Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/7_eTQvWwcksRsNrCAtpPKMYaMNE.roa
File: 7_eTQvWwcksRsNrCAtpPKMYaMNE.roa (raw, json)
Hash identifier: vMSxoGYeUQFWhXAqiKHCjjx9H1zrMOq28V0ETbNi5lk=
Subject key identifier: EF:F7:93:42:F5:B0:72:4B:11:B0:DA:C2:02:DA:4F:28:C6:1A:30:D1
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/7_eTQvWwcksRsNrCAtpPKMYaMNE.roa
Signing time: Thu 15 Sep 2022 02:39:56 +0000
ROA not before: Thu 15 Sep 2022 02:39:56 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131591
IP address blocks: 223.22.32.0/19 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:39:56 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=EFF79342F5B0724B11B0DAC202DA4F28C61A30D1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:75:6b:d2:5a:54:85:da:30:d7:c3:3c:e1:93:
0e:93:10:0e:d1:13:fa:8c:6f:2f:44:f3:07:bd:77:
57:81:cf:24:62:66:cf:61:20:74:57:89:4c:fb:83:
23:c8:e2:a0:d0:dd:4e:c3:ff:72:6d:ad:b5:3d:ab:
fa:f8:2c:99:9d:61:4b:60:f9:06:12:21:d0:d8:05:
30:62:3f:94:69:ce:7f:cc:d1:90:68:30:79:31:59:
fe:10:f6:0a:69:ad:58:49:38:18:4f:6a:2a:48:d6:
c9:6f:1b:ae:d8:60:63:57:8e:0c:7e:1b:e1:a4:51:
f0:79:3a:dc:2d:9d:b7:b2:4a:d4:7e:0c:28:53:f6:
3b:72:4b:de:fd:a0:4c:f9:2e:35:f4:6c:05:af:77:
94:54:5d:ba:48:e9:87:6a:03:e3:ad:ae:63:33:fa:
0a:19:0e:52:4c:79:73:9c:29:2d:98:7a:b0:e7:78:
6a:e3:fb:1d:f4:76:5f:3b:7d:69:9f:33:68:93:ce:
df:6e:9b:aa:c8:3c:43:7d:ad:36:ce:f2:30:18:27:
b8:36:b1:cb:b4:0f:b6:8c:ed:3b:58:b1:4c:be:45:
ae:65:ae:07:7a:ab:a8:f9:65:54:2e:ef:76:ad:5c:
b5:c0:37:ba:13:f9:0d:62:51:8c:aa:ee:6b:2e:be:
f2:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:F7:93:42:F5:B0:72:4B:11:B0:DA:C2:02:DA:4F:28:C6:1A:30:D1
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/7_eTQvWwcksRsNrCAtpPKMYaMNE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.22.32.0/19
Signature Algorithm: sha256WithRSAEncryption
80:94:27:e1:f4:b2:ef:42:f0:c9:2a:7b:95:5b:44:7c:e9:02:
39:12:ba:10:e4:56:de:0c:02:64:90:9e:5e:41:93:12:b6:f0:
2d:ab:90:b6:ed:80:39:c8:ae:0e:51:b9:4b:6d:75:6b:ee:e0:
b7:65:ed:c9:93:7c:5f:3c:45:1d:7e:91:2a:c4:a9:0f:30:c5:
1a:8f:bf:4b:44:fc:25:b0:20:72:5a:b4:25:ec:b8:98:c6:25:
bb:8c:47:ab:a1:1c:18:08:2f:e1:ba:c2:16:ac:43:de:ae:bb:
54:66:16:ef:a4:ab:32:61:ec:1e:1b:d5:e2:0a:57:72:2a:cb:
e4:9f:4d:74:b1:e2:3d:a9:2d:68:4c:31:2e:84:dd:15:83:4d:
07:fd:cf:f9:51:4c:07:2e:f6:10:f5:d4:d1:c9:16:54:df:bf:
e6:ae:97:28:2a:7c:0d:e3:95:02:de:a5:45:2b:86:0b:a3:cd:
65:6c:d4:9f:bd:6b:d6:fe:0b:38:48:99:eb:63:58:b6:bb:36:
7f:8b:35:63:10:b4:c9:0c:3d:a0:83:a5:c4:9d:c6:1b:05:5d:
b4:b1:6b:34:14:35:74:ad:f0:a0:78:95:6b:20:4b:ac:0e:18:
eb:8d:48:22:ff:27:f8:c0:7f:8b:22:7e:2a:4b:a2:4b:25:72:
ed:16:17:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:54 2023 by rpki-client on console-fra.rpki-client.org