Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/z2O5sq4dcqR5xugcmJGxp4gnqvw.roa
File: z2O5sq4dcqR5xugcmJGxp4gnqvw.roa (raw, json)
Hash identifier: dMQQu7i9Pw3b9qeVjUZK9QiO7REukjxXTTMmE71X3CE=
Subject key identifier: CF:63:B9:B2:AE:1D:72:A4:79:C6:E8:1C:98:91:B1:A7:88:27:AA:FC
Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial: 2283
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/z2O5sq4dcqR5xugcmJGxp4gnqvw.roa
Signing time: Mon 26 Aug 2024 05:34:05 +0000
ROA not before: Mon 26 Aug 2024 05:34:05 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24164
IP address blocks: 61.61.208.0/20 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:18:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8835 (0x2283)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
Validity
Not Before: Aug 26 05:34:05 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=CF63B9B2AE1D72A479C6E81C9891B1A78827AAFC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:1d:e0:a0:2f:30:13:32:72:b2:d1:5c:a0:0a:
2e:db:98:04:e1:25:66:1a:34:f1:bf:f5:31:b2:2e:
0b:ba:f5:b4:38:d7:4e:ac:34:6c:a5:74:fc:70:20:
1d:b8:0e:01:b1:3b:4a:ea:1d:47:5d:56:75:91:d9:
a1:e8:e2:5a:0e:04:4e:96:1d:fc:a0:9c:f0:60:78:
2e:7c:53:63:93:b4:4c:b2:88:0f:c9:22:3e:35:51:
53:f7:13:1f:e2:da:be:c7:1a:3d:dd:77:1c:65:e4:
bb:70:da:a2:a7:b5:64:23:c2:2b:87:8e:46:f8:a3:
4c:b3:d7:0c:77:19:62:49:80:36:1e:d9:af:4a:35:
9a:f0:4d:db:69:9a:9c:be:c4:de:2d:be:cf:b6:c1:
bf:cb:84:aa:5c:58:fe:5c:76:b8:2a:1f:02:fb:9e:
c1:c3:06:85:11:e4:9d:8d:72:8e:01:95:57:b5:49:
56:ea:5a:82:f1:bf:8c:9b:34:58:19:99:0a:2e:86:
8d:9c:25:68:3b:d2:3d:e3:57:9f:15:04:26:57:65:
72:dd:80:b0:90:c9:1d:ba:50:cc:ff:46:6d:02:ee:
46:a0:19:40:a5:92:51:5b:85:71:32:60:b5:d3:dd:
27:90:15:e3:b2:e5:16:74:c3:56:7e:67:31:25:71:
c6:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:63:B9:B2:AE:1D:72:A4:79:C6:E8:1C:98:91:B1:A7:88:27:AA:FC
X509v3 Authority Key Identifier:
keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/z2O5sq4dcqR5xugcmJGxp4gnqvw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.61.208.0/20
Signature Algorithm: sha256WithRSAEncryption
53:72:39:85:4c:97:b1:b7:01:b9:fb:53:42:90:97:0b:7e:9c:
d6:29:74:01:3f:0e:be:f4:96:ff:da:82:84:97:e0:e4:2c:46:
f2:14:91:92:3e:fb:b6:9a:3e:4a:6e:df:5d:2d:c0:61:dd:8f:
0d:9e:35:36:5a:11:75:af:1b:32:a6:06:35:75:da:3c:62:4e:
b2:ee:26:f9:76:5d:f7:56:32:ae:0b:08:63:ae:00:52:ec:92:
71:be:5c:8f:31:79:33:92:dd:84:d5:36:15:ba:67:e5:7e:48:
8a:6f:62:fd:2b:38:24:1a:9f:41:0e:77:3b:f5:31:23:25:3c:
59:e9:5a:8f:18:4c:69:5b:d1:03:d5:46:05:71:12:82:72:25:
2c:94:81:8a:9d:77:7e:f6:3b:46:ab:d5:5b:c0:4f:0e:2a:c3:
bb:77:ad:0e:9d:8d:b4:38:9b:63:1e:7a:2f:cb:47:92:2a:58:
e9:ad:60:1d:b4:2b:63:4a:2d:97:73:b3:25:c9:00:16:93:fb:
1d:0e:17:14:ca:1f:9e:f4:c2:a6:9f:03:bc:fe:11:21:5c:71:
52:ef:db:d2:f0:01:3c:8c:ce:c8:6b:21:c5:64:f6:72:c9:bb:
c3:b7:25:9b:34:1a:12:25:74:d6:6c:5d:0a:a3:c6:f9:7a:79:
f7:55:4b:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:59:46 2025 by rpki-client