Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/O3D3T03bOcV_QwW4nogdveZXoi4.roa
File: O3D3T03bOcV_QwW4nogdveZXoi4.roa (raw, json)
Hash identifier: SSJPOq+zEpa2wvcAXCkNIk31en0rrLd3D8C7V01ZYY0=
Subject key identifier: 3B:70:F7:4F:4D:DB:39:C5:7F:43:05:B8:9E:88:1D:BD:E6:57:A2:2E
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1058
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/O3D3T03bOcV_QwW4nogdveZXoi4.roa
Signing time: Tue 16 May 2023 08:36:05 +0000
ROA not before: Tue 16 May 2023 08:36:05 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9922
IP address blocks: 124.218.72.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4184 (0x1058)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:05 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3B70F74F4DDB39C57F4305B89E881DBDE657A22E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:f1:c1:03:bb:30:29:56:21:bc:6d:5a:19:2c:
35:04:5c:76:e0:97:f2:16:3f:f4:d4:b2:c1:39:f8:
47:1c:fd:8e:a0:9c:76:0c:8f:2e:c4:36:73:03:63:
b5:d7:0d:c1:79:0d:72:f2:2d:61:ad:66:1e:10:a7:
f9:2d:fa:67:df:ed:cf:0d:e1:50:cb:ff:9e:b8:42:
36:24:6d:4a:fb:bf:a1:d7:97:67:5d:86:33:81:de:
26:60:3b:32:8b:22:a6:53:f1:63:ab:2c:c1:50:64:
a9:61:16:0a:94:78:42:a4:0a:b0:8f:d3:d8:33:39:
23:db:84:1c:fb:a1:a3:9d:bc:2b:64:a1:4f:60:ca:
0c:47:72:01:bd:f2:da:af:b0:c4:0a:57:0c:cb:2e:
85:a9:c4:5b:97:b9:c7:f0:4d:1b:6b:96:68:95:eb:
11:96:07:6b:7d:1b:c8:f3:6a:d9:8a:94:6b:a5:c0:
9b:cc:c8:0e:90:17:83:54:67:f3:07:c8:2b:8e:b3:
96:09:1c:e9:79:98:9e:84:1c:b0:47:d7:98:95:a9:
4f:76:46:c4:7a:06:86:3e:92:06:b5:e4:e6:4c:74:
9d:59:e7:11:f2:39:45:3c:75:51:3d:6f:68:b6:57:
50:da:9d:6f:60:f4:96:30:92:c4:d3:e7:92:a0:c3:
21:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:70:F7:4F:4D:DB:39:C5:7F:43:05:B8:9E:88:1D:BD:E6:57:A2:2E
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/O3D3T03bOcV_QwW4nogdveZXoi4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.72.0/21
Signature Algorithm: sha256WithRSAEncryption
11:35:a3:ee:df:4d:d0:ae:11:4f:40:d3:2e:3f:78:f2:9a:97:
4f:6d:e1:d9:8f:4c:f9:11:69:18:a2:a9:17:eb:cc:44:3a:cc:
a1:6b:2f:6c:fd:5c:c7:16:b5:2f:38:6c:d8:b2:57:a4:8a:14:
5b:77:68:98:30:ad:8d:19:89:4c:12:5d:d6:d7:83:43:f7:6a:
d6:e6:46:5c:1e:ca:af:dc:de:9c:ff:f5:0b:ac:f5:2d:5c:e8:
c6:86:4f:cd:92:65:02:23:59:06:b5:9d:19:3c:e8:b1:77:b8:
37:ce:92:14:6c:7c:43:52:23:81:c4:fb:54:13:ec:c5:b7:bf:
1c:d7:3c:c8:84:35:db:16:8a:8d:f1:1b:d3:c6:4d:c9:da:d4:
85:9f:a2:83:dc:9a:b5:c7:ac:96:f0:72:6a:66:ef:2a:43:cf:
3d:82:58:1b:55:3e:70:01:40:f2:8c:0a:26:c2:10:f3:74:cd:
d6:01:2a:48:d9:d9:5d:48:3a:c4:67:53:d2:85:c6:f9:36:b5:
54:c7:a2:0d:62:66:65:d0:ac:42:d0:65:75:a5:f8:a5:af:6f:
2a:80:b2:d0:96:8b:bc:8a:b7:fd:5a:85:d9:70:cd:d6:50:2e:
14:66:ed:de:bd:71:39:a1:a2:d4:8d:6e:fb:22:bb:03:f9:b6:
c7:27:a7:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 08:25:18 2023 by rpki-client on console-ams.rpki-client.org