Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/-_NupYgqsDzo_HdMvNBxso3Sw20.roa
File: -_NupYgqsDzo_HdMvNBxso3Sw20.roa (raw, json)
Hash identifier: ySJMQ6bdcv0CDWhqqV0tjDFJ0x4/G1Um0L2vzt6y1I4=
Subject key identifier: FB:F3:6E:A5:88:2A:B0:3C:E8:FC:77:4C:BC:D0:71:B2:8D:D2:C3:6D
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-_NupYgqsDzo_HdMvNBxso3Sw20.roa
Signing time: Thu 15 Sep 2022 02:40:37 +0000
ROA not before: Thu 15 Sep 2022 02:40:37 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 124.219.0.0/17 maxlen: 17
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:40:37 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=FBF36EA5882AB03CE8FC774CBCD071B28DD2C36D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:98:27:e9:a5:1f:e3:42:52:a0:0a:9d:d8:99:
41:40:6f:88:67:32:0a:46:1c:35:d2:8b:b7:1d:a3:
98:3e:81:30:de:cd:c3:5a:15:03:ff:d5:c8:32:76:
4d:d8:a2:d9:42:78:20:2f:27:a2:6f:3f:e7:b5:9a:
cf:35:e7:d2:94:7c:4e:71:3d:84:c1:f1:a7:cf:30:
bc:0f:69:6d:84:1a:01:f0:46:03:17:ee:5c:10:03:
b7:3d:bc:f1:43:8a:53:49:61:7c:6c:26:91:1d:b2:
6d:d4:d8:5b:6e:b2:c9:0c:dd:8f:a7:0b:ef:81:1e:
f0:c8:d4:8b:87:1a:d2:39:5a:6c:c3:69:58:f1:6e:
06:49:bb:8b:ca:42:52:92:d9:3e:74:df:2f:48:b3:
36:8a:1a:b1:07:b9:5d:90:89:01:94:e9:66:be:16:
fc:43:19:55:8e:13:fa:29:5f:c3:d9:06:7b:50:75:
db:dc:3d:26:52:1f:25:08:bc:6c:d6:9c:c8:06:00:
e9:36:6f:d6:a6:77:74:ee:2a:d2:fd:cd:ef:b4:81:
4a:d5:e6:21:86:de:43:3e:2d:ce:01:18:ec:39:0a:
f4:68:7c:8d:7b:c4:46:ff:7b:a6:99:70:7d:8b:54:
b6:64:3e:4d:cf:fb:fa:79:aa:0c:b2:22:69:d0:03:
33:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:F3:6E:A5:88:2A:B0:3C:E8:FC:77:4C:BC:D0:71:B2:8D:D2:C3:6D
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-_NupYgqsDzo_HdMvNBxso3Sw20.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.219.0.0/17
Signature Algorithm: sha256WithRSAEncryption
5f:59:5b:84:26:27:cd:a5:77:8b:db:b3:48:bb:6c:ae:f4:dd:
b2:6d:9d:e1:6d:73:b4:2c:6f:ae:b9:70:cd:2d:57:ef:9e:bd:
29:cc:4b:06:ce:49:6b:04:e3:a8:20:5a:db:62:f5:cc:08:cd:
90:83:07:e8:ee:8a:f4:5e:f3:cb:b1:5e:67:95:f5:98:cd:d6:
59:08:e2:04:5f:87:fa:c5:59:82:24:9f:76:36:c5:d7:78:57:
c7:71:f2:4e:c0:02:20:d0:e1:49:18:e9:ac:03:05:e6:67:e6:
6c:b8:fc:b6:7a:f7:55:32:09:7b:39:6a:88:86:9d:f1:d5:70:
7c:a0:e1:2f:20:e2:c6:44:6a:a4:74:92:7c:89:47:6d:07:81:
0b:10:98:fc:1e:0c:7f:15:f4:b2:c1:88:de:a0:c6:40:a1:28:
f5:e7:4e:aa:df:e2:28:3a:f3:c6:20:23:c3:90:31:8e:28:92:
98:ba:77:fd:7e:4a:70:5b:b8:d6:4d:93:8d:a5:38:c6:20:09:
9d:2d:be:26:e0:3a:db:9a:5d:77:c8:d4:cf:f6:77:8b:97:9a:
8a:90:5c:4c:fb:f0:20:74:b8:a0:1b:ca:a7:c2:23:69:e4:7e:
02:49:39:90:20:b9:91:42:ce:27:65:6e:78:ea:b3:97:7b:07:
45:fc:67:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:43 2023 by rpki-client on console-ams.rpki-client.org