Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/y1x7ipMrOWDV9ofl2Vck_9z8e_A.roa
File: y1x7ipMrOWDV9ofl2Vck_9z8e_A.roa (raw, json)
Hash identifier: D2Aa8m7KVJR4WWVhp903D/lAKCrT3HXFRwm/H/lXOxk=
Subject key identifier: CB:5C:7B:8A:93:2B:39:60:D5:F6:87:E5:D9:57:24:FF:DC:FC:7B:F0
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 2185
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/y1x7ipMrOWDV9ofl2Vck_9z8e_A.roa
Signing time: Mon 26 Aug 2024 05:33:04 +0000
ROA not before: Mon 26 Aug 2024 05:33:04 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24165
IP address blocks: 180.218.104.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:18:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8581 (0x2185)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Aug 26 05:33:04 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=CB5C7B8A932B3960D5F687E5D95724FFDCFC7BF0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:65:ca:1e:06:f9:4b:56:59:3f:ad:0d:a5:41:
69:56:64:c5:e4:7e:3a:07:3f:8f:48:8f:57:b1:20:
af:63:1f:b1:54:bf:d1:8b:0c:8c:d0:55:45:6d:67:
d2:3e:59:f5:25:12:c7:09:c4:7e:05:b3:0f:a1:cc:
3a:d1:94:db:39:eb:28:02:5d:f1:22:56:6f:89:45:
d2:12:10:27:34:38:58:3e:40:81:97:c8:ae:06:fa:
79:34:16:b9:27:ee:46:12:79:a3:8b:3f:35:0e:5d:
a2:2c:98:89:ee:39:38:1f:2d:59:18:c1:e8:03:20:
bf:8f:ea:f9:ae:77:c5:fa:47:de:b2:d3:3c:69:1a:
43:30:98:eb:04:5f:f6:07:e2:35:7c:86:ea:90:cd:
2a:ad:8c:e6:6f:c9:bf:0a:6f:f5:f5:2b:a8:79:ef:
60:46:4c:48:87:34:2b:53:28:5f:bc:c3:54:0a:07:
05:18:3a:10:14:20:8e:a8:98:ec:51:65:49:68:1c:
ae:1d:83:da:fa:33:c1:15:c6:90:2b:38:e2:0f:34:
89:76:61:fc:76:dc:82:01:92:3f:d3:f7:53:ae:5f:
9e:0e:79:e0:ed:1f:38:42:ff:5e:1c:2d:08:83:0d:
44:06:74:f5:da:99:20:c1:f9:a2:e4:27:09:55:38:
33:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:5C:7B:8A:93:2B:39:60:D5:F6:87:E5:D9:57:24:FF:DC:FC:7B:F0
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/y1x7ipMrOWDV9ofl2Vck_9z8e_A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
180.218.104.0/22
Signature Algorithm: sha256WithRSAEncryption
17:1b:19:36:0f:c0:c1:e4:d9:c0:ba:1a:95:c8:a6:45:4d:bd:
dc:b3:95:9d:a6:1a:3c:99:22:13:3d:4c:2c:ca:7f:03:9b:b9:
1f:45:88:66:35:c0:d2:fc:cf:1c:da:00:54:8e:6b:3c:67:08:
d4:7e:b2:1c:d4:a6:94:dc:84:36:3e:d9:45:ea:b3:ae:20:94:
73:24:59:e8:4e:0e:e5:16:8e:08:15:77:29:25:83:12:f1:c4:
21:76:5d:d8:82:84:0e:8a:c7:ff:32:0c:2c:fd:a8:28:81:8d:
4a:7e:33:9f:38:eb:3e:c4:ac:55:a9:8c:2a:8e:05:c6:f0:50:
26:17:96:50:67:88:c7:04:fb:95:e9:a6:2e:b2:f9:03:8d:63:
89:7c:82:25:8b:ac:4f:12:38:9c:45:c8:68:dc:3f:52:7e:b1:
f4:81:61:d4:dc:d7:b9:16:bb:6b:2f:15:c4:02:ef:dc:0f:e0:
64:69:1e:2b:57:c6:1e:11:6d:3a:f6:c9:fd:b7:a3:22:ff:c1:
ac:a6:2a:04:0f:e1:34:b0:50:9e:6e:e8:c8:73:31:48:ba:3f:
91:8d:e1:dc:c7:e4:19:59:8c:42:c6:86:17:d9:ff:72:d7:14:
da:b0:3c:44:bf:08:a9:6a:fb:47:ee:94:97:1f:2d:bc:da:cf:
c0:01:b5:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:53:38 2025 by rpki-client