Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/5F21oa6ru-sieUKNsnYPJ8XuQ7A.roa
File: 5F21oa6ru-sieUKNsnYPJ8XuQ7A.roa (raw, json)
Hash identifier: 0qUFUyvg5YcPpEmBcGLnvkSQFp7uHnSNhMNvhSzYq1s=
Subject key identifier: E4:5D:B5:A1:AE:AB:BB:EB:22:79:42:8D:B2:76:0F:27:C5:EE:43:B0
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 108D
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/5F21oa6ru-sieUKNsnYPJ8XuQ7A.roa
Signing time: Tue 16 May 2023 08:36:20 +0000
ROA not before: Tue 16 May 2023 08:36:20 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 210.200.148.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4237 (0x108d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:20 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E45DB5A1AEABBBEB2279428DB2760F27C5EE43B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:2c:45:85:17:d9:17:33:71:11:65:e8:06:dd:
23:d9:aa:b3:ac:84:a4:f0:8b:23:b1:fa:4a:d3:e3:
11:81:77:63:ab:e4:d5:19:11:25:6e:00:5c:d1:3c:
bb:f2:4d:0d:4b:81:1f:02:d7:90:1c:66:76:77:ae:
e4:39:8d:94:67:fb:d4:ec:40:88:98:08:aa:1d:88:
81:49:2f:0c:5f:dd:f7:b7:72:73:07:de:b0:9f:6d:
09:fb:f9:85:49:2b:02:69:1b:9e:df:23:86:6c:17:
41:5c:db:31:23:26:5c:b4:9c:76:45:ed:19:0d:30:
96:4a:b2:0f:09:93:0a:0e:8a:1b:65:97:fa:0a:d7:
9b:6b:b2:39:97:ba:fc:cd:89:d4:df:4d:b4:45:40:
7c:96:f6:af:9d:ee:83:cf:a6:28:36:6b:1a:dc:db:
f7:2b:88:7e:f7:97:4f:c1:18:db:a5:80:a2:b8:f7:
2d:50:b1:32:1a:cf:77:6d:e7:a3:39:8c:f4:f8:b3:
c8:9e:76:29:02:31:3a:5f:22:13:c7:9f:40:29:58:
84:9e:19:9e:ba:a2:31:67:59:ae:fc:02:04:3b:0e:
6d:b8:4e:6b:79:58:f9:73:c8:1c:7b:8b:9f:28:28:
be:cf:34:a6:af:d8:fc:39:67:9b:ee:01:7a:be:ed:
d5:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:5D:B5:A1:AE:AB:BB:EB:22:79:42:8D:B2:76:0F:27:C5:EE:43:B0
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/5F21oa6ru-sieUKNsnYPJ8XuQ7A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.148.0/22
Signature Algorithm: sha256WithRSAEncryption
82:54:fe:99:f2:03:3c:7d:93:1c:cd:f4:e3:ff:68:35:b4:46:
43:b0:1b:09:e9:62:4d:be:c6:51:f9:1c:bc:cc:9c:1d:01:55:
6a:66:46:54:bd:8e:d8:3e:87:98:c7:f2:33:18:ab:8d:39:5d:
be:4e:d9:5d:3d:e4:48:79:9e:d3:57:01:23:db:25:0b:e2:b5:
a4:89:36:0e:8a:49:4e:d3:c4:c2:a7:c4:0a:be:93:b8:1a:c0:
a2:d1:3b:71:64:f6:bb:42:9b:8a:06:a2:7a:e4:60:2b:ab:7a:
82:08:5f:5a:c7:53:8d:ba:9c:48:98:80:d7:32:46:c3:b0:b9:
56:7b:2f:63:54:a7:a0:13:41:63:f0:b1:4d:88:f0:97:ae:02:
da:73:17:58:0f:9a:71:54:dd:a9:80:0a:21:bd:5d:09:1a:f6:
da:d1:50:72:44:85:76:60:45:e2:19:90:38:8b:93:00:41:32:
8c:76:62:c5:96:eb:71:9f:c2:bf:65:1c:88:ac:d7:6a:ab:f6:
33:4b:4e:74:e0:48:f3:54:22:09:fd:a9:7d:b5:97:ff:22:10:
e3:17:ac:0d:f3:6b:1a:5a:24:1d:cf:32:b1:f6:cd:b4:e8:c1:
0f:a6:2f:82:f3:c4:28:36:b5:7b:1f:7c:98:20:6b:f7:07:6e:
94:93:15:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 08:25:17 2023 by rpki-client on console-ams.rpki-client.org