Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/u03Y4WGEiyCnzmcOT3D-N9iPgPE.roa
File: u03Y4WGEiyCnzmcOT3D-N9iPgPE.roa (raw, json)
Hash identifier: SjZcVBTUphPf6aptti9xDC40sl0SrLAQEMsdi3hOcnc=
Subject key identifier: BB:4D:D8:E1:61:84:8B:20:A7:CE:67:0E:4F:70:FE:37:D8:8F:80:F1
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 2204
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/u03Y4WGEiyCnzmcOT3D-N9iPgPE.roa
Signing time: Mon 26 Aug 2024 05:33:35 +0000
ROA not before: Mon 26 Aug 2024 05:33:35 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24164
IP address blocks: 61.60.208.0/20 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:17:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8708 (0x2204)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Aug 26 05:33:35 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=BB4DD8E161848B20A7CE670E4F70FE37D88F80F1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:74:e0:2e:8c:65:16:72:52:de:15:b8:fc:93:
16:10:b0:62:82:78:1e:f3:b3:51:4c:09:4c:b9:cf:
0f:16:f2:45:2a:52:bc:b6:2b:6d:e3:ae:e3:9f:90:
78:ae:5c:0e:b7:b9:28:83:e0:26:3d:80:d9:e7:07:
06:de:fb:21:24:7e:b1:02:d3:2b:8a:a5:6f:21:50:
0d:1b:8b:4d:d5:99:d7:31:ac:76:ca:d0:bf:08:6c:
26:0b:80:a3:d9:c3:f4:30:8a:d7:2a:f9:a4:1d:c6:
8e:ba:0f:c0:3c:4f:74:9a:50:44:df:2a:14:e4:a8:
52:ee:aa:27:1d:f2:24:9d:a3:57:2a:e5:4e:6c:09:
00:de:f9:b2:3a:f1:21:c7:8d:54:0c:c4:b0:7b:bb:
8d:89:c6:ad:3e:74:5b:23:92:90:96:47:61:9b:a2:
8d:06:e4:5d:bd:cf:9a:c7:b9:a7:bd:8d:eb:a4:12:
64:08:3a:2d:2d:1c:2f:33:a9:b5:4f:62:03:86:24:
42:cc:38:5c:e7:58:28:8d:81:4a:56:dc:a0:f1:ec:
ce:6a:0e:ac:16:35:3d:95:1d:b8:32:1c:89:9c:11:
06:40:61:e9:df:ad:e4:7f:c9:c8:ed:ba:94:6f:b0:
44:c5:3b:61:c1:e5:c4:7a:1b:ac:81:0b:64:90:d8:
bd:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:4D:D8:E1:61:84:8B:20:A7:CE:67:0E:4F:70:FE:37:D8:8F:80:F1
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/u03Y4WGEiyCnzmcOT3D-N9iPgPE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.60.208.0/20
Signature Algorithm: sha256WithRSAEncryption
85:69:e8:17:ad:bf:4d:2f:68:56:82:cd:d5:06:68:f8:b8:16:
e6:81:39:56:bd:f1:cc:66:8c:e3:63:a0:b3:7f:52:2a:6b:41:
13:10:e1:40:94:8e:c0:25:f7:85:39:4b:38:6d:88:bd:35:5c:
d1:7d:b7:23:2c:da:1e:d6:9d:78:87:fb:20:d5:fe:d6:4b:b6:
c7:fd:68:5b:e7:d4:8c:ed:07:69:d6:55:2c:5a:41:00:87:54:
89:00:a2:86:06:79:2a:43:7b:ce:96:85:8a:2a:ad:d6:f8:84:
86:ff:15:96:c3:e2:4a:fb:8b:49:d7:61:05:39:86:da:3e:1d:
3b:ee:1c:48:fb:17:16:dc:9d:e7:b2:f6:d0:4b:d6:40:80:7c:
18:53:b4:fa:e2:b8:23:19:aa:89:8d:62:a8:6d:d6:97:21:7c:
9c:ca:e3:5c:e2:45:43:34:7f:1e:47:e7:a9:c2:1e:99:56:34:
dd:d5:6b:4d:51:aa:d0:78:aa:e8:3e:0b:10:22:9a:f9:fd:d0:
ad:3e:8d:d8:22:17:4a:20:ce:20:0a:30:ac:1c:79:be:0e:2c:
96:cc:81:2e:fd:36:a8:23:d8:04:01:73:55:83:b0:98:32:64:
b3:fa:fc:29:e2:01:5a:45:2f:41:84:7c:57:c1:0a:8b:86:21:
8a:79:e1:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:00:21 2025 by rpki-client