Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/HuJogkgn8JdR_dfcF-Xv7LS6hus.roa
File: HuJogkgn8JdR_dfcF-Xv7LS6hus.roa (raw, json)
Hash identifier: h+X4sVOGUaaRdvFdcijUo8qkBK0YmtQpY69OgusKzss=
Subject key identifier: 1E:E2:68:82:48:27:F0:97:51:FD:D7:DC:17:E5:EF:EC:B4:BA:86:EB
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 10D2
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/HuJogkgn8JdR_dfcF-Xv7LS6hus.roa
Signing time: Tue 16 May 2023 08:36:42 +0000
ROA not before: Tue 16 May 2023 08:36:42 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 210.63.224.0/19 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4306 (0x10d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:42 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=1EE268824827F09751FDD7DC17E5EFECB4BA86EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:b6:69:9c:4a:80:ff:24:9e:e0:1e:f2:2f:a3:
f0:2e:90:5f:02:aa:d1:45:79:23:3e:77:30:72:01:
92:5d:b9:cc:b0:66:5e:25:e4:c8:ba:ee:8f:6d:72:
71:24:b7:8c:e2:ea:aa:3e:a5:39:a8:5c:c4:d8:e0:
7b:6d:69:c8:3d:1e:d6:a7:74:05:40:d6:26:26:60:
d3:4f:b4:d9:08:b7:ee:f7:3f:6e:14:b1:fc:b6:da:
59:89:1d:0a:b6:62:c5:14:12:20:0c:17:bb:eb:af:
2b:85:53:6e:82:bd:48:b5:33:f5:5d:ee:8b:e0:4f:
76:8c:19:2c:60:0f:fa:07:f9:a6:62:8a:08:f6:56:
4f:ac:93:08:09:fb:a3:24:65:d8:f7:28:4f:e6:18:
69:df:84:9c:ae:e0:3b:9b:47:e8:6c:d2:1f:00:37:
6c:60:18:96:d7:cc:24:1c:5f:fb:0c:3c:b4:13:78:
79:b7:39:1b:29:7c:71:b3:88:52:d8:9e:17:f6:d4:
89:87:a3:db:ff:b9:b2:e3:ee:92:6d:2c:3c:3a:02:
04:5e:cc:f8:35:12:9d:32:3c:85:52:6b:04:26:1d:
73:a3:ab:c9:dc:dc:d8:fd:db:3b:4c:bc:a9:7a:6e:
e9:46:8e:79:c3:d9:00:51:e2:5a:bf:e6:ba:00:f1:
15:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:E2:68:82:48:27:F0:97:51:FD:D7:DC:17:E5:EF:EC:B4:BA:86:EB
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/HuJogkgn8JdR_dfcF-Xv7LS6hus.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.224.0/19
Signature Algorithm: sha256WithRSAEncryption
0f:0f:3b:3a:d9:f9:32:eb:99:e2:cc:2f:29:80:c8:c9:bc:14:
e3:af:00:9f:91:2b:d9:31:d2:4a:0e:5e:2f:2e:84:af:03:57:
c8:b3:6b:aa:0d:5a:c0:1a:9b:37:39:2e:02:ef:fc:32:e4:bd:
8d:97:52:a4:e1:65:18:9d:09:31:5e:32:04:77:ab:0d:7e:65:
9e:54:5f:05:cd:f0:16:e9:ac:30:d9:0b:76:8c:f1:f7:28:33:
7e:31:41:90:e4:8d:ac:a5:3d:f1:dc:0f:9e:25:11:e4:5b:db:
29:24:d7:fb:43:cb:77:a5:a6:65:e1:5e:3f:17:2f:9f:50:ce:
4f:e4:e4:b9:a1:28:31:c3:d3:97:26:13:3f:45:15:ee:09:2f:
1d:2c:a8:3d:b6:84:84:aa:ae:60:11:ad:60:50:ef:41:7f:25:
10:8e:6d:9c:4d:ab:4a:9c:87:d5:1c:69:c9:93:5b:23:f2:1e:
a3:ad:94:98:33:7d:ef:cc:c1:5a:e0:c0:ed:66:03:c2:92:c0:
31:a7:9e:61:d9:41:e0:28:ef:d5:6d:76:0f:5a:f6:32:b4:42:
dd:6a:de:ed:fc:fa:ab:75:fd:e7:6a:7e:16:77:90:29:ea:83:
d3:01:e3:5a:b2:87:4e:03:06:e1:c3:6d:0c:d9:03:8f:26:1d:
ce:b5:d9:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 08:25:18 2023 by rpki-client on console-ams.rpki-client.org