Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/R3p9oB1rbGwVLB9bgX6VsqLLzB4.roa
File: R3p9oB1rbGwVLB9bgX6VsqLLzB4.roa (raw, json)
Hash identifier: 2tssz0eJ1xYDSEckBw2qDbO5uPA4KOVR7MMSnY2P0BQ=
Subject key identifier: 47:7A:7D:A0:1D:6B:6C:6C:15:2C:1F:5B:81:7E:95:B2:A2:CB:CC:1E
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/R3p9oB1rbGwVLB9bgX6VsqLLzB4.roa
Signing time: Thu 15 Sep 2022 02:40:07 +0000
ROA not before: Thu 15 Sep 2022 02:40:07 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131142
IP address blocks: 223.22.254.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:40:07 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=477A7DA01D6B6C6C152C1F5B817E95B2A2CBCC1E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:35:fa:e9:06:41:4e:5f:1a:78:4f:ce:7e:c8:
e2:9c:4c:b5:6a:ee:bc:cc:fb:ad:77:be:96:47:85:
a4:a2:ca:d9:23:c6:ae:80:5e:d1:5d:d1:42:2f:d7:
a4:3f:67:a1:8d:a9:e4:f9:2d:ee:b9:2b:31:d5:5b:
c3:8c:b2:ee:a4:e5:ad:15:fe:b4:0c:4b:b8:e5:7d:
77:c0:9f:ad:a9:4c:69:d6:37:5e:3b:cb:71:0a:1b:
2e:e0:9f:67:ee:e0:4c:b8:62:be:43:b6:33:97:13:
2c:be:a5:4a:8d:06:f6:b2:74:0d:6f:0a:9e:4a:4e:
0e:2d:b3:f3:fa:61:77:71:d7:ee:32:e0:de:99:45:
8a:83:50:47:99:a5:fa:1b:f0:58:fd:4c:07:cb:c4:
be:bc:f5:6e:96:2b:62:14:03:93:d2:2c:78:8f:e0:
ac:18:14:25:ee:e5:b4:77:cb:a2:d4:6a:f9:8c:f8:
3c:6e:f4:ba:42:d5:08:65:52:70:9d:fc:4d:74:ad:
3e:ed:e8:a3:e0:29:ef:7c:c4:6f:7a:56:74:da:59:
98:f0:82:eb:08:76:41:3f:f2:67:12:37:e6:41:d1:
45:a0:8d:61:58:a8:32:50:a7:c7:78:7d:cc:c4:97:
a8:0d:e2:20:c9:51:72:22:b0:6b:d8:a5:dd:8e:e3:
cc:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:7A:7D:A0:1D:6B:6C:6C:15:2C:1F:5B:81:7E:95:B2:A2:CB:CC:1E
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/R3p9oB1rbGwVLB9bgX6VsqLLzB4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.22.254.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:6c:41:00:d6:c2:f0:10:ed:e8:01:76:ae:12:70:6c:a9:65:
b6:b8:50:7e:d5:c7:5a:b4:18:02:a4:d5:13:85:5f:97:8e:42:
3a:75:da:c5:14:f3:1e:e8:f1:41:a3:87:61:03:ef:b8:02:66:
c8:fb:70:3b:af:70:0f:76:3f:46:78:70:c2:59:3d:02:42:f1:
e6:1a:45:f0:b7:fe:41:fa:4a:e2:e7:66:ae:5d:3e:03:a0:3b:
63:24:19:76:43:9e:ee:16:e8:57:7a:e9:da:43:c7:b7:35:8a:
62:78:3a:bd:6a:d1:59:ce:98:b3:7c:c4:33:ac:c5:57:91:25:
46:c3:82:0b:df:a6:97:a1:04:e3:06:1e:63:91:89:ef:80:c1:
65:33:d9:88:0b:bc:39:db:29:b6:07:43:6e:e6:7c:88:96:ec:
61:47:04:25:7d:c7:df:7e:54:f5:1d:3e:c7:c8:0b:78:83:32:
bc:7c:8c:24:cb:e3:51:7c:b2:0d:de:46:8e:52:7d:04:c7:5e:
8b:8e:4d:5b:b2:92:25:e9:8e:aa:33:d8:44:af:c4:39:3e:37:
06:94:51:bf:51:89:81:42:cc:44:25:c3:e6:b1:1a:f6:94:20:
62:e0:2c:80:e2:48:b6:6a:4b:a9:94:af:0d:07:d3:01:be:08:
94:2e:01:3c
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICD2MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMjA5MTUw
MjQwMDdaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDQ3N0E3REEwMUQ2QjZD
NkMxNTJDMUY1QjgxN0U5NUIyQTJDQkNDMUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDSNfrpBkFOXxp4T85+yOKcTLVq7rzM+613vpZHhaSiytkjxq6A
XtFd0UIv16Q/Z6GNqeT5Le65KzHVW8OMsu6k5a0V/rQMS7jlfXfAn62pTGnWN147
y3EKGy7gn2fu4Ey4Yr5DtjOXEyy+pUqNBvaydA1vCp5KTg4ts/P6YXdx1+4y4N6Z
RYqDUEeZpfob8Fj9TAfLxL689W6WK2IUA5PSLHiP4KwYFCXu5bR3y6LUavmM+Dxu
9LpC1QhlUnCd/E10rT7t6KPgKe98xG96VnTaWZjwgusIdkE/8mcSN+ZB0UWgjWFY
qDJQp8d4fczEl6gN4iDJUXIisGvYpd2O48zpAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUR3p9oB1rbGwVLB9bgX6VsqLLzB4wHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvUjNwOW9CMXJiR3dWTEI5YmdYNlZz
cUxMekI0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAN8W/jAN
BgkqhkiG9w0BAQsFAAOCAQEAemxBANbC8BDt6AF2rhJwbKlltrhQftXHWrQYAqTV
E4Vfl45COnXaxRTzHujxQaOHYQPvuAJmyPtwO69wD3Y/Rnhwwlk9AkLx5hpF8Lf+
QfpK4udmrl0+A6A7YyQZdkOe7hboV3rp2kPHtzWKYng6vWrRWc6Ys3zEM6zFV5El
RsOCC9+ml6EE4wYeY5GJ74DBZTPZiAu8OdsptgdDbuZ8iJbsYUcEJX3H335U9R0+
x8gLeIMyvHyMJMvjUXyyDd5GjlJ9BMdei45NW7KSJemOqjPYRK/EOT43BpRRv1GJ
gULMRCXD5rEa9pQgYuAsgOJItmpLqZSvDQfTAb4IlC4BPA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:44 2023 by rpki-client on console-ams.rpki-client.org