Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/raloYtEYL-y4JJ6Zfiq1WfBOcq0.roa
File: raloYtEYL-y4JJ6Zfiq1WfBOcq0.roa (raw, json)
Hash identifier: coE4mVxFB0p4+HP4x7M1epp9RyiaPiwW59V9TaB/8ok=
Subject key identifier: AD:A9:68:62:D1:18:2F:EC:B8:24:9E:99:7E:2A:B5:59:F0:4E:72:AD
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 19BE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/raloYtEYL-y4JJ6Zfiq1WfBOcq0.roa
Signing time: Sat 22 Oct 2022 06:08:44 +0000
ROA not before: Sat 22 Oct 2022 06:08:44 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 49.159.24.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6590 (0x19be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Oct 22 06:08:44 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=ADA96862D1182FECB8249E997E2AB559F04E72AD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:fb:f5:42:7f:f3:fd:70:90:da:25:a4:07:84:
b7:e9:7a:a0:52:4f:ac:6d:67:b5:c2:fb:ec:16:74:
9a:83:f8:5e:f4:28:77:66:7d:7e:2b:10:1c:26:68:
4d:bd:d0:52:34:bf:77:19:a5:70:56:ca:e6:29:d4:
2a:76:f4:ac:ca:f9:14:c0:1a:7c:cc:1f:d1:0b:b2:
2f:eb:a6:ee:00:22:e5:7d:4a:23:ef:ef:8e:45:78:
2f:a2:d2:2b:6f:35:82:00:69:ac:a6:88:8d:ce:c6:
45:a2:e5:0c:55:93:84:3b:81:69:e6:55:d2:dd:ca:
0a:f5:98:db:3d:2c:83:e6:e5:1d:25:29:a4:91:c4:
f6:f9:57:52:8c:60:99:88:de:e9:47:35:ac:f5:ef:
f4:a7:dc:f6:b5:67:90:5f:ce:1f:a5:6f:98:6a:2b:
61:92:e7:fc:55:4a:cb:19:bb:33:14:51:65:9d:9c:
67:a2:f6:cf:14:91:97:89:b8:9b:8a:66:f9:7f:91:
62:eb:0d:c2:43:24:99:2b:f9:ba:f1:1a:36:97:06:
ca:c7:fb:cd:7a:4e:74:18:82:a9:51:5b:98:18:31:
82:72:69:a6:95:61:01:23:46:84:bf:1f:3b:16:60:
9c:b8:c0:c1:de:e9:89:56:e1:b1:6c:88:80:0f:06:
b2:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:A9:68:62:D1:18:2F:EC:B8:24:9E:99:7E:2A:B5:59:F0:4E:72:AD
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/raloYtEYL-y4JJ6Zfiq1WfBOcq0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.159.24.0/21
Signature Algorithm: sha256WithRSAEncryption
37:b9:f3:c1:d1:36:ba:ac:7e:7b:2c:46:b7:57:ba:de:e1:37:
ff:11:31:4a:6d:de:c9:e9:4d:b3:e3:b2:83:c8:c2:33:5b:78:
c8:ee:b5:d9:5b:ca:b3:13:f5:c4:e1:56:4c:90:19:01:b7:74:
d8:67:14:42:b3:cc:a2:af:00:25:00:a2:41:4e:ff:54:6e:82:
97:b3:ec:57:63:bc:4c:f0:64:a4:10:97:c7:ec:5c:a7:68:b6:
57:b2:47:94:4f:db:fe:6f:cc:0a:d5:ed:8e:9f:e4:b9:eb:7f:
fb:96:2a:ae:c5:31:0e:6b:06:63:ca:1c:5f:f5:6c:25:ad:28:
7a:32:ed:6c:f2:b4:89:6b:d2:e1:ac:5a:9d:e1:48:42:a4:d6:
d7:1f:9e:f9:2c:22:a4:a2:f6:7d:55:69:f4:a4:d5:ca:41:a5:
80:ec:04:c6:8a:88:78:92:95:ea:1e:7c:c5:5d:e8:d4:b4:a2:
82:e9:10:ef:fa:9a:04:0a:ab:7a:2f:97:19:44:04:52:e3:cf:
b4:c0:dd:43:e0:82:c1:61:13:2f:27:02:3a:7e:3c:d4:91:d8:
8f:8c:6e:7e:ab:f1:10:1c:f2:ca:46:50:bd:98:6e:9a:88:1e:
ef:e8:c2:44:fe:5a:35:65:5f:50:fe:3d:00:03:10:47:79:9d:
41:a2:83:51
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICGb4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMjEwMjIw
NjA4NDRaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEFEQTk2ODYyRDExODJG
RUNCODI0OUU5OTdFMkFCNTU5RjA0RTcyQUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDC+/VCf/P9cJDaJaQHhLfpeqBST6xtZ7XC++wWdJqD+F70KHdm
fX4rEBwmaE290FI0v3cZpXBWyuYp1Cp29KzK+RTAGnzMH9ELsi/rpu4AIuV9SiPv
745FeC+i0itvNYIAaaymiI3OxkWi5QxVk4Q7gWnmVdLdygr1mNs9LIPm5R0lKaSR
xPb5V1KMYJmI3ulHNaz17/Sn3Pa1Z5Bfzh+lb5hqK2GS5/xVSssZuzMUUWWdnGei
9s8UkZeJuJuKZvl/kWLrDcJDJJkr+brxGjaXBsrH+816TnQYgqlRW5gYMYJyaaaV
YQEjRoS/HzsWYJy4wMHe6YlW4bFsiIAPBrITAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUraloYtEYL+y4JJ6Zfiq1WfBOcq0wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3JhbG9ZdEVZTC15NEpKNlpm
aXExV2ZCT2NxMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx
nxgwDQYJKoZIhvcNAQELBQADggEBADe588HRNrqsfnssRrdXut7hN/8RMUpt3snp
TbPjsoPIwjNbeMjutdlbyrMT9cThVkyQGQG3dNhnFEKzzKKvACUAokFO/1Rugpez
7FdjvEzwZKQQl8fsXKdotleyR5RP2/5vzArV7Y6f5Lnrf/uWKq7FMQ5rBmPKHF/1
bCWtKHoy7WzytIlr0uGsWp3hSEKk1tcfnvksIqSi9n1VafSk1cpBpYDsBMaKiHiS
leoefMVd6NS0ooLpEO/6mgQKq3ovlxlEBFLjz7TA3UPggsFhEy8nAjp+PNSR2I+M
bn6r8RAc8spGUL2YbpqIHu/owkT+WjVlX1D+PQADEEd5nUGig1E=
-----END CERTIFICATE-----
Generated at Fri Sep 1 10:53:40 2023 by rpki-client on console-ams.rpki-client.org