Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/uYLf7RX7iqXh-TqMZnw5c8-M9dU.roa
File: uYLf7RX7iqXh-TqMZnw5c8-M9dU.roa (raw, json)
Hash identifier: PDEX/7/8VqR0dq55ARe/imYjTAPudOCaTBPQEcieLww=
Subject key identifier: B9:82:DF:ED:15:FB:8A:A5:E1:F9:3A:8C:66:7C:39:73:CF:8C:F5:D5
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 21D9
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/uYLf7RX7iqXh-TqMZnw5c8-M9dU.roa
Signing time: Mon 26 Aug 2024 05:33:24 +0000
ROA not before: Mon 26 Aug 2024 05:33:24 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24164
IP address blocks: 49.158.144.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:18:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8665 (0x21d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Aug 26 05:33:24 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=B982DFED15FB8AA5E1F93A8C667C3973CF8CF5D5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:02:30:11:3e:3d:2c:db:78:72:c4:aa:72:83:
dd:fc:56:42:b8:bc:05:b5:18:01:bc:dc:21:6a:d2:
e4:d1:98:97:e0:bc:cb:e0:70:04:9b:41:e8:ea:29:
7d:d3:30:ca:5a:d4:fb:a2:91:a5:4a:01:6d:3f:35:
13:ff:29:29:22:c4:f6:10:e0:1a:2d:02:98:f6:a2:
6a:a6:d3:6a:36:06:32:41:8a:7a:42:86:bc:80:ed:
ef:c7:09:4d:5f:de:ea:4d:04:aa:e7:d6:64:21:0b:
20:59:f5:ca:02:29:12:d2:fe:c4:d1:83:5f:e9:06:
ce:47:79:5d:62:a3:94:b6:52:c6:3b:35:b0:92:e8:
0c:19:6b:71:64:e2:95:79:1f:18:0d:8d:0e:00:eb:
69:ae:d1:57:6d:13:16:35:18:cb:48:0c:0a:66:47:
1e:9b:cd:5b:84:81:64:6a:a1:e6:33:af:6b:37:ac:
c7:dc:f2:13:43:7c:99:00:10:f9:93:f6:69:e2:d2:
16:f4:d5:97:f9:36:fc:61:ad:e6:22:ad:c9:9e:75:
a0:25:c4:52:b4:c5:03:5d:3c:e9:23:0c:3a:cb:6d:
11:f9:c6:8c:eb:e7:14:4b:75:51:98:49:fd:0c:f0:
b9:eb:fa:01:88:b4:9f:f3:d9:91:f7:8b:d6:a3:0a:
45:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:82:DF:ED:15:FB:8A:A5:E1:F9:3A:8C:66:7C:39:73:CF:8C:F5:D5
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/uYLf7RX7iqXh-TqMZnw5c8-M9dU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.158.144.0/24
Signature Algorithm: sha256WithRSAEncryption
47:6c:24:6d:ff:df:7e:4e:de:86:4e:74:e1:dc:9f:c5:50:ba:
ae:d8:c2:4e:92:82:02:73:ca:aa:08:0c:69:56:c3:53:55:92:
dd:82:11:2f:72:43:67:0f:84:24:37:c1:7b:8b:c9:75:63:cc:
32:de:9d:b1:89:b3:34:b2:20:a2:b3:05:ca:f3:af:a4:82:73:
ec:59:11:0f:0e:99:1e:d2:f0:34:6c:d0:74:9c:89:04:fe:83:
29:a0:f7:eb:8d:11:fc:e1:2b:b2:4d:18:a5:a7:2b:7c:0c:b2:
8a:56:32:df:42:0b:96:f4:ed:2b:94:7d:71:4b:c4:41:44:b7:
26:69:65:b1:c7:b1:cd:b6:4e:6d:5d:cf:45:8b:bc:c8:1b:fc:
25:7c:50:2e:dc:63:8b:26:bc:b7:5b:01:ec:21:62:22:b0:b5:
e4:57:23:4d:b8:13:8c:c4:d4:04:34:bd:b5:73:4a:d3:b2:5d:
25:6b:22:dd:7d:8f:d4:e1:61:42:b8:a3:26:8f:e4:a7:75:8e:
88:90:27:f9:38:c3:5b:2f:84:2b:b5:49:aa:37:84:0b:37:f5:
74:3b:3b:ef:24:8c:00:b9:a8:ee:23:cc:16:dc:ab:85:45:d9:
e2:68:42:20:61:78:8c:5b:4f:e8:ea:82:76:a8:31:81:3e:4a:
5b:95:00:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:03:11 2025 by rpki-client