Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/JuO011EIBvZcfvhGpHGN_KP-YKI.roa
File: JuO011EIBvZcfvhGpHGN_KP-YKI.roa (raw, json)
Hash identifier: lYbeu3TM1havJIWmCGL5KRujPD7tCASbfBxCkGVb91c=
Subject key identifier: 26:E3:B4:D7:51:08:06:F6:5C:7E:F8:46:A4:71:8D:FC:A3:FE:60:A2
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 10A1
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/JuO011EIBvZcfvhGpHGN_KP-YKI.roa
Signing time: Tue 16 May 2023 08:36:25 +0000
ROA not before: Tue 16 May 2023 08:36:25 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24154
IP address blocks: 203.207.44.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4257 (0x10a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:25 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=26E3B4D7510806F65C7EF846A4718DFCA3FE60A2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:c7:66:1a:cd:98:d9:c5:9e:d9:84:4f:0e:16:
cb:c2:89:81:ae:5a:b0:f5:69:00:93:1f:49:d6:67:
33:18:38:45:07:c1:f5:8e:5c:e3:2a:29:16:87:e9:
8b:0f:80:40:79:6e:be:2c:bd:e3:31:7d:8d:86:10:
91:f4:85:a0:30:fc:f8:a0:f0:2d:d9:74:f4:a4:c8:
f5:13:55:e4:ed:73:be:8b:65:55:aa:97:d3:31:c3:
54:a9:5a:ce:93:86:be:bd:e1:2a:03:74:64:fb:bd:
08:dc:54:ab:20:8e:09:9a:12:80:7d:05:e3:a5:7a:
7e:f2:47:10:7b:ec:c6:d0:f6:4b:d7:4e:0c:97:88:
62:88:11:99:d7:7c:38:25:7a:92:2f:31:df:cc:63:
f3:60:a6:35:33:e1:49:d9:9b:32:e0:68:b4:69:20:
a2:e2:f3:6f:9f:8a:c5:dd:c9:07:8c:95:5b:0e:c8:
ef:2c:c6:23:dc:88:36:e6:0b:19:cb:5f:43:04:15:
8a:07:f7:97:58:f5:3a:c7:8c:04:04:12:73:3c:56:
64:8e:0f:93:88:6a:4d:ae:d0:41:89:4c:e2:cc:a0:
d6:cb:a4:2c:74:6c:b3:3d:a7:03:cd:94:1c:8a:4a:
6a:8e:cd:1d:5b:5e:4d:bd:b5:32:1d:d0:3c:6d:4c:
c8:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:E3:B4:D7:51:08:06:F6:5C:7E:F8:46:A4:71:8D:FC:A3:FE:60:A2
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/JuO011EIBvZcfvhGpHGN_KP-YKI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.207.44.0/22
Signature Algorithm: sha256WithRSAEncryption
5c:87:8b:fb:22:b5:bc:3c:f8:28:2c:a6:6c:a6:fb:9e:17:c0:
33:62:9e:08:46:a5:d5:0e:e7:5d:58:12:6e:58:e2:f7:fb:9f:
f1:c0:41:25:3f:01:a9:bd:27:35:f9:c5:fc:a0:55:cc:87:c4:
59:75:f6:c1:98:6d:f4:7e:65:4c:ae:e8:05:f6:f1:69:dd:55:
ea:99:35:c3:a9:fc:4a:84:9e:33:ee:51:ee:20:7d:94:14:47:
2b:a2:b5:49:f0:4c:88:7e:6b:46:80:2f:24:a4:30:ec:25:84:
a0:cb:a3:55:62:a1:09:b8:1d:ad:31:8c:c5:32:b7:00:62:5a:
4f:fc:f5:82:fb:c3:87:19:e9:22:1f:5a:ca:3b:0d:98:1d:ae:
d8:23:45:4d:75:7b:d7:e8:e4:62:c2:43:f6:81:96:ef:c4:04:
bb:51:87:1b:41:85:4b:cb:5c:90:f2:89:28:ff:fb:46:14:54:
37:2a:f6:d6:8a:a6:c1:53:43:1f:55:53:6e:e8:b8:e0:64:5e:
b8:db:88:b7:43:c0:e5:fa:71:3d:c5:f2:1e:0b:ba:ff:d5:c2:
c3:bb:b0:f1:4a:96:ee:cf:30:2c:f8:25:e8:5e:00:ae:e6:8e:
1e:8c:20:9a:66:13:1b:05:ae:de:cc:24:07:b7:ca:00:7f:be:
c9:0c:6d:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 08:37:44 2023 by rpki-client on console-fra.rpki-client.org