Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/qHC_qRs46E1-ATnIiZJsi6bWpeU.roa
File: qHC_qRs46E1-ATnIiZJsi6bWpeU.roa (raw, json)
Hash identifier: FuvKVS0z+22MaKsQSzciDhSPt8JFHCADjPr6BvT8W78=
Subject key identifier: A8:70:BF:A9:1B:38:E8:4D:7E:01:39:C8:89:92:6C:8B:A6:D6:A5:E5
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 2286
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/qHC_qRs46E1-ATnIiZJsi6bWpeU.roa
Signing time: Mon 26 Aug 2024 05:34:06 +0000
ROA not before: Mon 26 Aug 2024 05:34:06 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24164
IP address blocks: 49.158.80.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:18:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8838 (0x2286)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Aug 26 05:34:06 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=A870BFA91B38E84D7E0139C889926C8BA6D6A5E5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:3c:27:f0:8c:c8:10:d7:79:04:6e:e4:df:62:
97:69:45:9e:b3:df:35:ce:03:36:2d:1a:d0:4e:82:
2b:65:41:c7:6a:71:7a:50:04:37:0a:ef:bd:77:18:
8f:8b:ed:9e:2f:33:7d:54:52:23:e5:28:98:5f:c3:
1e:47:38:f2:3b:bd:62:33:46:20:85:3d:93:33:53:
f5:4d:03:b0:a8:ef:82:2e:e8:eb:45:92:3a:11:cf:
bc:66:e6:09:f5:2e:db:1d:f4:3c:49:0b:a1:86:dc:
a0:9a:6b:f6:b2:ce:da:0b:2b:82:b8:74:4b:17:ae:
f2:83:d4:b8:fc:9f:59:c3:93:b9:40:15:20:a0:1e:
f1:71:d7:6b:ca:75:68:63:d4:ce:ec:62:1b:01:14:
52:96:c0:e4:7f:b9:a7:c8:66:9f:20:ff:b7:b5:b8:
5e:fc:9d:7a:86:59:fd:04:01:2a:d0:c5:45:40:c3:
35:2a:c3:e4:d5:d7:29:2b:9f:ec:ae:8d:e7:44:b7:
60:65:af:37:5d:a0:a5:58:8b:a6:9f:3c:00:ac:0c:
04:cf:e6:ae:9f:6c:ab:1e:f2:8e:30:5f:b8:2d:f3:
0b:b7:ac:85:21:f5:e7:4f:ad:df:cb:fe:8e:a2:ad:
3f:eb:30:49:ba:e1:d2:63:bd:a5:9a:0f:cc:e9:4c:
dc:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:70:BF:A9:1B:38:E8:4D:7E:01:39:C8:89:92:6C:8B:A6:D6:A5:E5
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/qHC_qRs46E1-ATnIiZJsi6bWpeU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.80.0/24
Signature Algorithm: sha256WithRSAEncryption
96:21:38:d7:1f:17:cb:54:7c:74:7a:d8:65:8b:f5:4d:4d:72:
c3:c3:4a:1b:33:76:2f:4d:c8:12:67:89:6f:8f:1a:17:71:10:
7b:64:64:44:20:60:1d:33:49:2a:b4:68:92:da:3f:75:d9:a7:
b3:e3:6f:88:df:a1:0e:de:7e:f1:56:3f:89:d2:3f:29:8e:fe:
36:fc:e7:1c:ea:ae:c6:84:f7:13:8d:59:f2:1f:ce:ba:fb:15:
25:c1:aa:a0:d9:9a:c3:89:c0:9b:da:9c:b9:6d:1d:51:01:c9:
1f:83:ee:95:c1:24:01:ce:e3:3e:95:25:24:3f:a0:46:13:1d:
5e:6b:3d:90:87:fb:89:a8:00:de:ba:ef:70:da:ba:e4:0b:0e:
d8:3d:65:6d:63:0e:d9:6c:f5:54:82:48:0a:99:59:5e:2e:c6:
2b:be:2e:69:eb:45:db:08:6d:e4:df:3d:80:35:40:f7:c1:15:
51:1d:4c:8e:26:1c:5f:bf:61:d9:0f:00:25:c8:ed:5c:06:da:
9f:8e:c6:00:38:3a:0a:1c:47:6c:c8:6e:2d:7c:fc:27:79:10:
90:84:99:23:0f:f6:51:65:01:e1:97:cd:2e:97:31:15:29:52:
da:5b:b3:22:08:c5:f9:af:46:ac:34:c2:ee:84:34:c4:68:63:
74:ef:49:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:39:26 2025 by rpki-client