Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/NTuQ6RuGkT7sEsCWRoR8R0CW52k.roa
File: NTuQ6RuGkT7sEsCWRoR8R0CW52k.roa (raw, json)
Hash identifier: N99qtDKssEB4ytY0MOmCdfdNYz0uDXXhqDRwjMINOhk=
Subject key identifier: 35:3B:90:E9:1B:86:91:3E:EC:12:C0:96:46:84:7C:47:40:96:E7:69
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 10F0
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/NTuQ6RuGkT7sEsCWRoR8R0CW52k.roa
Signing time: Tue 16 May 2023 08:36:50 +0000
ROA not before: Tue 16 May 2023 08:36:50 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24154
IP address blocks: 210.202.48.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4336 (0x10f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:50 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=353B90E91B86913EEC12C09646847C474096E769
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e1:f0:6e:61:70:74:a5:0f:da:69:92:a8:8e:
21:9e:14:78:d6:f7:de:43:58:90:0b:d2:f0:0e:9b:
c3:7f:21:e2:ae:90:9f:db:e4:76:78:21:e9:a5:b9:
1e:a7:3c:0c:aa:d1:cc:18:22:c7:5f:9e:d0:56:ca:
0d:fd:a3:2f:44:57:82:49:83:6e:25:5c:60:ba:7a:
e3:ff:6a:08:8a:1d:ce:61:76:2b:4c:9e:f4:15:d2:
a3:b5:4d:6e:01:67:45:17:9e:d9:8a:09:5b:2c:77:
cc:a4:72:8d:e6:27:34:1a:80:e4:e2:c4:12:b7:b1:
02:7e:2a:c6:be:ec:5f:b3:6f:63:c4:78:52:7f:de:
0a:0a:c0:5c:ba:78:c3:ab:dd:2a:b2:f8:48:f4:c9:
5d:3a:c8:d9:21:08:5d:95:8f:44:5c:c3:8b:30:e0:
ad:77:79:d0:77:ff:04:d0:fb:3a:e9:69:3e:cd:b6:
89:d0:3e:7d:88:1e:aa:82:ee:6b:c1:a9:31:20:c5:
56:4e:70:ff:1a:bc:38:13:f8:5b:ed:29:33:dc:bc:
a0:23:1c:77:a3:da:46:28:c5:79:f6:ea:cc:1c:53:
3b:e2:55:15:80:69:88:48:42:62:f2:b0:4c:fe:95:
12:88:48:13:f2:58:5b:9e:78:be:1e:70:5f:64:41:
92:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:3B:90:E9:1B:86:91:3E:EC:12:C0:96:46:84:7C:47:40:96:E7:69
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/NTuQ6RuGkT7sEsCWRoR8R0CW52k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.202.48.0/21
Signature Algorithm: sha256WithRSAEncryption
2d:c3:24:ea:58:a0:39:88:29:05:cf:fe:d2:b7:3a:54:e2:ff:
c3:fa:b0:95:ab:18:24:76:a3:fe:64:0b:23:96:f0:58:b3:58:
cc:6d:db:11:b6:3c:ee:d4:08:4c:6b:00:84:c5:e9:b5:9a:36:
0e:9f:5d:72:fd:23:3d:e4:54:58:da:27:1d:01:62:6d:6c:53:
b9:38:b0:35:1f:0f:62:7c:4a:44:dc:f0:ba:2c:ef:98:e8:8c:
01:5a:51:3c:44:b1:7e:56:23:f8:4b:17:40:ec:eb:82:02:93:
e1:6c:92:f2:c7:83:ed:d4:5f:81:e6:22:25:a3:24:80:3f:ea:
10:73:c4:40:a1:91:00:53:2f:c2:f8:0e:4c:79:2d:22:76:76:
bd:16:1c:90:3f:19:fe:fe:d5:f8:17:1c:bc:5e:0c:f8:09:bb:
70:ba:45:d2:a7:35:9d:b9:ae:6a:4c:c1:1d:67:a2:51:fc:62:
27:e7:b3:6e:03:8f:63:19:0d:a2:b0:31:1a:04:10:4c:75:d8:
04:52:32:e1:59:91:6e:b1:78:82:79:c0:08:bd:f6:85:3c:35:
07:46:de:71:9c:5b:08:88:1d:0a:70:1f:18:ab:e0:0f:d3:a0:
06:46:9e:6d:7b:64:14:63:b6:75:ba:d7:18:5b:14:3b:ca:30:
65:48:1a:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 08:37:45 2023 by rpki-client on console-fra.rpki-client.org