Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/7vSPROS-gj_LfE4Esj94HgKwTKE.roa
File: 7vSPROS-gj_LfE4Esj94HgKwTKE.roa (raw, json)
Hash identifier: 3OxLUB5fh9GpuSfWnvW8ryZj17ZvsRb8+o+K7QAouQI=
Subject key identifier: EE:F4:8F:44:E4:BE:82:3F:CB:7C:4E:04:B2:3F:78:1E:02:B0:4C:A1
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 102E
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/7vSPROS-gj_LfE4Esj94HgKwTKE.roa
Signing time: Tue 16 May 2023 08:35:51 +0000
ROA not before: Tue 16 May 2023 08:35:51 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 219.91.0.0/18 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4142 (0x102e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:35:51 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=EEF48F44E4BE823FCB7C4E04B23F781E02B04CA1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:a9:22:a5:1b:ad:c3:ce:b5:21:00:53:c8:d5:
5b:0c:26:4e:44:2f:c1:4e:62:27:6b:6a:c0:38:8f:
14:d5:e6:ca:2c:f0:80:60:fe:9c:ad:d6:af:b4:c4:
fd:e6:fd:49:ca:5d:eb:30:fc:95:63:2e:86:98:66:
4d:85:0f:28:8e:75:ae:ed:6a:7b:f9:08:5f:c3:d9:
d4:3c:5a:74:c0:5f:78:40:b4:0d:51:cb:f1:50:5b:
bc:f0:03:78:38:35:bb:e7:9d:1e:45:5d:29:96:f2:
4b:86:98:18:87:5b:47:9b:a7:f3:b4:ed:f1:1b:b5:
21:7c:c3:96:ff:53:7f:05:57:7d:da:79:55:50:f1:
6a:db:a0:eb:2b:0d:3d:69:7b:e9:2c:8c:e5:c8:33:
25:09:41:22:80:93:d5:05:42:ad:4c:8a:3b:53:6b:
13:96:57:b5:11:4f:fc:41:dc:81:ba:12:51:35:18:
26:d8:75:82:f9:7a:ee:c4:c9:4e:54:61:7d:07:0b:
03:78:e4:97:85:76:a9:59:f4:75:77:e2:be:58:a2:
98:94:10:a8:65:30:50:9e:48:43:da:6c:8d:2c:53:
19:9d:ff:94:64:22:71:d1:9e:05:57:a9:84:13:3a:
f1:28:0b:61:1e:42:2c:cd:c5:c4:27:e5:22:6d:c7:
d2:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:F4:8F:44:E4:BE:82:3F:CB:7C:4E:04:B2:3F:78:1E:02:B0:4C:A1
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/7vSPROS-gj_LfE4Esj94HgKwTKE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.91.0.0/18
Signature Algorithm: sha256WithRSAEncryption
05:96:cc:30:98:09:e9:6b:0a:7b:74:1a:47:92:65:c8:10:09:
79:cb:c4:48:c8:9c:59:0a:64:85:67:23:38:b5:0e:9c:11:68:
43:32:93:37:c4:bf:9c:72:9a:60:cd:41:5e:ba:ac:86:14:10:
41:9d:3f:1d:c2:37:1b:13:3c:e1:ac:3c:5a:25:95:6e:38:9b:
46:1b:74:ec:48:be:bd:5d:e9:55:08:a4:81:99:48:2f:dc:ad:
90:66:af:5e:54:74:21:2d:f6:b8:c2:c6:26:a9:79:49:8e:7d:
43:47:b0:f5:9e:7a:d3:b6:da:fb:6d:ca:64:36:1e:ce:d6:35:
63:12:c1:88:9a:f5:8c:d0:50:e4:aa:50:39:aa:8e:f2:90:69:
65:cd:ac:ad:df:c1:9f:9d:bc:88:8c:18:99:c2:0f:07:4e:b3:
7d:bc:ba:50:db:0a:39:a9:81:5d:0f:d2:5b:c3:95:96:44:a7:
53:d6:c2:6a:5f:21:a7:f7:ca:1d:18:63:ee:bf:77:6c:b4:42:
3d:74:44:cd:35:d4:75:37:23:fa:a3:8b:59:1e:e1:b8:bc:f4:
4e:51:20:9b:77:7b:de:b9:01:ad:c3:7d:2f:7f:08:31:32:cd:
f6:5f:36:eb:f7:73:11:6b:75:87:9a:c7:f3:45:4a:63:9c:0c:
13:38:0c:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 08:25:18 2023 by rpki-client on console-ams.rpki-client.org