Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/Q13YyJSDp1bm4zB8pntx2CFPytI.roa
File: Q13YyJSDp1bm4zB8pntx2CFPytI.roa (raw, json)
Hash identifier: zvHJgw6Ib5FAVNnZuplBNSi/fzPSlGPuBBQWE5hdotk=
Subject key identifier: 43:5D:D8:C8:94:83:A7:56:E6:E3:30:7C:A6:7B:71:D8:21:4F:CA:D2
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 105C
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Q13YyJSDp1bm4zB8pntx2CFPytI.roa
Signing time: Tue 16 May 2023 08:36:06 +0000
ROA not before: Tue 16 May 2023 08:36:06 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 1131591
IP address blocks: 103.231.51.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4188 (0x105c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:06 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=435DD8C89483A756E6E3307CA67B71D8214FCAD2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:9d:9f:de:71:83:51:62:ee:55:7a:3b:ec:76:
d7:bf:c9:89:28:43:a0:ca:a1:08:86:5d:ba:c0:50:
c8:0a:f0:93:e3:9d:66:b4:81:36:0a:91:10:d3:6c:
13:8a:6d:b1:68:67:8a:cd:1c:7c:2a:a8:d8:cc:f4:
e6:41:76:21:b6:e5:e9:a6:1d:2f:4f:22:d9:e5:6e:
6c:fd:cc:a4:ab:f8:84:04:27:0c:92:bf:2b:bb:b8:
91:4a:47:44:d7:6c:2e:9d:f5:5b:96:9f:ef:b4:f3:
00:2c:6d:ef:17:76:24:d2:89:48:d4:79:0e:77:fe:
a1:ca:f1:6f:74:6e:8c:97:59:a0:73:e2:4d:e2:f3:
ef:eb:a1:4d:9a:2c:bc:e7:e9:bb:10:d5:8e:30:d9:
93:0c:c6:55:f7:45:fc:86:5d:e8:8f:42:b5:f7:ff:
fb:c6:e7:5b:0c:33:55:98:fa:b4:90:bb:73:4f:ba:
87:66:c3:70:22:62:27:f5:e5:15:af:85:94:b8:d2:
b9:4c:c3:81:26:e2:82:ff:1f:af:a2:64:bb:61:3d:
6b:c3:27:69:ba:f7:9c:75:79:64:2f:c0:a8:96:71:
20:be:79:d8:6a:d5:48:30:72:a9:06:04:66:b6:ee:
f2:b8:81:20:f3:bb:fa:03:8d:eb:69:81:bf:92:70:
a9:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:5D:D8:C8:94:83:A7:56:E6:E3:30:7C:A6:7B:71:D8:21:4F:CA:D2
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Q13YyJSDp1bm4zB8pntx2CFPytI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.231.51.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:cb:f7:a1:93:f4:79:1f:44:e3:bd:ad:54:3d:5f:0a:15:43:
15:1c:e2:f1:4d:50:d3:8f:0d:1b:da:0a:40:e2:16:b0:45:f7:
d1:a7:73:6d:aa:c4:36:fc:1b:92:78:a6:cc:31:92:4b:d2:6b:
4a:29:55:5a:98:d9:7c:9c:6a:d0:15:83:19:50:7d:35:31:17:
04:06:a8:4d:4c:c0:fd:a9:19:b2:43:f5:15:4a:df:32:fd:ca:
d5:eb:e8:27:57:67:d4:4b:e3:5c:70:89:94:81:3b:94:e6:24:
22:92:40:3f:80:64:ad:91:db:55:1e:42:e0:a6:87:c3:77:69:
09:83:ad:1c:6e:a4:8d:ac:2a:1c:5e:c8:4f:70:93:4c:2d:63:
ee:d1:11:d3:1b:90:78:03:bd:2a:9d:b1:2a:3a:8a:6b:f8:da:
46:c8:19:c5:0e:a4:4d:a2:37:83:6f:d0:4d:54:5a:d5:20:fc:
3e:5f:7b:d6:bd:b1:8c:95:86:0b:49:e3:82:64:95:77:6d:2d:
7d:bf:de:d7:1f:31:1e:3c:0f:46:10:c8:fc:0f:c0:b7:0b:74:
c2:0d:33:17:0f:f3:7d:aa:4f:1f:38:dc:b5:9c:88:89:38:43:
cc:c4:02:b3:29:0e:15:6d:9a:8b:f5:25:3c:7b:a8:e0:6f:49:
4c:ef:3e:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 08:25:18 2023 by rpki-client on console-ams.rpki-client.org