Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/CoMVOzHIjncDaguMhmmxuhmdQ30.roa
File: CoMVOzHIjncDaguMhmmxuhmdQ30.roa (raw, json)
Hash identifier: sEzyPt5OlvVbXf2dAF3fTPezRUbIIEScxghY+CnKWJ4=
Subject key identifier: 0A:83:15:3B:31:C8:8E:77:03:6A:0B:8C:86:69:B1:BA:19:9D:43:7D
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 10DB
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/CoMVOzHIjncDaguMhmmxuhmdQ30.roa
Signing time: Tue 16 May 2023 08:36:44 +0000
ROA not before: Tue 16 May 2023 08:36:44 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24155
IP address blocks: 210.63.224.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4315 (0x10db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:44 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=0A83153B31C88E77036A0B8C8669B1BA199D437D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:b3:b2:73:63:00:81:c7:0c:06:a5:a9:83:d2:
4b:ba:84:a0:07:01:f1:a7:10:cd:db:4d:f9:c5:45:
ff:c6:04:eb:8c:44:04:80:ec:a7:a3:03:15:c9:c7:
d1:8d:d9:84:68:65:c8:37:1f:59:e2:2a:02:b0:d9:
b6:0f:fe:c0:ad:35:43:7a:d9:cc:1b:cb:27:e4:9a:
19:3e:91:b4:62:18:ae:12:67:1c:c3:7b:b8:23:41:
1b:9c:7e:fe:36:00:57:71:2b:3a:9b:7a:25:e7:da:
54:a3:8a:02:99:eb:c5:94:2a:7f:2e:c1:07:2d:0d:
45:df:14:f9:66:21:2e:c0:5a:17:73:8f:e0:4a:e8:
05:cf:38:1f:f2:97:87:17:e6:ba:81:13:17:e5:79:
9d:53:aa:cc:84:40:3c:9a:b2:d4:3b:0e:b4:fb:de:
c8:4d:df:30:2c:ba:d2:2a:f1:a3:c8:03:68:ed:8d:
d3:21:86:47:2b:b6:89:b9:8f:e1:79:10:d9:d2:de:
8f:df:1c:86:9d:36:67:95:84:57:b7:12:88:de:42:
14:76:7c:ce:d1:7e:da:c3:21:26:06:57:f6:be:2f:
e1:42:fa:28:9c:c6:55:8d:b1:9b:8f:46:f0:1e:f5:
1a:79:bf:9f:20:b2:37:b5:3c:4c:2b:ef:ef:9d:56:
2f:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:83:15:3B:31:C8:8E:77:03:6A:0B:8C:86:69:B1:BA:19:9D:43:7D
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/CoMVOzHIjncDaguMhmmxuhmdQ30.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.224.0/21
Signature Algorithm: sha256WithRSAEncryption
25:9a:5a:9c:17:b8:a6:9c:5e:1b:be:d3:f4:61:68:d2:ab:aa:
65:53:26:7a:fa:c5:1f:e5:72:86:db:ce:8b:ea:92:c7:97:4b:
64:ab:4d:8e:71:c5:5a:23:f3:38:86:e9:45:c8:dc:89:08:10:
f6:82:e4:05:20:3c:d2:86:59:aa:9d:5c:f6:84:46:48:a7:64:
6d:dc:a3:01:38:9b:d2:01:ea:cd:58:21:42:50:70:8b:cb:8d:
e1:70:64:44:66:2b:12:ef:40:4e:c2:07:a1:32:fa:15:70:5e:
a1:44:c1:ed:a0:bd:21:ed:76:e3:70:b5:fe:31:ce:67:c2:3a:
b5:8d:01:cd:0b:fa:9f:b4:05:47:44:1f:b8:8f:e1:d7:01:23:
c8:c2:c8:72:96:46:30:38:e4:86:ac:3d:1f:ea:39:7e:f0:e0:
37:8a:0a:83:68:41:b9:f0:19:34:5c:bb:ae:f9:ee:16:d6:4e:
a7:0b:c9:f9:7c:92:8c:ad:fc:22:38:a3:68:3a:cf:b3:63:30:
b3:ec:5b:fa:e5:d4:b0:2e:04:88:01:5a:0c:c5:50:89:42:6b:
ce:c9:28:cd:c6:bb:29:4e:b4:9d:08:b3:ca:cf:7e:cb:cf:86:
98:0b:09:77:cf:bd:7d:08:82:4c:66:76:5e:93:d9:3e:9c:73:
d8:8d:8f:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 08:37:44 2023 by rpki-client on console-fra.rpki-client.org