Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/TSMxjb1gX1yW5oEMOwhvatEbJHw.roa
File: TSMxjb1gX1yW5oEMOwhvatEbJHw.roa (raw, json)
Hash identifier: f/Hxalh6Nf8RmTU88OxAr63apH3v7TDqQYvQi55rTZg=
Subject key identifier: 4D:23:31:8D:BD:60:5F:5C:96:E6:81:0C:3B:08:6F:6A:D1:1B:24:7C
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/TSMxjb1gX1yW5oEMOwhvatEbJHw.roa
Signing time: Thu 15 Sep 2022 02:40:29 +0000
ROA not before: Thu 15 Sep 2022 02:40:29 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 22787
IP address blocks: 210.58.89.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:40:29 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=4D23318DBD605F5C96E6810C3B086F6AD11B247C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:d1:9c:5e:28:d5:78:f0:eb:ab:5b:8b:9c:55:
04:32:d2:dd:ff:65:1c:23:87:d6:d8:ed:ce:ba:b6:
4c:d4:5c:62:96:2c:e2:60:bc:9b:2e:1d:e3:45:6e:
09:68:76:48:5e:22:aa:be:a4:5a:01:7c:72:91:4c:
36:db:b0:ba:25:cf:43:b2:ba:31:44:22:42:d5:ea:
c7:47:75:fe:6f:41:15:43:c9:c3:8e:50:2e:8d:2a:
98:af:58:96:db:1b:c3:ff:80:2a:7d:34:c2:0a:96:
19:1d:99:ba:eb:c6:66:62:9e:e6:84:48:04:5e:87:
b7:91:fb:7a:4f:8a:e8:cd:db:6c:e3:96:37:c4:de:
67:d6:07:a5:a0:20:9f:dd:76:61:ae:2f:0a:6d:da:
85:d6:ae:98:d7:c3:1e:b7:29:e9:be:0d:fa:3d:28:
e3:68:e1:15:46:ed:74:79:b1:c5:d8:83:53:15:9f:
10:dd:d4:b8:6a:cf:3a:17:8d:e0:df:0e:99:d0:6e:
92:7b:67:41:d1:70:3f:dd:30:56:51:fa:0d:51:8a:
dd:61:cf:f6:d0:ab:9d:6d:94:bf:2b:b6:89:61:b4:
35:37:f9:62:d5:38:a3:71:20:63:a1:59:b6:20:25:
8c:e0:83:0a:fd:d9:9c:23:79:11:ae:d8:50:3d:1a:
be:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:23:31:8D:BD:60:5F:5C:96:E6:81:0C:3B:08:6F:6A:D1:1B:24:7C
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/TSMxjb1gX1yW5oEMOwhvatEbJHw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.58.89.0/24
Signature Algorithm: sha256WithRSAEncryption
63:43:f8:9a:bc:58:70:15:7c:5d:b1:2d:0a:91:61:bf:a1:94:
c3:fc:80:7e:d5:f0:7c:ba:90:13:92:b9:48:5f:fc:dc:93:b3:
4c:11:e1:94:69:55:f5:4c:e9:69:06:5b:7b:ce:e5:2d:8c:c1:
9f:a0:3d:c1:c3:97:c4:00:0a:bb:45:19:fe:49:73:5f:7b:a9:
10:d2:25:6b:1e:e8:dc:65:b6:43:d2:d4:3b:a4:36:81:74:69:
d6:de:27:7c:d1:3c:0c:de:e6:e9:5f:ca:3c:b8:54:e8:31:c3:
51:f5:a9:bf:7b:44:4a:4d:51:44:3c:ae:96:19:f1:18:93:0a:
64:77:6a:38:85:d9:46:18:29:3d:af:eb:de:ff:a8:5d:1b:84:
d6:9f:e0:4a:c8:34:aa:c6:ff:87:9e:74:b5:4f:fb:b7:04:b5:
02:22:c3:04:74:e4:5c:39:a8:6d:f8:6e:86:66:ba:56:bf:6f:
ce:53:b4:84:5b:b0:d7:72:ef:14:8b:a4:92:1e:6f:a1:b8:3d:
fe:6f:fd:20:b8:1e:16:64:46:36:a3:b0:fb:6e:4a:3f:ce:de:
a4:73:a5:43:24:a5:7d:f1:87:c1:17:85:38:be:e5:63:6c:e2:
31:26:b0:32:c7:c2:62:7b:32:3c:5f:c1:a4:70:e0:f1:c3:e4:
51:8c:e5:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:44 2023 by rpki-client on console-ams.rpki-client.org