Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/Ure2aJyPMAAh1qRru26fQbYCZg8.roa
File: Ure2aJyPMAAh1qRru26fQbYCZg8.roa (raw, json)
Hash identifier: nj/JgAbf3lpSeY7KT+pmifLjuM6yoe/zJ1kePDZhxmM=
Subject key identifier: 52:B7:B6:68:9C:8F:30:00:21:D6:A4:6B:BB:6E:9F:41:B6:02:66:0F
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1055
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Ure2aJyPMAAh1qRru26fQbYCZg8.roa
Signing time: Tue 16 May 2023 08:36:04 +0000
ROA not before: Tue 16 May 2023 08:36:04 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24154
IP address blocks: 210.200.85.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4181 (0x1055)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:04 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=52B7B6689C8F300021D6A46BBB6E9F41B602660F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ad:1c:e5:55:3a:41:26:b7:1c:94:cc:0e:05:
ed:c7:7c:6c:b6:3d:f2:a9:02:59:aa:68:2e:f3:b3:
a9:62:30:10:7d:b9:91:17:08:0b:dc:ba:cd:de:3a:
7a:ac:a1:f6:cc:82:87:ec:c0:44:d0:86:ea:94:18:
95:d6:97:85:14:6b:6f:02:d4:5e:be:fb:e7:1d:bd:
bf:75:24:23:0e:f5:82:77:7d:23:3b:f4:3d:d8:71:
58:18:cb:bf:06:0e:43:19:7e:6b:fe:df:68:59:b8:
69:e5:e7:ee:74:b5:5b:32:09:47:77:89:dc:fd:30:
91:1c:6c:b1:f6:f5:bf:ec:fe:6b:2b:75:27:2c:de:
01:ee:8a:57:da:58:ee:4c:2b:3d:d4:2b:38:01:77:
97:ca:1c:a8:6b:44:1b:78:b4:5a:32:f4:7e:9c:c2:
50:2e:ac:d6:33:66:34:70:48:73:5a:db:3e:0d:b3:
9a:79:a2:85:8f:a3:2c:73:29:c0:68:a8:ea:42:c0:
07:91:c6:42:28:17:cd:eb:ca:fc:a0:eb:b9:43:0f:
92:63:40:5b:ef:0b:75:de:ff:7a:3c:0a:ee:6c:4b:
0c:1f:1f:49:a1:4c:e7:fd:a4:12:26:6c:fc:75:44:
bf:4f:d2:69:b2:e0:86:3d:a0:53:f1:9d:b9:3c:44:
9e:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:B7:B6:68:9C:8F:30:00:21:D6:A4:6B:BB:6E:9F:41:B6:02:66:0F
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Ure2aJyPMAAh1qRru26fQbYCZg8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.85.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:3f:2f:52:43:91:e3:ab:64:99:28:22:4c:6f:04:b8:47:19:
e2:aa:ac:b7:d8:c3:e1:c8:b4:f8:a6:2b:3f:13:e0:f8:ee:23:
a4:11:83:08:02:39:11:41:e4:3c:fe:06:29:9f:af:47:ea:c9:
e9:06:24:ac:f3:64:fb:3d:85:32:f7:20:99:1b:b8:13:85:18:
6e:6d:83:d1:2c:01:6d:8b:5a:7c:7d:bd:d2:d0:f6:5f:d5:11:
31:39:9d:1d:49:a4:45:31:ea:f0:0a:45:d3:ed:89:1a:3a:ce:
c3:63:6f:eb:8a:2e:62:45:a3:f9:48:07:a9:66:ef:9f:17:f8:
73:b6:59:ed:01:02:0f:f1:02:67:89:88:8f:dd:4f:20:3e:f8:
b6:c6:d7:3b:9e:43:43:09:1b:aa:14:7a:4a:c5:3c:26:1c:35:
6b:ad:a8:79:88:af:8d:0b:aa:00:49:d8:f1:04:1b:a1:db:9e:
0e:cd:42:52:ff:08:c0:87:2f:9f:b9:93:45:b2:64:7f:1f:6f:
aa:7e:66:bb:67:5e:f6:ec:90:f8:74:8b:13:a5:ca:d6:88:50:
70:6e:42:14:b5:19:b0:bd:15:53:fa:b4:2b:99:5c:23:e8:f9:
e1:48:e3:76:ad:21:95:58:e9:80:5a:73:52:2c:9f:55:2f:d6:
28:2c:cd:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 08:25:18 2023 by rpki-client on console-ams.rpki-client.org