Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/1srC7voqbUi3Csxm1B8u70JTXgc.roa
File: 1srC7voqbUi3Csxm1B8u70JTXgc.roa (raw, json)
Hash identifier: 47wuyUTmYoAMOy5mR7pbK/qHSN1K2zBWJ1KWwLwUdx8=
Subject key identifier: D6:CA:C2:EE:FA:2A:6D:48:B7:0A:CC:66:D4:1F:2E:EF:42:53:5E:07
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/1srC7voqbUi3Csxm1B8u70JTXgc.roa
Signing time: Thu 15 Sep 2022 02:40:01 +0000
ROA not before: Thu 15 Sep 2022 02:40:01 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 7482
IP address blocks: 203.79.240.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:40:01 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D6CAC2EEFA2A6D48B70ACC66D41F2EEF42535E07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:94:18:3e:78:19:37:b4:a8:01:4d:90:0e:8e:
ad:fb:dc:6f:67:53:ef:f7:8e:89:84:56:7d:f4:cb:
f7:d5:0e:14:6b:ff:dc:97:4e:ea:e5:da:82:af:4c:
c8:c8:59:02:a9:4e:e7:a6:42:7b:a1:16:f9:99:5b:
32:80:6d:24:25:f7:88:22:70:2b:59:12:32:4e:8e:
ba:69:96:73:ee:47:e8:bf:c0:5b:6b:69:2f:2b:3b:
b1:8a:98:7e:31:54:56:60:84:ac:ca:fb:4b:7e:e3:
b0:a4:bb:fd:10:43:e2:b4:2e:84:cd:e9:46:f1:1c:
0c:94:7f:00:42:55:d0:0e:78:ee:f6:8c:02:5a:f5:
e6:a4:39:2b:37:3e:c4:68:ee:2e:f6:00:f5:10:2b:
9d:93:b0:6d:7f:c0:e8:e3:e1:09:d9:d2:90:ad:2b:
90:4f:de:4f:aa:fc:2c:8f:27:36:06:df:d1:ff:e6:
fe:a3:6b:00:17:17:8d:86:f9:5c:d6:6b:bd:8a:3d:
7b:b1:0b:69:97:31:1f:84:dd:cf:2a:00:5e:a2:35:
43:e6:52:66:ed:9e:c3:ce:a5:c8:15:af:2f:b3:00:
51:54:f6:b3:e5:f7:08:09:01:8f:41:a2:c3:78:ae:
ee:82:41:e2:b0:4b:9a:6b:94:19:17:46:32:74:9a:
a1:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:CA:C2:EE:FA:2A:6D:48:B7:0A:CC:66:D4:1F:2E:EF:42:53:5E:07
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/1srC7voqbUi3Csxm1B8u70JTXgc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.240.0/21
Signature Algorithm: sha256WithRSAEncryption
a8:c5:ac:69:81:3f:03:50:6b:f8:24:77:0a:9f:ca:36:96:6c:
6f:59:ae:a1:ea:95:f3:95:18:74:61:85:24:03:01:7d:7f:bb:
cb:4d:a9:f2:64:fe:98:62:86:42:94:83:9e:2a:36:ce:13:6d:
c1:84:dd:70:94:d5:f8:37:a2:47:27:32:b5:4e:2d:54:e9:ad:
32:90:3e:dc:f3:51:a3:95:3c:1a:bb:e3:97:62:82:24:3d:58:
32:72:73:e7:e0:6e:2d:8a:4f:16:83:aa:c4:1a:f5:51:80:23:
85:41:bb:0f:9a:a9:83:82:be:c0:61:2c:16:a2:8a:36:8f:6d:
9b:6f:37:67:e5:63:6d:96:ae:d4:40:bc:74:7c:bc:f9:ea:a0:
75:47:ee:20:33:34:95:52:6c:65:67:ac:5c:96:e0:79:88:91:
3b:ff:94:65:43:db:75:0e:63:49:e5:3c:28:e5:f5:7a:d8:5d:
7e:ed:f2:e3:5d:00:31:65:5f:2c:15:03:7f:c5:15:f2:b3:71:
4d:ce:13:15:35:ab:58:29:f5:fd:1d:90:ed:fa:12:1b:92:a1:
18:3b:7c:97:1a:c2:98:6e:31:49:5a:1a:8a:9b:99:4a:33:e5:
c4:bb:7b:3a:4e:2d:85:e0:3d:d7:8b:93:b9:4a:18:ff:8d:5b:
53:90:e4:33
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICD2MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMjA5MTUw
MjQwMDFaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEQ2Q0FDMkVFRkEyQTZE
NDhCNzBBQ0M2NkQ0MUYyRUVGNDI1MzVFMDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCjlBg+eBk3tKgBTZAOjq373G9nU+/3jomEVn30y/fVDhRr/9yX
Turl2oKvTMjIWQKpTuemQnuhFvmZWzKAbSQl94gicCtZEjJOjrpplnPuR+i/wFtr
aS8rO7GKmH4xVFZghKzK+0t+47Cku/0QQ+K0LoTN6UbxHAyUfwBCVdAOeO72jAJa
9eakOSs3PsRo7i72APUQK52TsG1/wOjj4QnZ0pCtK5BP3k+q/CyPJzYG39H/5v6j
awAXF42G+VzWa72KPXuxC2mXMR+E3c8qAF6iNUPmUmbtnsPOpcgVry+zAFFU9rPl
9wgJAY9BosN4ru6CQeKwS5prlBkXRjJ0mqHPAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQU1srC7voqbUi3Csxm1B8u70JTXgcwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvMXNyQzd2b3FiVWkzQ3N4bTFCOHU3
MEpUWGdjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8tP8DAN
BgkqhkiG9w0BAQsFAAOCAQEAqMWsaYE/A1Br+CR3Cp/KNpZsb1muoeqV85UYdGGF
JAMBfX+7y02p8mT+mGKGQpSDnio2zhNtwYTdcJTV+DeiRycytU4tVOmtMpA+3PNR
o5U8Grvjl2KCJD1YMnJz5+BuLYpPFoOqxBr1UYAjhUG7D5qpg4K+wGEsFqKKNo9t
m283Z+VjbZau1EC8dHy8+eqgdUfuIDM0lVJsZWesXJbgeYiRO/+UZUPbdQ5jSeU8
KOX1ethdfu3y410AMWVfLBUDf8UV8rNxTc4TFTWrWCn1/R2Q7foSG5KhGDt8lxrC
mG4xSVoaipuZSjPlxLt7Ok4theA914uTuUoY/41bU5DkMw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:53 2023 by rpki-client on console-fra.rpki-client.org