Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/KvUKgjbbOxsgp37CEibLLkruMAI.roa
File: KvUKgjbbOxsgp37CEibLLkruMAI.roa (raw, json)
Hash identifier: 2euxUslHitLMzH05fseW3tmY3zK5olBBKq0Ma8tFArk=
Subject key identifier: 2A:F5:0A:82:36:DB:3B:1B:20:A7:7E:C2:12:26:CB:2E:4A:EE:30:02
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1063
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/KvUKgjbbOxsgp37CEibLLkruMAI.roa
Signing time: Tue 16 May 2023 08:36:08 +0000
ROA not before: Tue 16 May 2023 08:36:08 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131597
IP address blocks: 218.35.64.0/19 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4195 (0x1063)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:08 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=2AF50A8236DB3B1B20A77EC21226CB2E4AEE3002
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:73:34:30:8c:6b:4e:8b:9f:12:c7:4b:49:16:
e4:94:88:f3:71:40:2b:1b:c9:7a:12:21:be:3c:ac:
b8:be:1d:2d:cb:95:66:06:1d:30:14:c1:79:a7:9e:
3c:d0:3e:d3:0e:fa:38:a9:58:54:97:18:57:69:0c:
47:23:02:36:9d:8e:72:73:c2:96:53:52:be:69:d6:
a5:d4:32:a0:fc:3a:ca:79:b1:cf:87:c7:2b:04:2e:
70:01:59:9f:f2:0a:3c:ab:8f:9f:4f:c8:44:5a:5c:
4f:d6:d4:09:cb:16:b4:d8:a0:e7:44:51:e1:65:05:
af:c3:72:2e:dd:67:e3:57:e4:31:ba:c3:d6:6c:5a:
41:b4:18:a2:60:0e:de:fc:7d:b0:2c:1a:8e:b3:24:
45:4b:2c:04:88:98:67:ae:df:47:7f:d0:03:41:b9:
74:3f:3d:7b:2e:df:a5:f4:f4:b2:b7:35:ff:d7:05:
20:4d:83:39:b7:1f:c5:13:9b:62:9c:85:7c:34:8c:
d0:77:68:9f:06:58:e3:a0:fa:a2:8d:15:b9:7a:f4:
fb:de:a6:aa:0f:12:74:5a:c9:55:f0:f5:a4:3d:cd:
07:a7:fa:6c:d6:7e:01:14:32:b8:3b:c1:16:e0:2e:
6e:a9:8a:0d:ef:3e:8b:20:b3:3e:0b:16:72:37:58:
1d:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:F5:0A:82:36:DB:3B:1B:20:A7:7E:C2:12:26:CB:2E:4A:EE:30:02
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/KvUKgjbbOxsgp37CEibLLkruMAI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.35.64.0/19
Signature Algorithm: sha256WithRSAEncryption
22:aa:95:96:75:00:9e:7a:41:0c:be:ca:c9:40:6e:a7:ac:02:
7c:d9:82:1e:7a:c1:24:3a:19:ab:88:e7:2b:cb:b7:23:fa:f8:
d0:9e:a1:bf:dd:ca:9d:17:43:de:39:9f:55:b6:51:68:f9:aa:
4e:fc:a8:6d:92:65:31:54:51:4f:45:61:92:db:f9:43:85:4e:
c7:a0:05:7e:74:9e:c6:f2:2f:26:46:a1:be:d7:ff:b4:58:5f:
58:bf:c9:3b:76:a4:48:cb:6e:6c:0f:e2:39:50:1f:10:19:63:
c0:17:3d:64:71:c1:09:4f:16:ad:a4:55:34:46:75:8f:18:6d:
7a:e0:17:45:6f:43:cc:73:ab:0a:02:32:69:b0:f7:ed:da:c4:
95:e6:c6:42:ca:64:66:33:71:e6:46:ee:70:8d:f3:96:ab:19:
6a:76:f3:11:b0:ec:99:0b:4c:31:0b:2f:a3:fb:88:fa:17:ae:
71:e9:a0:29:b4:bc:e0:f9:6a:d5:9f:5f:e0:93:2d:37:c1:9f:
e1:94:28:34:c7:b6:67:e2:37:aa:84:55:7a:2d:01:1c:2b:a1:
53:23:97:8f:12:c1:0e:b2:4b:31:3d:e4:26:8d:d3:be:6f:cf:
fe:c2:76:a2:74:04:7a:a4:78:39:0d:0c:3d:8f:14:13:d5:7e:
88:e1:95:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 08:37:45 2023 by rpki-client on console-fra.rpki-client.org