Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/HCIn7XmJKtsQOQhZpO-Q01Wyli4.roa
File: HCIn7XmJKtsQOQhZpO-Q01Wyli4.roa (raw, json)
Hash identifier: 72UE9jeQetQ2hsOaY7PB4a03AmUkgFmER9saAulmQIQ=
Subject key identifier: 1C:22:27:ED:79:89:2A:DB:10:39:08:59:A4:EF:90:D3:55:B2:96:2E
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/HCIn7XmJKtsQOQhZpO-Q01Wyli4.roa
Signing time: Thu 15 Sep 2022 02:40:32 +0000
ROA not before: Thu 15 Sep 2022 02:40:32 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9311
IP address blocks: 210.201.136.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:40:32 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=1C2227ED79892ADB10390859A4EF90D355B2962E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:62:6b:7f:49:4f:9e:1e:9c:da:90:80:2e:de:
90:39:99:47:56:67:7f:a6:e7:66:34:0b:c7:95:c4:
f1:68:06:84:11:3b:3a:10:d3:48:b1:7c:ac:da:5d:
52:da:d4:87:83:e5:06:d3:98:c7:a6:29:40:3e:e1:
6d:26:84:3b:94:82:fe:e2:92:c1:1c:11:c4:37:45:
ec:47:1d:10:de:e8:1f:ad:ef:b6:58:6f:fb:b2:41:
da:6b:13:2a:fd:19:ac:bd:ef:90:05:95:e8:2e:6e:
26:7a:ce:dd:d1:8f:44:f8:e1:ec:7e:fc:f7:b6:30:
30:31:f5:47:c6:93:d4:7d:b4:4c:c4:16:15:91:21:
ea:03:f6:a8:a3:c2:17:09:34:b7:46:28:1f:44:c0:
95:01:f5:a7:41:b4:cc:d4:ef:57:d8:c3:93:9e:da:
bc:96:e5:95:c3:a8:e4:be:37:0d:ac:2f:5a:c9:5b:
fc:d3:84:5b:5b:df:0e:87:e9:b5:27:34:a5:4d:5c:
14:18:3e:a4:8c:dd:00:7b:cb:af:8a:88:cb:0d:58:
2b:a3:c1:63:a1:0b:6f:90:3e:06:f4:db:65:46:d3:
87:c3:df:c0:1d:d2:76:32:94:29:e6:89:82:a3:6b:
68:eb:0d:63:b0:4f:16:60:87:b8:f3:de:6e:74:d1:
b2:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:22:27:ED:79:89:2A:DB:10:39:08:59:A4:EF:90:D3:55:B2:96:2E
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/HCIn7XmJKtsQOQhZpO-Q01Wyli4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.201.136.0/22
Signature Algorithm: sha256WithRSAEncryption
86:99:48:36:8f:48:b1:e2:57:aa:62:aa:21:7f:96:dc:8d:e2:
77:4f:21:60:42:ad:c9:a4:a5:ac:5b:78:bc:3b:de:ec:00:9b:
2e:82:3f:99:26:b1:6b:9d:0b:a5:29:ea:87:0f:d0:f1:04:4b:
6e:a7:13:e7:83:a1:4c:33:20:6b:0a:1b:9f:46:18:28:32:94:
14:3c:4c:d0:9e:fe:3e:1f:1c:b2:b2:b1:e3:16:2f:cb:c2:9b:
0f:26:6c:72:37:b6:6d:d3:65:3e:cf:5e:91:05:f5:92:b8:55:
ef:70:40:a8:57:45:38:47:20:6b:0a:21:bb:89:c5:f3:c8:69:
8e:18:ff:3e:d6:55:e9:e0:14:ee:8a:9e:da:9d:45:6c:a6:cd:
32:45:6d:1e:27:de:37:10:60:77:d0:ea:96:4d:68:6e:9c:6a:
71:6d:1b:04:7d:8f:6f:9c:35:7a:c8:6e:af:60:5c:13:f5:db:
9f:c8:9b:8c:63:bf:57:75:75:6c:81:bc:4e:24:2a:e7:e9:c3:
6a:fa:39:f0:f4:f9:65:95:7e:c1:fe:06:d5:a9:7f:3e:22:09:
3b:7e:3a:6e:e7:f3:cd:68:3c:3e:b2:cc:2d:47:3f:a3:31:6f:
64:f2:eb:88:ca:31:38:39:ed:49:21:ec:7a:ef:ca:3e:4c:8b:
7c:36:73:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:44 2023 by rpki-client on console-ams.rpki-client.org