Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/qUmEAyh2FUF7VUg5vEQrpNPNOgo.roa
File: qUmEAyh2FUF7VUg5vEQrpNPNOgo.roa (raw, json)
Hash identifier: o9XnO53ZCO/SPWBKfAK8Xas3aOQFpi3+WW4OCu0FDl0=
Subject key identifier: A9:49:84:03:28:76:15:41:7B:55:48:39:BC:44:2B:A4:D3:CD:3A:0A
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 1978
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/qUmEAyh2FUF7VUg5vEQrpNPNOgo.roa
Signing time: Sat 22 Oct 2022 06:06:33 +0000
ROA not before: Sat 22 Oct 2022 06:06:33 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 180.218.160.0/20 maxlen: 20
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6520 (0x1978)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 06:06:33 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A9498403287615417B554839BC442BA4D3CD3A0A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:e3:a0:2b:57:6c:31:89:3e:59:b9:08:b6:59:
d0:e9:c3:fb:ca:36:b3:26:63:02:89:da:fe:fe:a4:
e0:74:25:f1:7c:a7:89:ad:51:73:49:7a:9e:8e:6c:
9f:4c:7d:3d:6d:f4:4a:75:bf:e5:32:3a:69:68:95:
49:99:93:b6:16:ec:3c:90:5c:d4:59:73:3d:d0:c2:
45:8c:50:49:0c:84:b5:df:22:bb:52:3d:f6:ab:a8:
c8:3e:5e:64:2a:0d:60:2c:1b:d3:48:91:6f:77:3f:
23:e8:d3:bf:52:a5:1d:65:de:41:59:cd:b5:1f:f2:
a1:24:51:d3:af:a5:ee:df:7d:d0:3a:72:1a:54:1b:
e9:3c:34:b3:09:7e:7a:37:f8:f7:88:58:e5:1d:6b:
a2:5e:33:a8:6b:f4:d2:fb:8b:2d:a3:fc:a7:04:23:
ba:fc:46:e8:3f:72:ff:a5:49:68:ab:30:51:c2:7d:
97:c0:05:31:5d:2d:fe:9f:6d:de:62:a0:94:5a:80:
c4:4a:e5:5d:0f:9d:d3:c5:cc:09:fb:31:9a:48:36:
de:e3:49:b8:c6:ac:83:e9:63:9e:4e:15:f3:e1:0c:
d0:9a:e5:64:3d:72:83:3f:ff:03:99:ea:5e:b5:ea:
f8:ad:88:1a:83:2c:75:6a:43:99:95:9b:a3:b6:0d:
71:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:49:84:03:28:76:15:41:7B:55:48:39:BC:44:2B:A4:D3:CD:3A:0A
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/qUmEAyh2FUF7VUg5vEQrpNPNOgo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.160.0/20
Signature Algorithm: sha256WithRSAEncryption
0b:ad:89:a8:86:51:48:8f:3c:3a:3f:ec:d4:ac:d9:af:09:6b:
1d:5a:1f:e1:b4:ee:eb:2d:8a:3d:ca:6b:66:b0:fb:6a:a3:bd:
b0:a2:d2:0c:79:ce:97:d5:f8:7f:e4:e3:d4:af:b5:c3:60:9c:
45:e4:00:de:a7:c6:cb:c2:15:26:07:e0:68:aa:cb:de:62:68:
6c:10:6e:db:6f:8a:e1:d9:d9:42:dc:4a:49:ca:6d:98:79:fa:
af:ec:94:9a:8f:71:49:aa:80:9e:00:03:76:3e:27:74:11:06:
4f:e2:5d:36:0d:fe:a8:36:9c:61:1b:48:84:85:5f:bb:72:14:
0c:09:0c:ea:55:dd:43:14:97:cf:12:ff:59:75:ed:a1:75:ee:
5e:51:21:01:b8:6b:c6:66:74:92:0d:ff:6f:9f:e2:e6:c2:e1:
b9:d0:c0:45:fa:3d:25:0d:b6:19:8d:15:ae:3a:74:8a:99:98:
92:64:27:6f:0d:90:b4:2a:2a:bf:99:cc:3b:96:32:1a:19:2f:
14:5c:30:b7:98:b1:58:89:f4:52:53:95:91:56:cd:ba:50:76:
24:73:36:97:78:be:1a:a9:fb:3a:cb:2e:14:a9:50:c0:d7:57:
d3:36:0d:f4:91:8f:98:51:f9:b3:70:d2:8f:90:29:6c:cd:40:
e9:be:b6:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:53:40 2023 by rpki-client on console-ams.rpki-client.org