Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/KzEA9INtGmQLXAqKm_iRlc8gYhU.roa
File: KzEA9INtGmQLXAqKm_iRlc8gYhU.roa (raw, json)
Hash identifier: opTauMaFNWxH8XxzexX7K6qIXZ0RijwnZ63JINwFwcU=
Subject key identifier: 2B:31:00:F4:83:6D:1A:64:0B:5C:0A:8A:9B:F8:91:95:CF:20:62:15
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1037
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/KzEA9INtGmQLXAqKm_iRlc8gYhU.roa
Signing time: Tue 16 May 2023 08:35:53 +0000
ROA not before: Tue 16 May 2023 08:35:53 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 7482
IP address blocks: 203.79.192.0/18 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4151 (0x1037)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:35:53 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=2B3100F4836D1A640B5C0A8A9BF89195CF206215
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:01:1e:47:83:c8:7d:75:e9:c3:e9:d6:e4:4a:
cb:bb:25:9a:b8:65:dd:ee:fb:fa:af:c8:6c:2d:2b:
e4:88:34:df:63:b8:63:09:3b:38:e1:f0:09:35:21:
23:5d:3c:37:a1:fd:42:64:6a:b6:5b:80:cd:7d:02:
a7:12:c8:13:5b:c2:86:0a:cc:dd:a4:59:82:27:da:
77:64:97:c0:85:bf:6b:34:01:da:5c:74:e4:95:a8:
30:a4:32:e7:1a:0e:cf:14:9a:b0:ae:95:02:f5:a0:
90:d3:49:c5:28:25:d8:17:06:01:fd:c3:08:8f:1f:
8a:d0:b5:b1:cc:9f:80:f5:1d:fa:70:98:66:d0:1d:
7c:39:48:fb:08:9d:fd:4d:95:45:11:fd:cb:5a:73:
ac:cc:25:81:a3:16:b8:bd:06:13:87:e6:ad:cb:be:
4c:c6:0d:a0:c9:e5:60:9c:ea:ac:50:41:94:fe:a8:
ed:1a:53:83:7b:f7:e5:bf:0d:97:1d:08:42:12:39:
a4:91:e6:f4:ed:1f:dd:7a:1d:b5:13:2d:6e:46:20:
72:86:a5:03:0d:a1:1a:ce:15:86:c3:68:1a:68:41:
f2:65:35:e7:37:82:08:b2:cc:15:22:11:4e:63:32:
1f:50:c6:9d:ff:3a:e9:82:ed:5f:a8:3a:68:46:4c:
fa:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:31:00:F4:83:6D:1A:64:0B:5C:0A:8A:9B:F8:91:95:CF:20:62:15
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/KzEA9INtGmQLXAqKm_iRlc8gYhU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.192.0/18
Signature Algorithm: sha256WithRSAEncryption
55:d5:29:52:ee:bb:f2:17:af:b1:88:96:88:28:25:29:32:40:
6b:d5:6a:87:e9:30:9f:3b:fa:f5:ba:5c:c1:01:a4:5d:21:c4:
9f:22:8c:d9:8d:ff:32:71:00:3e:b5:78:69:ce:14:8a:82:3f:
ba:f2:8c:5f:26:40:1c:a6:f3:6b:f3:e5:de:8b:66:b1:44:af:
7a:89:0c:29:c0:14:f5:55:93:02:44:0f:b7:3f:35:65:7b:b3:
a0:74:c7:27:26:f1:a3:18:7b:3e:6e:16:a9:78:60:2a:e1:2f:
b4:6d:45:26:05:94:d9:61:1f:a0:3c:0d:c1:5f:6e:68:13:c9:
f5:39:76:1a:02:06:b5:3c:29:84:c5:c9:0e:e7:da:cd:e9:85:
14:a7:32:26:25:a5:a5:4f:ce:77:48:09:31:88:1c:fc:a7:41:
f8:5d:3a:8f:38:17:62:df:b5:55:60:df:05:ee:ac:7a:34:02:
7a:2c:59:81:67:2d:0b:24:27:33:66:8e:9c:77:6c:4d:22:f1:
bb:19:70:eb:a5:b1:90:d3:76:ee:e3:33:2d:0e:1c:bd:88:b9:
3f:20:7f:37:51:0c:d1:27:28:01:e6:2e:8a:58:59:b1:ff:9f:
6a:47:de:2e:36:3c:35:50:4f:2e:cd:1e:1c:7e:b5:d6:57:84:
29:df:b1:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 08:25:18 2023 by rpki-client on console-ams.rpki-client.org