Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/wT6GscPF4lTqn0WDaAiqHWoVRUk.roa
File: wT6GscPF4lTqn0WDaAiqHWoVRUk.roa (raw, json)
Hash identifier: 7JuQY1ypWZPdx3lnS7XzXbn/MmwQ2vvExV6Xa+FDMNw=
Subject key identifier: C1:3E:86:B1:C3:C5:E2:54:EA:9F:45:83:68:08:AA:1D:6A:15:45:49
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 21B3
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/wT6GscPF4lTqn0WDaAiqHWoVRUk.roa
Signing time: Mon 26 Aug 2024 05:33:15 +0000
ROA not before: Mon 26 Aug 2024 05:33:15 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24164
IP address blocks: 49.159.56.0/21 maxlen: 21
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:19:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8627 (0x21b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Aug 26 05:33:15 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C13E86B1C3C5E254EA9F45836808AA1D6A154549
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:7b:34:b5:29:ee:c8:f5:fd:39:b8:2f:ca:36:
38:ab:0a:c5:4b:c7:9d:1a:9b:eb:07:69:6f:cb:7c:
11:98:76:ab:cb:5b:45:d6:6b:10:99:3e:26:90:43:
17:eb:c8:6a:8b:23:16:da:7d:c7:b9:ca:45:b9:23:
78:e9:f2:8d:5a:f7:1b:55:cb:7c:76:03:14:11:63:
f8:a8:5a:4b:d9:4b:ed:28:96:9f:e4:ba:38:08:54:
58:55:88:4b:83:de:75:5b:21:ff:2f:25:5a:8d:c0:
61:2e:38:1e:63:fe:9a:05:fc:3a:0a:c6:bd:71:13:
32:82:18:73:58:eb:b9:9a:0c:a0:85:84:d2:0a:ef:
22:4d:3a:c5:34:1a:b1:e9:dc:01:99:ec:a3:42:5f:
3c:05:95:c8:02:51:d4:3f:89:f5:0c:a7:92:93:fe:
8a:ef:d7:d4:bc:a3:f2:ad:92:dd:1c:20:7a:bc:19:
44:44:85:84:43:be:a7:c3:ad:63:02:d8:97:ee:11:
07:76:89:80:b2:15:66:fa:4a:69:c8:89:71:d9:60:
12:c6:ae:e2:1d:15:80:9e:c0:94:6e:e0:45:ee:c1:
d6:f0:f5:11:f8:81:80:71:0b:c2:b9:3b:34:04:26:
bc:fc:20:8d:12:73:c0:fd:8a:29:b0:73:9a:8f:6e:
92:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:3E:86:B1:C3:C5:E2:54:EA:9F:45:83:68:08:AA:1D:6A:15:45:49
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/wT6GscPF4lTqn0WDaAiqHWoVRUk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
49.159.56.0/21
Signature Algorithm: sha256WithRSAEncryption
8b:25:51:37:e3:3f:2b:b3:c0:8f:ec:85:71:48:9c:e9:a5:e1:
02:18:56:72:60:b7:81:a3:a7:a6:eb:0e:77:23:33:11:17:44:
be:d2:02:5c:6b:e2:8d:fe:f6:6c:5b:31:21:d5:51:d6:c9:5b:
40:d4:69:8c:96:4c:9f:8f:f8:ff:ad:9e:87:4e:a8:99:9a:d7:
3a:5f:5d:4e:e7:c2:1f:34:96:1f:72:81:a0:eb:0c:07:7b:8d:
fb:bb:72:1f:3f:fa:9c:35:fb:ac:f2:96:ea:25:6d:ed:9f:83:
8a:08:59:40:20:d6:4d:67:78:59:84:02:cc:97:43:2f:19:ce:
b3:33:ab:1b:ca:f2:e7:1d:c7:2b:69:be:9c:22:f5:d4:f2:c0:
da:5d:04:13:80:eb:49:30:ba:b6:62:16:a6:81:2a:b5:3c:78:
55:1a:35:9b:19:62:ca:7b:92:35:30:b9:c2:0b:b8:8b:a6:0c:
19:10:f1:4e:54:5c:4d:31:d1:66:17:37:ac:81:da:20:d4:d2:
d9:f2:05:8e:f2:e6:71:2f:df:6c:89:d7:a2:33:68:06:a8:44:
b7:f2:36:bb:ab:7b:07:9b:e7:c2:7d:27:68:ce:07:e1:07:9c:
4d:6d:b0:41:ac:0a:1f:7f:fe:f9:f7:44:ad:ec:57:ca:87:18:
44:ff:cf:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:08:04 2025 by rpki-client