Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/RtOxAWizH1ZqyShtRww9fZ2eZZo.roa
File: RtOxAWizH1ZqyShtRww9fZ2eZZo.roa (raw, json)
Hash identifier: T7SYEqcwPBjALbYZ0HOo0orO+PPOxKAA+RR0dzGSXNI=
Subject key identifier: 46:D3:B1:01:68:B3:1F:56:6A:C9:28:6D:47:0C:3D:7D:9D:9E:65:9A
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1040
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/RtOxAWizH1ZqyShtRww9fZ2eZZo.roa
Signing time: Tue 16 May 2023 08:35:57 +0000
ROA not before: Tue 16 May 2023 08:35:57 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 7482
IP address blocks: 222.156.0.0/16 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4160 (0x1040)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:35:57 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=46D3B10168B31F566AC9286D470C3D7D9D9E659A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:96:dc:3f:d3:7b:ba:0b:ce:02:6c:db:15:34:
3b:51:8a:20:6b:d0:84:f4:7f:82:49:a5:a8:57:95:
47:01:d9:7a:17:eb:7d:60:8e:79:f0:3a:44:16:f5:
f2:79:0e:b0:86:c7:0e:1d:2c:1f:14:de:fd:ba:de:
89:7d:fe:5a:29:af:a7:f4:23:91:9a:4e:bf:7b:5e:
ee:48:d0:2d:49:35:23:ad:16:80:a0:62:65:92:98:
f4:9b:d9:d0:bf:41:8c:2c:dc:63:02:9b:e4:7e:4a:
14:b6:ee:71:2e:ad:36:1c:77:7c:a3:71:1a:b8:80:
8e:06:54:f3:93:42:d5:0a:e0:35:50:6c:e8:3f:51:
fc:9b:99:ca:74:7a:ca:e1:a2:d1:ff:5b:7f:91:26:
98:f5:15:64:e8:70:3a:ec:b4:87:78:97:df:21:0d:
ba:97:1a:d2:ea:d1:4c:22:76:0a:46:a5:9d:81:bc:
1d:40:1b:f8:e3:bb:37:70:3f:27:f0:09:f9:aa:67:
58:2f:ad:b1:7e:f6:1d:2a:a7:5e:84:65:93:b1:7e:
ef:ca:49:e4:fb:0e:d4:c2:0c:42:b4:98:2e:e3:25:
98:ea:99:27:4a:68:47:5e:b1:cc:b4:f9:66:56:34:
73:d3:6d:35:73:8c:ab:dd:07:40:af:2d:47:43:ea:
26:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:D3:B1:01:68:B3:1F:56:6A:C9:28:6D:47:0C:3D:7D:9D:9E:65:9A
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/RtOxAWizH1ZqyShtRww9fZ2eZZo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
222.156.0.0/16
Signature Algorithm: sha256WithRSAEncryption
4b:ae:89:3c:0d:6c:f9:bf:4c:46:da:55:04:b0:6c:c5:d6:20:
d7:51:8d:63:56:86:e0:7f:90:4f:fa:bf:d3:60:db:ee:75:d9:
a0:8b:a2:76:ec:c4:7b:46:5f:3a:0d:39:a9:81:f6:e5:94:78:
c9:49:b3:5a:70:fd:ee:9f:4c:de:f4:94:6a:d8:a7:d5:b4:a0:
e0:6b:e3:b4:19:56:6e:2d:ab:7c:18:ed:df:78:bd:5e:68:a5:
76:84:f1:9c:88:5d:85:6d:69:23:49:d5:0f:62:54:e0:c7:fa:
ac:3a:2c:d0:e0:f5:14:e7:f4:1d:74:d9:c1:6c:84:87:6f:f9:
1c:aa:28:a3:c7:16:e6:70:68:6a:5f:11:5c:50:b1:b8:8e:3d:
1c:ec:f8:84:65:cf:44:c8:5b:7e:08:e5:3b:df:1b:06:b5:80:
bd:9f:6b:18:b5:38:7b:6b:98:50:28:ff:58:46:06:0b:1d:2d:
42:4d:19:a8:8d:cb:e0:98:1a:a6:41:f8:bc:b7:cf:5c:f0:ed:
e9:50:74:d7:14:f7:f4:d6:8c:26:9f:b5:64:08:5a:bd:ff:f1:
e1:2d:e4:f8:e4:74:e9:6f:dd:a3:19:36:7b:87:f9:14:9a:59:
90:8c:35:ff:ea:de:2b:37:82:a2:2d:c1:e5:55:23:a2:14:41:
10:df:e6:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 08:37:45 2023 by rpki-client on console-fra.rpki-client.org