Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/1Dk3ybjctOaZk7VNPRxuosf7cg4.roa
File: 1Dk3ybjctOaZk7VNPRxuosf7cg4.roa (raw, json)
Hash identifier: xmMmnKupzNzGgux+vD1XO/fIE1WYq9Tv/gvISPTG60E=
Subject key identifier: D4:39:37:C9:B8:DC:B4:E6:99:93:B5:4D:3D:1C:6E:A2:C7:FB:72:0E
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 10D3
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/1Dk3ybjctOaZk7VNPRxuosf7cg4.roa
Signing time: Tue 16 May 2023 08:36:42 +0000
ROA not before: Tue 16 May 2023 08:36:42 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 7482
IP address blocks: 210.200.192.0/18 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4307 (0x10d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:42 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D43937C9B8DCB4E69993B54D3D1C6EA2C7FB720E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:c1:f4:3c:41:de:3e:c5:83:47:a0:2a:6c:3f:
61:f7:ac:ce:34:c4:f6:2a:73:59:01:13:71:6f:0e:
e4:32:06:07:07:9b:41:b1:9c:dd:a0:ae:16:fb:f6:
78:49:f8:d8:2d:47:d3:d5:d7:b9:6a:68:50:d8:d9:
6b:a4:6a:6c:ef:64:0c:e6:bd:7a:19:5e:96:1c:ed:
e4:61:ed:44:97:99:8d:5e:b7:93:45:5d:b7:2e:05:
2b:11:c6:50:81:de:c0:e7:8d:41:71:37:9b:54:9d:
84:b0:e7:62:ec:bc:65:fe:cd:d9:28:0c:cf:59:cf:
b3:e9:92:23:b3:01:b8:74:be:8a:5d:c6:55:ef:b2:
1f:95:47:37:0b:18:ac:20:24:36:77:81:2b:c6:8c:
f1:17:27:ec:1e:a0:98:ca:e1:d5:01:a1:39:7a:43:
61:c8:03:f8:01:28:f1:10:19:96:c5:c7:48:1d:bf:
0f:3c:87:4d:b3:98:3e:53:8c:e6:2b:13:1e:69:f8:
1a:f7:d7:f2:c7:c7:ec:b5:47:e5:ff:f9:2a:6b:2a:
16:db:a8:56:f9:2b:8d:2b:b4:6b:b2:4e:54:2c:cb:
ba:f2:e3:d4:5e:f7:0c:a6:0c:44:38:7e:9e:5e:ec:
e7:cd:56:4d:53:bb:5f:f9:19:6d:90:1f:f7:0b:9c:
fd:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:39:37:C9:B8:DC:B4:E6:99:93:B5:4D:3D:1C:6E:A2:C7:FB:72:0E
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/1Dk3ybjctOaZk7VNPRxuosf7cg4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.192.0/18
Signature Algorithm: sha256WithRSAEncryption
86:8c:e4:13:42:1d:5e:a7:a6:99:ac:62:3b:2b:f6:4c:a0:61:
0c:6a:fb:21:0e:5c:27:cc:e8:94:59:5b:f7:bc:5b:14:cc:8c:
78:69:ab:fa:69:eb:39:b8:93:cf:1d:cc:2c:ba:c8:87:88:a9:
ac:87:20:0b:5f:41:f3:98:f5:a6:f0:c4:e8:75:a2:a7:a5:00:
20:98:84:c1:fb:f8:6c:1a:80:d0:5e:00:24:03:67:0e:79:3b:
29:29:65:81:6f:66:a2:46:bf:38:80:87:f4:98:f0:18:9a:68:
4f:07:6e:64:cc:44:34:5a:34:f9:bf:cc:c2:6e:4d:6d:6c:2e:
41:ac:f3:73:2f:2e:26:40:d5:e8:f7:40:ec:7b:2b:46:dc:2d:
51:74:8f:9d:42:e0:e5:38:34:b1:c9:64:d6:a5:4f:ff:cc:28:
02:d4:01:68:48:93:29:74:21:54:11:53:29:d0:68:10:46:07:
f1:60:4b:d3:0b:b0:ea:49:b0:6f:c3:47:63:0d:86:fc:7f:7f:
6a:40:b4:23:16:c9:2f:02:22:6e:8d:de:d0:b7:96:97:8a:d6:
3a:4a:4c:94:05:60:4f:94:37:df:cb:44:7c:b1:e5:5a:83:c1:
39:1d:88:40:fd:02:43:bf:61:ec:ef:16:58:bb:1d:56:f9:70:
ba:69:0e:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 08:25:17 2023 by rpki-client on console-ams.rpki-client.org