Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/NwqyQJ2Z1htVTtve4o5uRyOZgko.roa
File: NwqyQJ2Z1htVTtve4o5uRyOZgko.roa (raw, json)
Hash identifier: RCij+woXSJSdMJ7WHz9gZOXnRYajjY43lIbPZZgEz00=
Subject key identifier: 37:0A:B2:40:9D:99:D6:1B:55:4E:DB:DE:E2:8E:6E:47:23:99:82:4A
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/NwqyQJ2Z1htVTtve4o5uRyOZgko.roa
Signing time: Thu 15 Sep 2022 02:40:35 +0000
ROA not before: Thu 15 Sep 2022 02:40:35 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 210.202.0.0/19 maxlen: 19
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:40:35 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=370AB2409D99D61B554EDBDEE28E6E472399824A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:6c:fd:66:c7:80:dd:6e:f1:de:27:f2:54:8d:
2e:3e:55:a4:b7:d4:c5:31:38:60:c8:db:49:af:c8:
92:43:f6:da:4b:e2:88:f6:11:df:df:4b:52:a3:e7:
9e:7b:4f:a4:1e:01:80:47:97:d1:8b:b8:94:47:59:
48:07:45:9e:60:ef:3c:dc:e5:79:2a:4b:84:5d:01:
0a:1f:9a:7b:a4:6f:5a:de:dc:47:7c:4b:32:d1:f0:
2d:d7:09:5b:73:1f:67:cb:97:e7:33:1c:66:d1:9c:
b8:51:6f:d1:a8:da:4a:ef:a6:1c:a8:65:cb:1d:ea:
a2:af:ca:ed:5f:52:57:12:18:c7:f0:ca:7d:46:94:
a8:d0:eb:7e:fc:09:f3:f4:70:c1:9f:c7:7c:1a:30:
36:b8:e0:80:48:7e:bd:cc:3b:b1:9f:11:3e:b7:a9:
ad:57:f1:35:8b:5a:7b:0b:8a:31:53:9b:3f:2a:d2:
4d:45:cc:2d:f8:f2:6e:35:ec:1a:d1:8c:c6:cb:6c:
8f:3a:ca:6a:da:08:6c:8a:d2:c2:74:a0:76:14:db:
d1:c3:24:9e:b4:fd:9a:10:c9:48:c6:18:d5:95:e7:
6f:a7:0b:24:f4:33:ed:09:f1:40:7e:48:c4:9f:c1:
1a:b0:d6:48:27:06:d9:23:5b:ac:bf:76:0e:f1:8f:
7b:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:0A:B2:40:9D:99:D6:1B:55:4E:DB:DE:E2:8E:6E:47:23:99:82:4A
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/NwqyQJ2Z1htVTtve4o5uRyOZgko.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.202.0.0/19
Signature Algorithm: sha256WithRSAEncryption
6a:63:f1:93:c9:ee:8a:d1:31:d5:28:38:ba:25:d0:66:88:4a:
34:21:65:45:b4:a0:73:ce:a0:9f:de:b2:24:36:53:0d:c0:40:
6a:6f:64:5d:40:b2:b1:d0:91:d4:09:48:1d:f9:48:99:10:30:
fd:3d:98:57:8d:4d:8b:62:48:9c:85:9b:88:6b:fc:b5:ed:4a:
83:04:50:13:99:47:5d:b0:83:c0:fe:db:8c:b4:01:0d:e7:fa:
e7:a4:7d:cf:98:11:37:6e:a6:bf:e0:3f:cc:18:b6:fc:0c:cf:
0c:7c:73:08:0a:b1:3d:d8:2d:09:8e:8c:92:b8:61:a4:fc:74:
06:bd:2d:84:2f:52:f0:99:41:71:61:bb:30:ea:9e:bb:cc:79:
08:99:18:33:45:ca:49:1f:aa:a4:bb:9b:fe:24:bb:0e:6b:c1:
28:13:20:81:b2:b7:cf:f5:ff:88:61:75:d0:64:65:b0:23:c4:
9e:09:21:be:9b:9f:29:7c:c8:b9:d2:eb:5d:83:ea:bd:dd:19:
27:18:3f:c1:78:82:55:20:56:bc:bc:0f:22:e1:cb:cc:58:f3:
bb:01:04:93:e7:f8:d7:cb:a0:a0:0b:23:89:2a:8e:cc:ca:29:
56:fe:6a:83:83:46:07:80:a6:de:a4:7e:2a:f3:b6:a3:76:e6:
19:d4:1d:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:55 2023 by rpki-client on console-fra.rpki-client.org