Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/0DEXpNROfGDfgkP6VFWZQm8_u-0.roa
File: 0DEXpNROfGDfgkP6VFWZQm8_u-0.roa (raw, json)
Hash identifier: lBewoFofilblFBwBTHxYodAcOkd27vu29+0fdq1teRk=
Subject key identifier: D0:31:17:A4:D4:4E:7C:60:DF:82:43:FA:54:55:99:42:6F:3F:BB:ED
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 109E
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/0DEXpNROfGDfgkP6VFWZQm8_u-0.roa
Signing time: Tue 16 May 2023 08:36:24 +0000
ROA not before: Tue 16 May 2023 08:36:24 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24154
IP address blocks: 210.200.0.0/19 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4254 (0x109e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:24 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D03117A4D44E7C60DF8243FA545599426F3FBBED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:4d:46:13:5a:46:d7:e7:60:9a:21:94:a3:a6:
81:a7:4a:3f:27:04:42:bb:74:e5:f6:fa:a0:08:81:
c6:17:aa:c1:7c:3a:6d:14:f0:d5:27:21:95:11:26:
3d:f1:98:f2:b1:c0:8a:3a:10:4c:54:cf:e4:1b:31:
9d:05:1b:da:44:18:8f:07:a2:74:1b:44:1f:bc:62:
4b:85:a5:b2:b8:5f:ce:ac:66:18:6e:86:40:f5:25:
06:4b:1a:2a:1b:06:ef:b8:45:bd:fe:c4:d7:2d:c0:
1b:9e:10:11:dd:6f:0e:73:47:3d:af:63:ec:40:1e:
14:33:aa:cb:d5:97:47:89:da:bc:f5:0f:52:61:66:
3b:49:14:c2:b6:61:33:16:d2:c7:c1:6f:20:87:b9:
48:71:b9:37:90:7c:e6:85:b6:2c:4b:a9:37:35:b0:
20:46:5d:c3:95:7f:80:30:6f:5c:27:09:c3:bb:d5:
ec:c0:eb:e4:7a:f9:3c:1b:c3:c6:6f:47:36:03:3a:
32:86:e2:2f:0a:9f:26:94:7f:b7:58:b8:3d:c3:2f:
99:a8:75:8c:c3:0b:b0:a3:b4:01:b8:44:dc:89:3f:
d5:3b:62:9f:33:ae:c6:90:8b:e8:37:09:e9:4c:41:
a8:18:56:44:27:f1:b5:f0:74:83:3f:43:f4:40:d4:
38:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:31:17:A4:D4:4E:7C:60:DF:82:43:FA:54:55:99:42:6F:3F:BB:ED
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/0DEXpNROfGDfgkP6VFWZQm8_u-0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.0.0/19
Signature Algorithm: sha256WithRSAEncryption
32:2a:94:e9:b7:f9:53:52:e6:0b:36:8f:1a:6c:56:45:e6:27:
0d:91:01:1f:7b:61:e5:59:53:51:99:5b:7e:ea:3d:0c:cb:f7:
4b:a4:ad:56:72:f3:e7:83:47:75:e7:2b:e2:55:07:6c:cd:2d:
82:77:04:95:62:6e:c2:d6:11:05:d4:aa:35:11:c1:8b:a6:fd:
4b:ad:f5:4d:77:15:f5:1e:cd:82:61:1b:c7:e4:a5:f6:c2:f4:
7e:8a:78:b4:36:b1:6a:e9:6f:66:77:e6:41:2c:a5:ac:27:74:
52:d7:4c:9c:00:29:db:4e:26:86:2b:9a:db:c1:e7:54:37:7d:
d9:94:b5:47:38:bc:b9:9a:46:c0:91:4e:a7:e1:89:a2:21:7d:
bd:5d:5b:63:5a:36:86:6b:1b:f4:a1:f0:92:f0:15:8e:29:bf:
f6:a1:73:ea:ac:a6:d1:71:75:81:06:d8:72:15:0d:87:c7:2c:
da:22:bc:47:ef:24:a0:e9:10:d3:e1:22:e7:2e:cd:a5:96:28:
5e:c0:94:98:95:a0:95:59:dc:33:c7:68:80:08:5e:9f:cb:c9:
fb:a7:b9:c6:95:0a:84:3b:e2:f2:81:c8:68:0c:f0:26:b9:68:
e0:40:90:89:e9:05:3c:8a:c8:8f:8d:90:9a:a8:59:38:bd:bb:
b1:54:c7:14
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICEJ4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMzA1MTYw
ODM2MjRaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEQwMzExN0E0RDQ0RTdD
NjBERjgyNDNGQTU0NTU5OTQyNkYzRkJCRUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDoTUYTWkbX52CaIZSjpoGnSj8nBEK7dOX2+qAIgcYXqsF8Om0U
8NUnIZURJj3xmPKxwIo6EExUz+QbMZ0FG9pEGI8HonQbRB+8YkuFpbK4X86sZhhu
hkD1JQZLGiobBu+4Rb3+xNctwBueEBHdbw5zRz2vY+xAHhQzqsvVl0eJ2rz1D1Jh
ZjtJFMK2YTMW0sfBbyCHuUhxuTeQfOaFtixLqTc1sCBGXcOVf4Awb1wnCcO71ezA
6+R6+Twbw8ZvRzYDOjKG4i8KnyaUf7dYuD3DL5modYzDC7CjtAG4RNyJP9U7Yp8z
rsaQi+g3CelMQagYVkQn8bXwdIM/Q/RA1DhFAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQU0DEXpNROfGDfgkP6VFWZQm8/u+0wHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvMERFWHBOUk9mR0RmZ2tQNlZGV1pR
bThfdS0wLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBdLIADAN
BgkqhkiG9w0BAQsFAAOCAQEAMiqU6bf5U1LmCzaPGmxWReYnDZEBH3th5VlTUZlb
fuo9DMv3S6StVnLz54NHdecr4lUHbM0tgncElWJuwtYRBdSqNRHBi6b9S631TXcV
9R7NgmEbx+Sl9sL0fop4tDaxaulvZnfmQSylrCd0UtdMnAAp204mhiua28HnVDd9
2ZS1Rzi8uZpGwJFOp+GJoiF9vV1bY1o2hmsb9KHwkvAVjim/9qFz6qym0XF1gQbY
chUNh8cs2iK8R+8koOkQ0+Ei5y7NpZYoXsCUmJWglVncM8dogAhen8vJ+6e5xpUK
hDvi8oHIaAzwJrlo4ECQiekFPIrIj42QmqhZOL27sVTHFA==
-----END CERTIFICATE-----
Generated at Fri Sep 1 08:37:44 2023 by rpki-client on console-fra.rpki-client.org