Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/IOtgsOXM1_NRT1MntGZh32jT7n8.roa
File: IOtgsOXM1_NRT1MntGZh32jT7n8.roa (raw, json)
Hash identifier: d6KDzunoop+zmbAIeNUEDCwM8A8YTm/lmqpm6pon1EE=
Subject key identifier: 20:EB:60:B0:E5:CC:D7:F3:51:4F:53:27:B4:66:61:DF:68:D3:EE:7F
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/IOtgsOXM1_NRT1MntGZh32jT7n8.roa
Signing time: Thu 15 Sep 2022 02:40:16 +0000
ROA not before: Thu 15 Sep 2022 02:40:16 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131591
IP address blocks: 2404:0:8000::/36 maxlen: 56
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:40:16 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=20EB60B0E5CCD7F3514F5327B46661DF68D3EE7F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:56:9d:0c:00:44:17:4e:bf:40:6f:13:bd:62:
aa:19:c9:13:51:09:ea:94:d3:b4:ee:bf:05:d1:83:
88:7f:f6:53:c8:ef:7d:92:bd:a3:b9:ce:e0:81:30:
e5:56:89:14:bd:e1:98:04:8c:23:19:45:91:f1:91:
f7:f5:cb:4a:17:0c:ca:b2:93:4a:78:8b:3e:f5:87:
30:10:af:cc:00:b5:ef:61:ac:2e:b9:f4:0b:5b:d5:
2d:5c:91:d2:a5:fe:80:e9:46:93:16:22:7e:47:99:
5c:46:87:6c:2a:8a:71:4e:95:bb:b5:56:f9:4c:d0:
83:7d:d5:24:dc:f4:29:85:43:de:f7:0c:d8:30:09:
8d:a1:32:b2:a4:04:63:4a:b0:6d:9a:9d:79:32:7e:
2e:63:9f:e6:42:56:f4:2d:76:bd:97:fd:89:0c:e3:
f7:b9:3e:25:db:8b:dc:7c:2a:5b:a5:37:30:2e:26:
4a:7f:db:a5:08:9c:67:e5:9f:84:61:3c:4e:f5:c8:
1f:68:f3:31:df:2e:cf:2f:8d:f2:98:a6:7c:b9:71:
0d:34:5b:4c:71:ab:d6:db:fb:55:1a:3f:02:d7:9d:
ca:44:b2:ce:8a:24:37:ee:c1:c9:ae:69:83:dc:50:
54:2a:eb:eb:9a:07:f0:0d:37:8d:8c:73:5b:d4:4b:
d5:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:EB:60:B0:E5:CC:D7:F3:51:4F:53:27:B4:66:61:DF:68:D3:EE:7F
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/IOtgsOXM1_NRT1MntGZh32jT7n8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:0:8000::/36
Signature Algorithm: sha256WithRSAEncryption
07:fd:f2:4f:a3:e8:46:0d:47:78:0d:4f:59:91:0e:bf:c1:ef:
45:e6:4e:5a:1d:a9:8b:19:08:d1:fe:2d:3f:ae:30:51:29:4b:
75:e7:5f:5f:3b:49:99:b2:db:c9:75:9a:84:f2:fb:fa:56:86:
d4:04:fe:e6:70:60:a4:18:4d:68:48:91:9a:2b:d0:cf:da:3f:
bd:f4:1c:30:9c:4d:56:cf:26:f2:74:9f:f1:5c:78:0d:b3:22:
11:84:cb:99:44:3b:86:0c:40:c9:ca:cc:6d:da:70:7e:04:0b:
36:84:40:73:1d:69:cd:ea:d1:7a:7d:7d:52:90:e2:13:26:80:
3d:79:0c:10:e3:79:84:8f:14:4a:4d:d8:b7:bf:3a:66:47:2b:
47:35:f4:0f:69:71:f4:82:d6:47:cc:57:32:12:24:c1:fb:02:
5b:f6:52:e5:e1:d7:17:93:20:34:5c:d9:00:7f:3c:f5:cd:0a:
af:08:2c:e3:47:00:70:c3:46:ac:dc:4f:f2:05:af:25:c8:14:
67:84:cd:5c:3b:57:69:9f:b5:f4:16:9a:d0:4c:76:39:14:1e:
b2:81:8c:df:e4:79:a8:eb:69:2d:74:0e:9b:c4:2f:09:23:0f:
83:dd:b1:55:3c:2b:13:1c:a3:ec:f5:8c:12:45:d0:5f:fb:f2:
dd:4c:24:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:44 2023 by rpki-client on console-ams.rpki-client.org