Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/3a16Scug-oLTX00h3HuZX0kTspw.roa
File: 3a16Scug-oLTX00h3HuZX0kTspw.roa (raw, json)
Hash identifier: vLX4Z9db+QuRgGCzfF1zt+UQ8goI8TQdLpj3t21l8CA=
Subject key identifier: DD:AD:7A:49:CB:A0:FA:82:D3:5F:4D:21:DC:7B:99:5F:49:13:B2:9C
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/3a16Scug-oLTX00h3HuZX0kTspw.roa
Signing time: Thu 15 Sep 2022 02:40:13 +0000
ROA not before: Thu 15 Sep 2022 02:40:13 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24155
IP address blocks: 203.207.32.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:40:13 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=DDAD7A49CBA0FA82D35F4D21DC7B995F4913B29C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:2a:e4:3b:6c:d9:4b:a8:7e:59:78:d0:0a:14:
5b:0b:b8:fd:64:18:38:cc:8a:a2:3e:12:e1:6b:85:
2c:5e:0f:9f:74:ad:32:2c:a2:85:7f:e9:97:a0:aa:
26:e4:ab:07:1e:a4:cb:8b:19:da:44:f5:65:7c:93:
3b:5b:ff:ea:b5:ab:12:4e:96:a7:4a:2d:9e:3f:a1:
3a:3b:c5:2f:f5:49:c9:92:83:2f:de:08:5b:10:74:
2f:7b:30:c0:cb:2f:46:96:47:90:5f:ed:3f:d7:a8:
7a:31:ed:69:ed:12:af:21:1f:e0:91:9f:56:6d:c7:
e6:9c:57:3a:72:26:ce:46:d4:51:ae:da:0e:17:f5:
f8:95:fe:65:b3:c9:ff:28:67:2b:19:5b:2b:f5:f4:
4d:55:2b:9c:b5:61:b8:67:a2:cf:1a:c0:61:26:7c:
90:8f:a1:8f:cd:89:b9:35:99:bd:f3:c5:3f:6c:80:
24:b9:56:87:c9:9e:83:9c:59:12:0f:18:1c:74:74:
74:78:32:b3:ee:33:48:7a:a3:41:f0:e2:db:1a:a8:
86:4b:d5:8d:71:80:ec:e4:05:06:3d:ec:ba:3f:02:
dd:19:92:7b:25:cf:66:79:07:1f:e1:e3:26:d3:06:
e1:2c:a3:6a:65:38:08:7c:42:41:70:00:d9:6c:47:
27:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:AD:7A:49:CB:A0:FA:82:D3:5F:4D:21:DC:7B:99:5F:49:13:B2:9C
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/3a16Scug-oLTX00h3HuZX0kTspw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.207.32.0/20
Signature Algorithm: sha256WithRSAEncryption
34:13:12:ba:32:dd:d4:54:4a:08:2b:69:d2:d9:4d:f0:5b:51:
fe:dc:70:d0:dd:a2:27:c2:06:83:f0:63:45:48:d5:c9:f2:ad:
c6:15:79:d5:e6:52:d7:7c:4e:d9:90:53:be:28:ac:ad:19:64:
ff:ef:18:d2:6c:2f:59:e4:24:d1:c9:a2:07:05:e4:bc:37:7a:
0b:ce:69:9c:6d:0a:d0:10:67:3b:19:0b:f6:3d:9f:d3:cc:3b:
a5:eb:68:df:90:c3:a2:0f:68:1d:7e:7b:96:3c:6a:5a:f7:03:
8c:23:d2:19:85:3b:0e:33:ac:ed:ea:73:7b:9d:68:c4:46:e8:
84:a9:88:ed:2a:1e:06:3b:6b:d7:a9:a8:c0:ae:ea:9d:ed:35:
63:d5:41:a3:53:7d:c7:45:81:07:04:b1:04:8c:ff:9e:72:64:
80:ce:2a:68:6e:58:50:73:dd:4f:d4:eb:26:f3:5e:e3:c1:d3:
5e:ac:07:92:5a:01:d8:61:70:bb:07:c0:4d:56:13:98:27:13:
28:b5:5b:12:47:ef:ac:e1:45:68:c2:ef:11:23:91:57:7a:e2:
7a:48:20:b1:c5:3e:0c:6e:36:85:a1:94:98:7e:45:b2:1e:ce:
e5:cb:7d:f2:8d:17:63:64:fe:1a:4c:ef:06:8e:f2:7f:b9:d6:
31:ab:39:d5
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICD2MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMjA5MTUw
MjQwMTNaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEREQUQ3QTQ5Q0JBMEZB
ODJEMzVGNEQyMURDN0I5OTVGNDkxM0IyOUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDOKuQ7bNlLqH5ZeNAKFFsLuP1kGDjMiqI+EuFrhSxeD590rTIs
ooV/6ZegqibkqwcepMuLGdpE9WV8kztb/+q1qxJOlqdKLZ4/oTo7xS/1ScmSgy/e
CFsQdC97MMDLL0aWR5Bf7T/XqHox7WntEq8hH+CRn1Ztx+acVzpyJs5G1FGu2g4X
9fiV/mWzyf8oZysZWyv19E1VK5y1Ybhnos8awGEmfJCPoY/Nibk1mb3zxT9sgCS5
VofJnoOcWRIPGBx0dHR4MrPuM0h6o0Hw4tsaqIZL1Y1xgOzkBQY97Lo/At0Zknsl
z2Z5Bx/h4ybTBuEso2plOAh8QkFwANlsRyfBAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQU3a16Scug+oLTX00h3HuZX0kTspwwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvM2ExNlNjdWctb0xUWDAwaDNIdVpY
MGtUc3B3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMvPIDAN
BgkqhkiG9w0BAQsFAAOCAQEANBMSujLd1FRKCCtp0tlN8FtR/txw0N2iJ8IGg/Bj
RUjVyfKtxhV51eZS13xO2ZBTviisrRlk/+8Y0mwvWeQk0cmiBwXkvDd6C85pnG0K
0BBnOxkL9j2f08w7peto35DDog9oHX57ljxqWvcDjCPSGYU7DjOs7epze51oxEbo
hKmI7SoeBjtr16mowK7qne01Y9VBo1N9x0WBBwSxBIz/nnJkgM4qaG5YUHPdT9Tr
JvNe48HTXqwHkloB2GFwuwfATVYTmCcTKLVbEkfvrOFFaMLvESORV3riekggscU+
DG42haGUmH5Fsh7O5ct98o0XY2T+GkzvBo7yf7nWMas51Q==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:43 2023 by rpki-client on console-ams.rpki-client.org