Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/NPMXaXPapK6pFNUO-1OqRjXq7WI.roa
File: NPMXaXPapK6pFNUO-1OqRjXq7WI.roa (raw, json)
Hash identifier: sYME6Tcf8Dai8QcEM6XFdZYhfWoNXVaZTA8UTHZybdc=
Subject key identifier: 34:F3:17:69:73:DA:A4:AE:A9:14:D5:0E:FB:53:AA:46:35:EA:ED:62
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/NPMXaXPapK6pFNUO-1OqRjXq7WI.roa
Signing time: Thu 15 Sep 2022 02:40:15 +0000
ROA not before: Thu 15 Sep 2022 02:40:15 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 2404::/26 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:40:15 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=34F3176973DAA4AEA914D50EFB53AA4635EAED62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:04:35:cf:20:1a:f7:19:4b:b5:ed:8a:fd:ba:
ba:54:94:c7:61:b4:57:2d:02:f6:09:83:eb:c3:45:
e1:44:ad:37:ce:79:c3:a5:91:fb:19:41:e2:11:0d:
58:da:a1:14:47:96:00:b4:56:a4:5c:e9:01:d4:d3:
2f:8b:20:ea:73:a4:46:32:cc:30:47:28:a0:c1:35:
f2:8b:51:9b:00:9c:3f:a5:c0:b2:84:1e:6f:26:57:
d6:9f:0c:3f:ce:07:6c:fb:ac:ba:41:9e:bd:a9:92:
ce:c2:40:26:ab:2a:a9:ed:bc:d8:9b:02:27:96:fb:
92:4f:87:b1:97:c6:38:c8:8e:fe:1f:1d:9b:9f:93:
72:d8:bb:fe:b3:69:72:a9:ce:ba:4a:fb:c4:b6:70:
4f:78:dc:e7:f5:a4:21:8f:3c:07:4f:65:e3:3d:e5:
ae:4d:3e:75:d0:c2:6d:d1:13:f7:5f:9d:5a:ec:7a:
af:57:93:54:71:24:4b:a5:d6:cb:2a:22:03:0d:fd:
59:82:48:89:5e:6d:b3:b8:d9:b1:1b:f3:de:78:02:
51:46:e4:02:2f:44:43:c2:31:01:55:c0:8c:55:90:
e4:ef:75:7a:80:4d:e6:8c:2f:14:83:bd:c3:e7:38:
33:83:75:b4:27:23:3c:89:59:56:c8:84:37:f0:1e:
f8:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:F3:17:69:73:DA:A4:AE:A9:14:D5:0E:FB:53:AA:46:35:EA:ED:62
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/NPMXaXPapK6pFNUO-1OqRjXq7WI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404::/26
Signature Algorithm: sha256WithRSAEncryption
4f:2b:01:a4:c4:94:15:fa:54:8c:84:38:fc:5e:0d:63:f4:6d:
17:50:69:8e:74:b4:c3:1b:cd:2a:87:fa:8f:3f:8a:51:b5:06:
a3:9a:56:4e:bc:6b:ed:bb:42:46:ee:01:40:03:a8:f5:01:8c:
28:be:02:5a:cc:4a:5a:97:3f:90:54:9c:39:03:56:30:50:97:
75:c1:dc:04:57:67:fb:3c:28:36:99:ef:74:67:00:c9:5b:34:
85:78:a7:7f:26:a4:fa:2b:67:53:45:9e:05:a1:6c:9f:12:c7:
a1:c3:97:bd:e3:0b:fb:df:00:7b:ca:80:f0:13:c0:e9:dd:91:
3f:b2:cd:b3:2b:3e:97:4e:86:19:9e:de:67:3e:39:be:3a:b2:
8c:39:ed:09:97:5b:b9:5c:ff:51:69:d0:a1:6e:1e:9a:1e:e6:
0e:06:01:d4:59:bd:b1:2d:17:ce:ca:4b:cf:92:1c:7e:50:12:
8c:87:4b:a7:c3:0a:a0:ca:89:d8:f5:ab:a7:1b:0a:e6:e1:07:
53:3b:21:2c:c8:c0:4a:7b:5e:06:4e:76:34:89:ca:17:2b:7e:
a2:01:6c:57:7b:89:6e:3d:a1:a1:11:7c:28:3c:c4:b4:13:dc:
4e:0e:50:57:70:7a:3e:56:9b:ba:37:72:f3:40:49:9a:40:ce:
fd:50:02:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:55 2023 by rpki-client on console-fra.rpki-client.org