Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/IIugTNDpykFZ8zXriBCoPPPAcvw.roa
File: IIugTNDpykFZ8zXriBCoPPPAcvw.roa (raw, json)
Hash identifier: Kp/JASjOgCobtzORGw0Lt9B59Obu801ZxYTk//fxAMU=
Subject key identifier: 20:8B:A0:4C:D0:E9:CA:41:59:F3:35:EB:88:10:A8:3C:F3:C0:72:FC
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/IIugTNDpykFZ8zXriBCoPPPAcvw.roa
Signing time: Thu 15 Sep 2022 02:40:11 +0000
ROA not before: Thu 15 Sep 2022 02:40:11 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9311
IP address blocks: 210.201.80.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:40:11 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=208BA04CD0E9CA4159F335EB8810A83CF3C072FC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:2b:02:15:c6:65:1c:00:c4:39:90:ee:02:47:
fd:cf:1d:ad:e2:94:9e:7b:a7:f3:0c:89:c7:94:f5:
cf:45:a2:9f:1a:2e:08:9d:68:3b:18:1c:20:6c:d8:
8f:b3:57:b8:c9:be:fa:ef:28:82:3f:a2:a0:62:84:
18:30:46:4c:1d:a3:ee:5e:1d:15:9b:d4:59:87:fb:
55:64:3e:00:ed:d3:e2:b7:24:67:29:15:34:8d:6e:
d6:16:ef:d4:77:bd:48:6d:48:68:ec:e0:0b:29:77:
f6:fe:43:e6:1e:e6:ce:72:67:f3:e2:d4:88:4b:8e:
5b:89:18:24:e7:90:e8:8a:dd:7f:05:ec:07:5b:94:
19:87:b5:1e:33:5e:a1:40:f5:5d:50:22:85:09:46:
67:b1:78:e2:e2:c3:cf:70:b4:1e:fb:4b:92:27:29:
f5:41:7f:91:e0:29:0e:a8:ef:da:e4:4a:dd:fa:41:
88:0f:18:84:92:95:1a:73:8d:c2:7f:61:bf:c6:db:
97:77:49:aa:8b:e3:ca:8c:56:b2:71:d3:74:51:d7:
f9:c3:b5:20:46:a5:89:6b:c0:5c:0b:0b:4e:ad:12:
ea:68:36:83:26:a8:03:88:20:ce:40:f5:8e:d0:54:
65:0c:f5:8d:1d:be:32:da:1f:0e:e9:b6:45:46:7c:
90:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:8B:A0:4C:D0:E9:CA:41:59:F3:35:EB:88:10:A8:3C:F3:C0:72:FC
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/IIugTNDpykFZ8zXriBCoPPPAcvw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.201.80.0/22
Signature Algorithm: sha256WithRSAEncryption
76:bc:2f:62:7b:1f:83:d6:f7:6a:ae:af:5f:2f:5c:74:fb:9d:
8f:fd:b4:73:19:c4:21:f9:62:6e:52:3e:70:27:3a:55:4c:ae:
07:86:0e:be:5d:74:56:78:bc:c3:21:a4:1e:a9:66:27:7a:8d:
cc:14:87:11:d9:cf:32:5a:d7:39:d2:2d:05:72:52:1c:e1:95:
35:68:73:fd:76:c5:d2:ea:af:72:2e:fd:e6:bf:9f:2b:21:eb:
60:b4:8b:e8:9b:bd:4d:03:f7:23:f0:24:ed:07:f2:0a:2a:31:
62:12:cf:e0:56:28:20:19:11:b6:7b:db:8f:d8:d4:02:bf:23:
a0:ff:35:44:21:26:46:59:43:c1:0a:62:bd:ce:ca:d7:ac:38:
40:6d:a9:b9:2d:24:48:db:26:07:fd:cb:4f:80:f7:91:8b:88:
49:90:17:0c:f7:d9:5b:ea:9c:6f:c1:f6:70:1b:72:5e:03:5d:
5c:f4:7e:02:ff:0c:f1:60:73:e3:0e:10:78:69:9a:f7:28:31:
12:73:e8:8e:ab:96:2c:ce:4d:09:00:60:29:6d:fd:b6:fc:ae:
12:a7:f3:a5:6f:e5:d7:e2:4a:f8:4a:41:10:69:8b:bd:09:a3:
5b:6f:db:0e:01:cc:a5:da:c4:0d:2b:b7:2a:88:9a:9a:24:16:
d1:a1:bc:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:54 2023 by rpki-client on console-fra.rpki-client.org