Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/yWUqDEIKlo66Ap5hmVaEQZGfdo4.roa
File: yWUqDEIKlo66Ap5hmVaEQZGfdo4.roa (raw, json)
Hash identifier: xG/qdY1QhD+YyZoR+rVYTJngRC4AP8JM31IScEypFEU=
Subject key identifier: C9:65:2A:0C:42:0A:96:8E:BA:02:9E:61:99:56:84:41:91:9F:76:8E
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 222B
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/yWUqDEIKlo66Ap5hmVaEQZGfdo4.roa
Signing time: Mon 26 Aug 2024 05:33:45 +0000
ROA not before: Mon 26 Aug 2024 05:33:45 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24164
IP address blocks: 124.6.0.0/19 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:17:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8747 (0x222b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Aug 26 05:33:45 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=C9652A0C420A968EBA029E6199568441919F768E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:48:77:39:b3:6f:31:90:d9:fc:f0:4e:85:e9:
1c:32:90:31:12:87:f8:50:82:81:7e:f7:15:a7:00:
d8:57:02:6a:5f:31:d3:8f:46:b8:09:c3:e7:8d:34:
e4:2b:9b:57:f2:47:da:7d:97:af:6f:fc:27:17:12:
03:9d:b8:4a:3d:7d:aa:c7:58:f7:48:a8:7b:7e:3f:
35:40:43:70:f8:13:41:26:37:80:b9:34:e7:f2:f0:
9a:c9:b6:4f:52:e7:f8:10:af:46:ff:c6:81:c2:aa:
29:d3:a6:3b:2f:49:55:88:d3:75:ef:35:ef:4d:6d:
a7:32:d9:02:bc:e9:61:11:2a:b9:d9:68:e4:db:7b:
39:bf:d5:7d:c3:15:3b:2b:01:5d:38:0d:eb:c1:74:
e5:20:c2:53:49:ea:74:de:7b:35:eb:8e:18:f0:50:
a6:07:b3:66:8a:eb:1a:4b:e9:0b:1b:7c:f4:6c:f7:
47:bc:a8:08:61:53:88:13:a5:a6:7f:41:c9:24:94:
e9:2f:dc:d2:60:96:c5:f8:ea:5f:5e:19:21:53:92:
9f:42:26:9c:f6:58:3d:90:86:37:99:99:23:25:41:
2d:f0:27:f8:35:e6:4d:ac:10:27:82:32:3e:33:65:
66:a0:db:63:a6:56:6f:09:c3:dc:1c:18:3c:de:b3:
58:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:65:2A:0C:42:0A:96:8E:BA:02:9E:61:99:56:84:41:91:9F:76:8E
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/yWUqDEIKlo66Ap5hmVaEQZGfdo4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.6.0.0/19
Signature Algorithm: sha256WithRSAEncryption
2e:e4:f1:fb:7f:9a:06:24:38:ab:5f:c2:74:64:f2:83:e8:ec:
eb:b6:64:bd:37:00:13:38:a0:5d:54:b7:aa:d7:2e:0b:a9:f6:
ea:54:ca:04:60:7e:ef:96:0f:79:f3:c2:f2:f1:3d:ae:e6:60:
93:e4:84:8d:90:57:bc:2b:4d:d2:0c:79:9b:83:aa:a1:7f:f7:
3b:0f:8d:b1:e6:4c:32:cf:9c:ed:df:5f:59:37:87:4d:a5:78:
68:b2:c1:89:0a:21:63:1e:2b:18:ea:03:f1:b5:3e:b9:d2:57:
61:f5:39:6b:11:8d:3d:9d:60:bd:bd:04:39:29:e9:d6:a4:83:
3e:8a:07:b2:fb:17:4c:24:65:e8:6d:94:54:d0:f5:79:06:0f:
03:a6:43:af:5f:b5:ef:f9:b7:93:f0:86:02:95:d2:6a:ff:6d:
45:29:3f:ac:67:2c:b0:20:4f:fb:9e:0f:fb:9f:03:9b:bc:3f:
0e:32:89:4f:5d:8b:1f:99:79:65:16:b4:71:7c:82:37:db:1a:
69:06:8b:cc:72:c0:d8:86:ec:2d:d8:b0:a6:21:bc:9c:2f:0c:
64:93:48:3e:1f:f7:3d:83:e8:f3:4d:ee:bd:58:c1:f0:cb:8f:
c6:7c:96:2e:8e:6a:52:0a:d9:03:46:e5:06:c6:fe:34:a7:61:
86:03:8e:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:42:30 2025 by rpki-client