Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/-MiihUyD1HIzblMmShiI8KPaPG4.roa
File: -MiihUyD1HIzblMmShiI8KPaPG4.roa (raw, json)
Hash identifier: TjrzaYBJ5rZWtcFE4G1LQv6eSTPY6xWwzWeOKCwm2WI=
Subject key identifier: F8:C8:A2:85:4C:83:D4:72:33:6E:53:26:4A:18:88:F0:A3:DA:3C:6E
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-MiihUyD1HIzblMmShiI8KPaPG4.roa
Signing time: Thu 15 Sep 2022 02:40:02 +0000
ROA not before: Thu 15 Sep 2022 02:40:02 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 7482
IP address blocks: 218.34.0.0/16 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:40:02 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=F8C8A2854C83D472336E53264A1888F0A3DA3C6E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:87:40:65:12:b2:89:44:d8:21:49:93:20:5a:
24:62:5e:50:1d:d6:72:46:ce:97:8a:cc:5a:4f:07:
3b:ea:22:c9:68:4d:1d:b5:68:5c:b3:00:2e:cd:5b:
93:98:c4:34:13:44:df:e1:13:48:28:16:f3:7c:65:
d9:36:16:96:b8:4f:f0:03:3c:ce:2d:3f:d0:84:20:
f4:dc:71:61:ed:93:9b:92:e7:ed:68:7a:da:44:0d:
c3:0b:3a:af:c0:16:5d:2e:d1:1e:fe:b2:dc:67:71:
ee:b9:91:6b:b4:f7:c4:ec:eb:06:3d:aa:e5:fb:ba:
21:7c:48:44:62:dd:8c:c1:fc:d2:17:f8:b7:45:71:
bb:b8:fa:f1:c8:bb:fb:49:dd:12:7c:f1:ce:aa:1b:
2c:77:c2:23:7f:de:08:5c:72:6d:c4:23:f9:5e:d9:
3e:88:0e:d1:f5:20:89:1f:36:11:a8:c4:bc:23:31:
90:8f:04:20:6e:4d:3a:db:27:b5:60:ab:72:0a:5d:
d1:50:72:81:f7:ec:bf:a0:ed:f3:7b:e4:9a:55:5b:
80:54:65:98:ed:7d:9f:e3:b5:b6:40:7f:5b:c4:ef:
62:7a:e5:4e:57:ce:d0:0c:d5:c4:3a:75:db:90:73:
74:c9:51:fa:78:9d:78:79:ca:40:ef:36:fb:da:22:
2d:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:C8:A2:85:4C:83:D4:72:33:6E:53:26:4A:18:88:F0:A3:DA:3C:6E
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-MiihUyD1HIzblMmShiI8KPaPG4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.34.0.0/16
Signature Algorithm: sha256WithRSAEncryption
6f:4b:c7:67:23:7d:73:c1:ed:ac:0c:59:cf:a8:45:86:1f:00:
ff:64:39:ab:09:cb:d6:b5:d7:00:6f:f9:ba:7a:9a:2a:fe:f6:
f7:e5:69:dd:64:8d:2d:dd:8d:9a:1f:3f:62:26:5b:46:5d:ab:
2e:75:ba:26:fe:48:7f:2c:66:79:fa:86:ca:67:53:78:42:60:
10:3a:4a:c8:94:ec:7d:76:2c:5c:d3:ed:ab:52:c1:9f:12:15:
2b:08:38:c3:3b:b9:ee:76:81:4f:67:e4:64:13:87:5c:66:56:
79:1e:28:af:e5:08:6d:0d:a4:d2:33:8c:1a:ad:7d:f0:a8:34:
62:02:eb:ca:fe:05:c1:58:a2:1b:af:71:c6:9e:5f:78:e0:a0:
5b:78:af:a7:47:2a:ff:76:22:0a:96:12:b0:6d:4c:73:04:31:
63:c7:f0:04:a0:3e:0a:2b:42:b9:5a:c7:54:14:3e:a0:aa:b3:
7b:c5:9b:a3:fc:29:4d:65:64:13:be:36:a5:3d:85:ca:f9:64:
4f:8d:2c:6c:34:68:7e:1d:7c:e9:59:f5:9f:66:4d:92:99:fa:
5e:f4:98:dd:85:cc:2c:96:ad:92:1e:87:49:73:08:c9:ab:bd:
a2:17:f6:f3:06:b5:76:ff:de:44:13:ea:c1:cc:4f:0d:aa:f6:
86:8b:61:69
-----BEGIN CERTIFICATE-----
MIIEzTCCA7WgAwIBAgICD2MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMjA5MTUw
MjQwMDJaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEY4QzhBMjg1NEM4M0Q0
NzIzMzZFNTMyNjRBMTg4OEYwQTNEQTNDNkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDih0BlErKJRNghSZMgWiRiXlAd1nJGzpeKzFpPBzvqIsloTR21
aFyzAC7NW5OYxDQTRN/hE0goFvN8Zdk2Fpa4T/ADPM4tP9CEIPTccWHtk5uS5+1o
etpEDcMLOq/AFl0u0R7+stxnce65kWu098Ts6wY9quX7uiF8SERi3YzB/NIX+LdF
cbu4+vHIu/tJ3RJ88c6qGyx3wiN/3ghccm3EI/le2T6IDtH1IIkfNhGoxLwjMZCP
BCBuTTrbJ7Vgq3IKXdFQcoH37L+g7fN75JpVW4BUZZjtfZ/jtbZAf1vE72J65U5X
ztAM1cQ6dduQc3TJUfp4nXh5ykDvNvvaIi0zAgMBAAGjggHpMIIB5TAdBgNVHQ4E
FgQU+MiihUyD1HIzblMmShiI8KPaPG4wHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvLU1paWhVeUQxSEl6YmxNbVNoaUk4
S1BhUEc0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDANoiMA0G
CSqGSIb3DQEBCwUAA4IBAQBvS8dnI31zwe2sDFnPqEWGHwD/ZDmrCcvWtdcAb/m6
epoq/vb35WndZI0t3Y2aHz9iJltGXasudbom/kh/LGZ5+obKZ1N4QmAQOkrIlOx9
dixc0+2rUsGfEhUrCDjDO7nudoFPZ+RkE4dcZlZ5Hiiv5QhtDaTSM4warX3wqDRi
AuvK/gXBWKIbr3HGnl944KBbeK+nRyr/diIKlhKwbUxzBDFjx/AEoD4KK0K5WsdU
FD6gqrN7xZuj/ClNZWQTvjalPYXK+WRPjSxsNGh+HXzpWfWfZk2Smfpe9Jjdhcws
lq2SHodJcwjJq72iF/bzBrV2/95EE+rBzE8NqvaGi2Fp
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:53 2023 by rpki-client on console-fra.rpki-client.org