Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/2vr8-rQ_nRrSqdly1R9ukyaXsTg.roa
File: 2vr8-rQ_nRrSqdly1R9ukyaXsTg.roa (raw, json)
Hash identifier: 70Q32NXHQottBpsNNIiepF4b+1hYxQv/7In4TU06OOs=
Subject key identifier: DA:FA:FC:FA:B4:3F:9D:1A:D2:A9:D9:72:D5:1F:6E:93:26:97:B1:38
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/2vr8-rQ_nRrSqdly1R9ukyaXsTg.roa
Signing time: Thu 15 Sep 2022 02:40:34 +0000
ROA not before: Thu 15 Sep 2022 02:40:34 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 101.136.0.0/14 maxlen: 14
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:40:34 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=DAFAFCFAB43F9D1AD2A9D972D51F6E932697B138
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ba:c7:64:81:5e:48:0f:db:9f:2d:c5:20:98:
07:fe:c2:a3:fa:c0:db:43:a5:5b:19:40:b3:db:ee:
a4:af:bc:bb:44:49:30:f0:de:b8:60:2a:cb:27:05:
9c:ac:c4:54:84:85:56:05:1f:7c:dd:05:ab:72:a9:
15:84:c0:1b:f7:11:a6:13:ed:06:d3:04:f8:a3:9e:
87:de:34:da:bf:70:da:2a:be:33:31:80:d6:62:09:
1d:db:58:6d:55:e8:78:7b:41:eb:4d:9c:79:61:e8:
5a:66:cc:d6:d1:7e:dc:68:a1:87:22:17:3a:49:39:
15:82:6d:9d:37:21:98:d9:d2:50:f9:2d:97:93:f7:
a0:8b:4d:ec:ae:f4:57:2e:15:0b:e7:f7:28:b1:98:
89:26:3a:4f:4b:e9:c0:c4:c8:7c:41:32:3b:b9:cb:
78:4d:75:85:74:5a:0c:be:b3:6b:93:54:8d:3e:b8:
69:78:e9:bf:43:c5:4e:94:42:aa:b3:e7:73:82:5d:
d1:59:93:e2:fa:ce:c6:f4:e0:36:3a:ec:4e:01:95:
59:3d:7a:d4:f7:20:d4:89:bb:bf:97:f8:96:75:b0:
7c:43:aa:af:46:e7:a3:8f:d7:ba:fd:de:1a:84:75:
6a:88:e5:cb:75:8f:e2:21:d9:78:b3:f6:01:38:3c:
8c:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:FA:FC:FA:B4:3F:9D:1A:D2:A9:D9:72:D5:1F:6E:93:26:97:B1:38
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/2vr8-rQ_nRrSqdly1R9ukyaXsTg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.136.0.0/14
Signature Algorithm: sha256WithRSAEncryption
b8:9a:5e:bd:c5:f1:96:f0:08:fd:1e:28:38:99:2b:5e:7a:27:
76:c4:f7:ff:09:8c:9e:b4:c2:21:da:77:36:f2:fd:40:3d:8e:
10:38:10:d7:2f:41:cf:1d:f4:71:9d:ff:c9:80:ed:76:df:8d:
94:f0:3f:f4:8d:23:69:e2:36:b2:c9:f7:b6:ea:90:b6:8c:71:
32:b3:2b:be:00:97:e3:79:95:e1:13:fc:2c:0c:95:c2:13:01:
09:81:d9:e1:fc:c2:9e:07:59:a2:da:91:3d:84:88:d3:36:dc:
d5:25:50:41:65:1c:84:a7:af:4a:b1:86:fd:4a:56:d9:e8:00:
ed:9e:74:67:31:50:aa:ed:0f:17:b2:8b:35:34:a6:26:e6:4e:
a1:d3:2e:96:11:c9:90:4b:8f:a9:49:c8:ff:0c:38:46:d0:2d:
bf:58:77:f1:d8:49:bb:13:5c:8b:d3:e3:c9:a0:6f:a7:8c:43:
25:f8:df:d7:3f:bd:99:2f:15:7b:4d:40:e6:9e:a1:70:97:9b:
e5:bc:cd:e6:76:1b:65:6c:22:10:af:c0:5f:cc:6e:80:81:69:
17:50:d9:4c:f3:df:a7:17:c8:b7:f7:7d:fc:ab:24:cc:6e:cf:
a4:4a:40:b5:0a:5f:d3:3a:86:ce:12:c5:cb:a9:0a:92:97:b6:
d8:8c:6d:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:54 2023 by rpki-client on console-fra.rpki-client.org