Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/2eu111LBQ2CdtbYj45-yLNz0_A8.roa
File: 2eu111LBQ2CdtbYj45-yLNz0_A8.roa (raw, json)
Hash identifier: xozciIU9Dm3OLZt4bmmOzruRTs76asCEApwXUs+Zr3U=
Subject key identifier: D9:EB:B5:D7:52:C1:43:60:9D:B5:B6:23:E3:9F:B2:2C:DC:F4:FC:0F
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 113D
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/2eu111LBQ2CdtbYj45-yLNz0_A8.roa
Signing time: Mon 07 Aug 2023 07:41:22 +0000
ROA not before: Mon 07 Aug 2023 07:41:22 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 124.218.0.0/16 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4413 (0x113d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Aug 7 07:41:22 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D9EBB5D752C143609DB5B623E39FB22CDCF4FC0F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:fb:27:f4:3b:e3:18:ec:33:3e:9a:67:bb:f9:
28:06:5f:03:b9:bd:07:f0:28:18:88:ec:61:e4:6b:
43:c4:09:58:a8:b4:e7:f4:6e:de:63:33:7c:5d:46:
5e:24:33:1c:3b:df:92:d8:f3:36:09:c3:ac:fb:87:
c7:5b:eb:12:27:8c:72:35:08:d4:ec:db:e6:89:11:
73:bd:e6:ab:7e:b7:77:32:8e:31:9b:9a:d8:b1:e7:
ed:6b:a8:e3:6c:1b:15:7d:7a:ad:57:81:06:2f:ad:
12:5b:62:f4:f7:61:23:c9:eb:1f:ca:b5:07:4e:60:
47:6c:06:07:9b:8f:f1:9d:14:e4:0f:72:18:72:7b:
66:e8:5e:72:4d:47:c1:95:b3:68:64:31:86:d1:38:
01:5c:aa:90:99:3e:94:d3:ac:a6:fa:5b:af:a6:25:
a1:b8:20:a7:0b:e6:5a:fc:d8:09:78:64:e0:6f:80:
b1:4e:24:7a:26:8b:3a:43:f4:bf:c6:67:6a:23:d6:
73:8c:23:37:94:12:d3:e5:21:77:11:fb:53:c2:a0:
74:ad:bf:fb:71:07:41:d2:c5:ee:c1:c2:ef:a2:98:
ca:58:d7:8d:cc:c0:08:d9:f2:97:a4:14:0a:12:cc:
c0:33:49:a3:e8:71:98:74:1a:c2:f4:4b:f2:f0:ec:
1d:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:EB:B5:D7:52:C1:43:60:9D:B5:B6:23:E3:9F:B2:2C:DC:F4:FC:0F
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/2eu111LBQ2CdtbYj45-yLNz0_A8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.0.0/16
Signature Algorithm: sha256WithRSAEncryption
47:9f:59:bc:7b:7d:ca:40:db:bb:20:e4:20:03:10:ff:d5:d3:
3a:91:7c:52:9e:68:31:fc:58:fe:68:65:4e:cb:9b:b2:c5:46:
0e:3e:56:b9:43:2e:da:f1:02:b9:a4:55:8a:fc:f1:50:9a:e8:
0a:37:fc:00:92:f8:da:b1:65:6b:16:d2:98:52:82:60:ad:17:
ba:1f:1f:17:1e:9a:4c:97:be:4a:be:2d:a4:89:72:09:2e:fa:
39:00:c5:39:53:1f:f5:cf:2c:14:6a:c0:69:35:cb:fd:97:53:
02:32:23:9f:35:cf:4f:68:d1:3a:fa:d0:60:9f:7d:98:2b:40:
82:80:e4:37:10:03:89:eb:7a:85:8c:94:d6:9f:0f:20:0b:7f:
3e:e6:0a:ec:12:5f:16:8e:72:06:16:64:ec:ff:f9:db:19:f6:
c5:d7:52:ec:82:e4:8d:3e:b8:ab:a0:00:1f:7c:01:b1:11:77:
5d:84:27:16:aa:ed:3a:7f:2a:3a:3b:52:5c:bc:df:19:52:9d:
21:c5:fa:f8:f0:f8:d1:11:56:29:79:a1:bd:e6:32:02:3c:12:
69:7e:43:e9:86:44:12:0d:9f:47:ee:f8:f8:64:fb:fd:be:71:
38:c7:6b:7b:5f:c3:e5:53:0a:85:69:85:4c:b7:23:2f:03:97:
28:74:56:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 08:25:17 2023 by rpki-client on console-ams.rpki-client.org