Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/EqDHy_kLLw4rnCPdnxKyVh7A1GM.roa
File: EqDHy_kLLw4rnCPdnxKyVh7A1GM.roa (raw, json)
Hash identifier: ZzWDkqfWiU/tJYW40Nm7ok8MIhiNGCVirDb/PZudaKs=
Subject key identifier: 12:A0:C7:CB:F9:0B:2F:0E:2B:9C:23:DD:9F:12:B2:56:1E:C0:D4:63
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/EqDHy_kLLw4rnCPdnxKyVh7A1GM.roa
Signing time: Thu 15 Sep 2022 02:40:32 +0000
ROA not before: Thu 15 Sep 2022 02:40:32 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 7482
IP address blocks: 210.201.128.0/18 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:40:32 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=12A0C7CBF90B2F0E2B9C23DD9F12B2561EC0D463
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:91:be:70:fd:01:64:a4:f4:18:bf:ab:ae:b8:
5e:0f:fb:7d:1a:2a:83:ae:8e:ac:ea:22:18:96:b8:
d5:b7:b2:4b:09:b3:6a:90:ae:6c:b9:8b:2e:7a:4c:
3e:6c:fb:91:2c:26:43:6a:bb:db:a1:f5:10:3c:d3:
24:12:ba:c6:0c:18:73:71:6b:9e:18:78:e8:a8:60:
63:ef:9c:7d:a7:3d:66:75:c9:dd:62:74:75:04:ff:
1d:24:82:ca:4d:3e:75:77:42:d0:22:a6:e8:44:57:
8d:36:33:d8:82:0e:0e:09:5a:fd:df:39:bc:d7:d6:
cd:43:26:0a:42:77:e5:52:4e:e1:71:54:b7:58:bd:
37:03:af:ec:d9:0e:68:77:91:92:65:3c:9f:f2:6b:
dc:09:fd:b9:4d:df:f0:6a:b8:77:18:6a:4b:d3:8e:
51:20:cb:d2:21:ff:87:66:8a:4e:ad:f1:e3:c9:b7:
48:9f:fa:6b:bd:4b:af:59:3c:f5:9b:aa:8e:dd:1d:
a2:3a:c2:41:0f:0f:3c:05:5a:70:2d:7a:89:1a:b3:
4e:de:17:c5:e0:09:c4:cf:19:df:bd:45:5d:dc:d8:
db:e8:1e:96:9e:3c:89:be:29:8e:fc:0a:42:59:3e:
5d:d9:eb:e7:06:72:f0:19:dc:d3:f9:29:19:4e:c3:
6b:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:A0:C7:CB:F9:0B:2F:0E:2B:9C:23:DD:9F:12:B2:56:1E:C0:D4:63
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/EqDHy_kLLw4rnCPdnxKyVh7A1GM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.201.128.0/18
Signature Algorithm: sha256WithRSAEncryption
20:98:62:d0:df:07:5d:6f:4b:60:9f:51:fa:4c:5e:aa:ae:f9:
69:9b:6b:b4:57:aa:58:c1:ec:e4:27:6c:34:99:be:0c:c8:3e:
fc:80:41:4a:de:9f:54:33:e7:1d:06:50:13:24:22:d3:d8:d1:
b6:ff:38:0a:14:19:85:21:26:55:aa:7d:b5:80:88:4a:71:ac:
dd:1d:fb:98:d9:5c:5f:6c:fb:f1:84:dd:2a:7d:ec:3b:43:77:
e5:ab:ec:5d:d9:bf:3d:3a:ee:5e:c7:46:91:78:71:7d:18:8f:
c4:09:15:5b:c4:a8:8c:45:ce:51:a7:0d:cd:1f:cc:4e:43:de:
65:c1:f4:e0:be:e8:f7:ec:5d:97:b1:70:c0:e6:a3:a5:ab:61:
05:68:a2:30:d1:07:84:72:87:0b:0a:7a:ce:d7:de:18:48:66:
0f:f7:5b:20:83:8c:ec:2b:85:4e:b9:58:12:e0:25:e5:c3:4e:
1b:ec:3b:ba:47:69:58:2f:55:fa:e3:14:e1:6b:5d:4c:9d:96:
f3:99:33:0b:03:2f:46:90:74:5c:d1:ec:a1:e3:5f:53:5b:69:
5c:44:6a:2c:fc:5b:2e:7f:02:b4:77:25:3d:86:42:fd:a1:d9:
5a:b3:5f:fb:7d:3f:03:a7:d2:33:1e:dc:fd:4e:d3:85:02:a5:
c2:bd:2a:98
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICD2MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMjA5MTUw
MjQwMzJaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDEyQTBDN0NCRjkwQjJG
MEUyQjlDMjNERDlGMTJCMjU2MUVDMEQ0NjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCykb5w/QFkpPQYv6uuuF4P+30aKoOujqzqIhiWuNW3sksJs2qQ
rmy5iy56TD5s+5EsJkNqu9uh9RA80yQSusYMGHNxa54YeOioYGPvnH2nPWZ1yd1i
dHUE/x0kgspNPnV3QtAipuhEV402M9iCDg4JWv3fObzX1s1DJgpCd+VSTuFxVLdY
vTcDr+zZDmh3kZJlPJ/ya9wJ/blN3/BquHcYakvTjlEgy9Ih/4dmik6t8ePJt0if
+mu9S69ZPPWbqo7dHaI6wkEPDzwFWnAteokas07eF8XgCcTPGd+9RV3c2NvoHpae
PIm+KY78CkJZPl3Z6+cGcvAZ3NP5KRlOw2u/AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUEqDHy/kLLw4rnCPdnxKyVh7A1GMwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvRXFESHlfa0xMdzRybkNQZG54S3lW
aDdBMUdNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBtLJgDAN
BgkqhkiG9w0BAQsFAAOCAQEAIJhi0N8HXW9LYJ9R+kxeqq75aZtrtFeqWMHs5Cds
NJm+DMg+/IBBSt6fVDPnHQZQEyQi09jRtv84ChQZhSEmVap9tYCISnGs3R37mNlc
X2z78YTdKn3sO0N35avsXdm/PTruXsdGkXhxfRiPxAkVW8SojEXOUacNzR/MTkPe
ZcH04L7o9+xdl7FwwOajpathBWiiMNEHhHKHCwp6ztfeGEhmD/dbIIOM7CuFTrlY
EuAl5cNOG+w7ukdpWC9V+uMU4WtdTJ2W85kzCwMvRpB0XNHsoeNfU1tpXERqLPxb
Ln8CtHclPYZC/aHZWrNf+30/A6fSMx7c/U7ThQKlwr0qmA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:54 2023 by rpki-client on console-fra.rpki-client.org