Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/uaMffgaO0oGj-eu5o_qJX8fP63w.roa
File: uaMffgaO0oGj-eu5o_qJX8fP63w.roa (raw, json)
Hash identifier: N5ucWqEgnoKsh+lqJOWplzfdfL21toK0dGSKsBnyruk=
Subject key identifier: B9:A3:1F:7E:06:8E:D2:81:A3:F9:EB:B9:A3:FA:89:5F:C7:CF:EB:7C
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 227D
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/uaMffgaO0oGj-eu5o_qJX8fP63w.roa
Signing time: Mon 26 Aug 2024 05:34:03 +0000
ROA not before: Mon 26 Aug 2024 05:34:03 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24164
IP address blocks: 119.77.144.0/20 maxlen: 23
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:18:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8829 (0x227d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Aug 26 05:34:03 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=B9A31F7E068ED281A3F9EBB9A3FA895FC7CFEB7C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:2f:e0:9a:78:4c:a4:80:c8:4b:aa:5b:2c:eb:
cf:d3:81:71:1c:e5:6c:c5:f7:4f:a0:3f:4c:9c:6a:
2a:f0:66:25:f7:f6:11:b3:ab:55:ea:28:15:94:69:
f8:94:8c:47:28:8f:2b:89:08:d4:e2:d3:3b:6b:ff:
db:04:7e:24:37:11:7f:df:83:ac:e0:2a:fb:73:c8:
ac:d6:10:48:1d:4f:6f:63:a5:ea:d1:67:7e:1f:21:
b8:70:f8:05:ce:5d:a0:be:c5:43:e7:aa:71:87:42:
1c:d6:ab:8d:d9:bf:4e:68:f9:d0:cf:d5:82:a0:77:
69:40:08:32:16:95:47:98:9a:fe:db:e8:19:d7:47:
d1:56:84:e8:d8:36:a9:e1:c2:a9:5b:db:86:4d:09:
70:81:fd:e5:90:f0:e3:6d:24:ef:5d:d4:86:a2:ce:
49:fb:21:d5:cb:1a:d6:c1:85:6b:7f:ea:85:cf:6a:
59:47:6c:92:c3:18:0e:fd:e1:97:d1:b7:49:31:21:
cf:08:1d:1a:6e:86:f3:2a:09:be:5c:6e:af:29:41:
fc:c7:95:2b:33:68:8f:3e:c5:44:92:df:66:e5:ac:
99:14:9e:e0:cb:2b:78:d4:12:47:ed:f3:f5:19:dc:
38:f9:72:af:a3:f3:ae:75:1f:ae:6d:26:7e:5e:b8:
f5:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:A3:1F:7E:06:8E:D2:81:A3:F9:EB:B9:A3:FA:89:5F:C7:CF:EB:7C
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/uaMffgaO0oGj-eu5o_qJX8fP63w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.77.144.0/20
Signature Algorithm: sha256WithRSAEncryption
63:96:61:98:62:5a:57:38:e5:41:0b:3f:a0:17:67:2d:11:3a:
44:0c:c2:8e:48:e3:70:65:78:56:0c:e8:87:06:d9:57:b7:4d:
01:b2:a0:cd:e4:44:ac:d9:33:3a:cb:bb:ec:a1:c3:e9:9c:a8:
09:bc:87:33:9e:c1:91:06:11:eb:f3:12:76:af:2f:75:47:0b:
fe:50:f2:4e:2b:eb:51:aa:14:c5:b0:38:43:51:0b:bd:b4:b7:
84:a6:23:3c:88:d7:f2:24:ca:18:fc:4c:d9:4f:99:bb:0f:7a:
60:56:95:1a:51:08:85:11:cf:9f:d6:b7:7a:42:88:94:05:0d:
79:a1:1b:b0:33:7c:f2:14:90:48:3c:fc:c5:c7:c5:f4:aa:1b:
69:dc:87:2c:8f:e4:ea:4f:a4:62:f6:c0:bd:7d:7f:4b:9f:40:
db:63:6d:a0:23:d1:d9:90:ab:db:13:79:3d:6d:0f:e9:c0:5a:
f7:3d:82:ca:b1:f4:2e:25:cd:13:98:56:d1:16:e2:f6:0c:bc:
7d:8f:5d:14:8e:69:6d:c9:67:dd:fb:f7:43:48:cb:71:5d:9d:
a1:8a:59:77:42:07:78:90:4f:57:76:7a:83:5d:2f:e9:dc:b6:
90:0a:c5:19:bc:9c:d7:85:7b:3d:88:a3:9d:aa:27:34:ed:9f:
0f:e0:92:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:50:49 2025 by rpki-client