Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/FMX3Fa2_18h-JowxtcWuHKUwQMM.roa
File: FMX3Fa2_18h-JowxtcWuHKUwQMM.roa (raw, json)
Hash identifier: r5DmrMCMiI9WA02KJekxE7UOzArB3ZdHmbRl7DziRNM=
Subject key identifier: 14:C5:F7:15:AD:BF:D7:C8:7E:26:8C:31:B5:C5:AE:1C:A5:30:40:C3
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1032
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/FMX3Fa2_18h-JowxtcWuHKUwQMM.roa
Signing time: Tue 16 May 2023 08:35:52 +0000
ROA not before: Tue 16 May 2023 08:35:52 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 210.203.0.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4146 (0x1032)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:35:52 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=14C5F715ADBFD7C87E268C31B5C5AE1CA53040C3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:6a:04:db:42:06:26:ca:4e:01:1b:de:75:f7:
b2:89:4c:a1:a6:a0:e1:c8:19:06:d9:9e:ee:13:f8:
ce:af:28:c3:4b:89:fd:2c:e0:d4:34:1b:d3:03:0a:
93:52:7b:ff:06:d2:ea:8d:39:b8:c8:bb:43:15:58:
91:f0:3c:f3:87:7d:52:1e:82:c0:e0:33:4b:85:56:
51:24:b0:6e:9c:55:8f:17:0a:96:cd:7d:a3:d4:36:
ce:5e:9d:cf:ad:fe:5b:3e:0c:8a:34:8c:aa:ef:9b:
66:3c:47:f2:24:48:34:bb:55:bb:72:f8:0e:0e:b6:
67:8f:45:76:4d:4c:2e:a2:0b:7f:95:ed:6b:44:73:
47:bc:27:60:5b:a8:c6:07:3f:09:60:a5:6c:16:5a:
64:04:35:9d:db:04:a6:37:5b:33:5c:f1:77:e8:53:
fd:ee:d2:da:d6:e9:0f:61:0f:0d:fb:09:b4:d3:fc:
74:3d:99:55:18:9d:58:12:52:4c:f1:73:f6:c1:23:
93:60:d1:4d:59:8c:8f:2b:5a:78:dc:01:6e:4c:60:
f2:7c:c5:05:fb:4b:0c:f7:13:ef:83:0f:69:96:f2:
37:70:4b:12:4b:48:e4:7f:52:c2:45:9e:d2:b7:4f:
2e:40:d2:5e:07:1f:1c:5a:64:42:9f:22:b5:24:df:
4f:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:C5:F7:15:AD:BF:D7:C8:7E:26:8C:31:B5:C5:AE:1C:A5:30:40:C3
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/FMX3Fa2_18h-JowxtcWuHKUwQMM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.203.0.0/24
Signature Algorithm: sha256WithRSAEncryption
01:07:40:2f:84:f3:1a:52:70:6f:51:63:f9:f7:3f:dd:43:6a:
5b:45:bf:6d:73:a4:04:79:54:2c:f3:5a:9e:d9:3e:c5:14:99:
a5:17:9c:dd:28:95:41:c3:bf:d9:b8:40:e1:0f:dd:3d:81:ad:
8e:2f:6f:11:f5:11:9d:da:cf:d6:c1:84:42:35:db:bf:6a:e2:
68:a6:c3:63:25:0f:50:92:84:80:dc:4a:69:c1:17:d1:da:1e:
79:87:60:8d:a2:73:a9:1b:7a:17:c3:ae:71:9d:38:92:27:82:
90:a6:65:78:43:5a:17:e8:cc:e0:de:e5:0c:da:55:11:7c:9a:
40:1f:51:fb:45:29:74:8c:d5:f6:6c:b8:f2:2c:0c:60:ec:30:
15:1a:4a:51:ab:83:64:bc:72:90:45:6b:a7:3e:45:58:93:f0:
b5:c1:61:ae:24:6b:09:cd:5d:40:aa:06:86:56:a7:76:9c:3e:
3f:53:26:1d:f1:7e:85:9c:04:29:09:d7:78:24:b5:0a:b6:9d:
57:7d:7f:d8:ea:f3:51:06:43:6b:3f:cf:4e:c0:8f:63:e3:68:
0b:f6:4f:d5:de:99:73:d0:3c:e1:e8:74:a2:8e:2e:e8:57:21:
4e:88:39:6f:05:13:fd:6e:d2:ae:6a:f1:20:31:90:8a:e1:21:
08:3f:55:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 08:37:44 2023 by rpki-client on console-fra.rpki-client.org