Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/OCwGy0tPnXqD0ZK2VHrZCWOQ4TQ.roa
File: OCwGy0tPnXqD0ZK2VHrZCWOQ4TQ.roa (raw, json)
Hash identifier: h0UU0lh85cQ9+lWCmeDZK8HRwweWwAoet+tZlu1JbDs=
Subject key identifier: 38:2C:06:CB:4B:4F:9D:7A:83:D1:92:B6:54:7A:D9:09:63:90:E1:34
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/OCwGy0tPnXqD0ZK2VHrZCWOQ4TQ.roa
Signing time: Thu 15 Sep 2022 02:39:54 +0000
ROA not before: Thu 15 Sep 2022 02:39:54 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131627
IP address blocks: 219.91.64.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:39:54 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=382C06CB4B4F9D7A83D192B6547AD9096390E134
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:8c:c4:71:af:5d:9d:3d:db:ab:b1:66:fa:0c:
33:4c:62:99:63:24:0c:b6:30:c2:b4:4a:9c:0d:67:
d3:6c:f9:ff:15:d2:0f:07:f3:c5:0a:05:7f:46:ef:
91:8d:f5:c3:23:ff:70:db:a4:0a:e1:5a:c8:55:75:
59:97:81:68:1f:67:e2:fe:db:d1:5b:6f:e9:35:3b:
e4:b6:bf:52:b2:e8:32:86:85:ad:3e:c1:57:65:ad:
38:78:50:a6:d5:5f:42:5d:94:e2:98:6b:b6:a9:54:
b9:1b:6a:27:49:0d:55:a2:0a:b8:d9:25:ce:50:37:
8c:f6:10:59:48:02:fc:26:3f:f3:a4:13:89:be:b9:
52:ff:3e:71:db:64:fe:d7:44:2e:e0:bc:51:27:f2:
55:ac:e3:cc:89:69:63:41:2a:a3:9e:92:1c:06:cc:
4b:5a:3e:37:74:78:c3:bc:2a:e0:ad:0b:bc:07:8a:
7b:03:e0:8a:e5:31:bf:59:7e:a1:1f:ca:38:51:b6:
ac:bd:27:43:03:02:6e:45:b8:8c:97:34:91:3d:c2:
88:11:e9:39:d4:0e:a5:d2:c0:54:2f:24:db:94:2b:
7c:b4:82:9b:f8:4e:20:59:12:71:aa:13:31:d5:8f:
ee:6c:a1:1f:e5:f2:b7:e8:6b:73:2e:03:63:a6:3d:
d0:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:2C:06:CB:4B:4F:9D:7A:83:D1:92:B6:54:7A:D9:09:63:90:E1:34
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/OCwGy0tPnXqD0ZK2VHrZCWOQ4TQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.91.64.0/22
Signature Algorithm: sha256WithRSAEncryption
6c:49:92:74:05:1d:41:31:1f:87:98:23:38:2d:24:de:9f:b6:
8f:eb:8a:ca:e8:32:06:f9:b5:ec:ee:39:41:97:3c:ed:4a:4d:
b9:d1:87:7d:0a:f1:1b:80:42:1e:4c:3a:80:80:fc:6f:b2:fc:
a3:6e:74:fa:b6:6e:60:09:75:ce:dc:c8:0f:99:90:f3:57:94:
72:72:7a:4c:c6:d5:eb:a6:ba:18:39:ca:9c:8f:e7:9a:65:ab:
84:cc:4e:a1:c8:e5:ff:2c:90:c6:0a:2f:2f:28:ed:ee:37:56:
79:70:f1:44:fb:11:dd:bd:a6:06:4a:25:0b:46:dc:e9:72:a0:
1a:ca:90:ef:0f:bb:d4:a6:b1:58:bc:ff:70:ca:01:9e:16:5e:
c6:35:11:20:d5:4f:f7:9c:ee:66:89:69:71:90:2b:af:1d:0a:
2a:2e:9f:a4:c3:e5:bc:f8:f7:fc:f2:73:5b:44:33:ab:3d:ad:
ca:a3:38:a4:b8:5b:25:d1:cb:35:9a:00:07:50:48:18:97:9e:
ba:6e:a2:b4:ce:54:a1:1a:ea:e4:8b:75:73:b6:12:1a:8b:a3:
3a:ab:58:76:15:fe:3f:57:7c:bc:7d:ef:00:4a:fc:e6:33:7d:
e0:6a:30:7d:c4:dd:da:0c:36:af:55:ce:d1:3c:8d:9a:28:a2:
e2:ea:24:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:44 2023 by rpki-client on console-ams.rpki-client.org