:01:a7:9b:dd:73:6d:15:49:
9b:6d:3b:a9:c5:64:60:24:97:0a:56:a9:23:60:d4:da:1a:71:
22:67:1a:57:2e:26:55:76:89:eb:cb:b8:76:16:ec:ec:9a:b6:
77:e0:c7:cb:6c:50:73:7f:cb:ec:b9:ef:22:82:01:51:9a:2a:
bd:db:c9:95:01:82:85:08:98:ff:9b:4e:29:96:81:f9:e8:e8:
b7:d2:ba:3b:ff:ad:89:43:95:7d:6b:62:82:b5:dd:cc:44:48:
4f:04:c2:87:23:16:8d:9a:da:15:54:df:07:eb:e0:9f:2c:02:
a6:48:22:14:d2:0a:2c:d6:5b:c0:34:f3:c5:2b:37:45:77:ca:
ab:3f:74:83:7f:24:98:21:a2:ba:6e:8f:90:b6:31:4f:62:30:
c9:ae:84:68:c1:20:64:47:d8:9b:b8:c6:04:7c:d4:15:ed:5d:
a1:8a:6a:fa:19:47:a7:9d:9d:d7:e9:b3:a0:b4:bf:6b:9c:cd:
f5:ba:a7:97:46:5e:0d:b9:06:a5:fb:9d:3a:8e:9b:8e:b3:c9:
fa:81:b8:4f:f1:8a:a1:54:84:fc:1e:18:1f:b8:c2:19:73:27:
4b:e5:e5:78:28:43:51:87:71:bb:b9:34:b3:91:d3:9b:21:f6:
b7:33:7f:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:53:40 2023 by rpki-client on console-ams.rpki-client.org