Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/KcmecG8xxpWx-mKdNXDYxlXFxmY.roa
File: KcmecG8xxpWx-mKdNXDYxlXFxmY.roa (raw, json)
Hash identifier: rQLmLVkYX9ckaj+3y5rO97H+8ZQ5Zm2g+Dm+9rWa7Wc=
Subject key identifier: 29:C9:9E:70:6F:31:C6:95:B1:FA:62:9D:35:70:D8:C6:55:C5:C6:66
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 10C1
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/KcmecG8xxpWx-mKdNXDYxlXFxmY.roa
Signing time: Tue 16 May 2023 08:36:35 +0000
ROA not before: Tue 16 May 2023 08:36:35 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24154
IP address blocks: 210.202.192.0/18 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4289 (0x10c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:35 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=29C99E706F31C695B1FA629D3570D8C655C5C666
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:a3:38:18:9b:d3:a6:fc:86:91:1e:50:ce:8c:
05:3b:8c:74:33:e1:01:28:4a:d4:dd:10:a8:b3:bc:
d4:2d:36:2e:44:ab:64:33:90:1f:38:b9:1c:72:24:
84:59:15:0a:f9:49:dc:c8:fd:4e:6f:8a:a1:75:a1:
37:e6:df:2a:c8:d4:a6:49:b0:69:80:c4:82:d1:de:
8c:59:7e:8e:0e:a5:c5:57:62:fc:f6:a3:7f:ee:87:
18:93:6b:67:2a:a5:0d:03:92:6a:6d:d4:9e:dc:05:
97:d5:f6:1c:41:3c:cf:51:ea:a4:ed:98:59:a5:51:
8f:33:3f:d5:0e:6f:5d:a5:96:a0:25:8e:93:19:22:
df:1a:27:a9:6a:7f:2e:08:4b:43:94:0e:55:3c:36:
0d:b9:29:cd:fc:b6:b0:a1:6b:4f:f1:a6:25:c7:1b:
3c:2a:a8:b3:53:88:e5:d2:dd:f3:30:0a:4b:71:39:
ae:0b:20:32:1c:b0:b6:2b:98:94:d8:e9:a8:c0:cd:
09:bd:cf:78:3e:90:e0:82:fa:45:c2:be:c8:82:f8:
c3:6f:87:55:f0:91:1d:06:ae:63:5e:3d:cd:05:2b:
3a:af:15:69:b2:42:26:36:9b:97:92:74:3d:2c:6d:
72:09:76:d6:e7:f3:69:9c:55:3e:4f:44:08:f0:29:
86:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:C9:9E:70:6F:31:C6:95:B1:FA:62:9D:35:70:D8:C6:55:C5:C6:66
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/KcmecG8xxpWx-mKdNXDYxlXFxmY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.202.192.0/18
Signature Algorithm: sha256WithRSAEncryption
1a:cc:b3:32:24:e6:ab:d8:c6:69:7f:2a:0f:64:b9:8d:bb:db:
3c:e5:9a:46:14:09:43:dd:f0:17:eb:b5:ac:c0:22:f9:2e:bf:
1f:c1:a2:03:f4:b4:ea:df:91:4a:59:7c:59:93:1b:6d:ee:8f:
b8:74:50:e7:76:6b:02:2e:5b:e7:da:f7:69:ff:ce:09:1d:81:
88:9b:b6:52:c3:59:01:16:84:27:61:da:aa:25:0c:75:a4:fc:
e0:c8:05:69:c5:22:c7:7a:a8:88:d4:56:b7:ca:43:10:c8:ab:
67:ac:0f:40:18:b8:e1:d5:a0:cb:07:99:a5:c4:29:77:c1:b5:
9f:e3:5f:e6:16:c0:57:a5:e2:10:f3:c3:2d:2d:ef:79:62:63:
c8:d0:c7:b7:b5:6e:8f:3e:3c:56:a0:e3:29:b2:8c:e3:6d:39:
f8:dc:cc:25:d9:77:47:d8:d9:ac:a4:77:2a:61:81:79:dc:72:
39:b7:e3:d2:bc:9a:09:f1:73:27:67:05:9e:8e:f1:4f:2a:bb:
4b:b7:bc:13:10:c4:07:0d:5b:72:8a:be:27:b2:7e:02:59:ac:
43:85:ea:28:32:f7:ec:2f:59:cf:cd:90:d2:da:04:fb:72:00:
eb:b9:e0:c4:ec:f4:d8:33:a8:8f:33:a0:9c:e4:8e:83:45:21:
d3:2a:f8:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 08:37:45 2023 by rpki-client on console-fra.rpki-client.org