Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/VaN-8j2GQXf3ltaYtSAKLOM8pok.roa
File: VaN-8j2GQXf3ltaYtSAKLOM8pok.roa (raw, json)
Hash identifier: 0cdNtqxSQnvK0Z1CPI2848+ciaANi7tNDbtHoU4Ke3M=
Subject key identifier: 55:A3:7E:F2:3D:86:41:77:F7:96:D6:98:B5:20:0A:2C:E3:3C:A6:89
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 10D1
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/VaN-8j2GQXf3ltaYtSAKLOM8pok.roa
Signing time: Tue 16 May 2023 08:36:40 +0000
ROA not before: Tue 16 May 2023 08:36:40 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 22787
IP address blocks: 210.58.89.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4305 (0x10d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:40 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=55A37EF23D864177F796D698B5200A2CE33CA689
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:99:5a:aa:aa:9a:4a:d8:79:78:92:96:f9:0a:
52:5e:28:b4:db:1e:91:6c:b5:d8:63:72:d8:4d:dc:
2e:22:77:dc:12:34:f7:79:72:d4:55:1e:af:ec:73:
30:2f:73:b3:13:f5:24:a3:73:38:b6:6f:5b:0d:c3:
37:81:e9:3b:af:6f:58:a2:3e:82:0c:e9:d9:02:96:
4c:6e:0a:3c:af:59:4c:e5:43:18:e7:02:da:f4:f3:
db:e6:3c:d6:09:11:88:3f:1a:5f:6c:54:04:9c:5f:
0f:60:aa:6a:b0:61:c3:c0:38:3c:3e:5a:3f:7c:9e:
12:6c:71:4c:cb:2c:4e:08:d6:e8:5c:8f:9b:05:21:
95:c5:b0:22:ad:5f:4e:bc:e8:18:ee:1b:c8:c7:2f:
f7:7c:fe:a8:4a:49:71:2e:60:7a:7b:73:46:00:be:
ca:17:4a:32:c3:8c:04:62:ff:b7:d8:0d:dd:4a:13:
45:49:4c:13:20:f6:0e:88:a9:36:d4:8b:96:17:de:
6e:c3:1a:5b:8b:eb:81:f8:73:2a:07:43:05:40:31:
14:c0:d8:bd:0d:95:7b:60:86:40:d3:ad:72:bc:fd:
63:40:88:f4:f9:2f:e4:2d:4e:4a:f4:ff:67:61:1a:
87:ec:21:e1:d3:0d:b4:07:ac:86:cf:5b:41:c2:b1:
ba:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:A3:7E:F2:3D:86:41:77:F7:96:D6:98:B5:20:0A:2C:E3:3C:A6:89
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/VaN-8j2GQXf3ltaYtSAKLOM8pok.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.58.89.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:b2:ca:1b:76:f8:b9:63:a4:60:ed:bd:c0:63:60:72:85:c7:
dc:7d:76:be:79:fc:9b:0e:1d:4a:ae:93:04:4b:79:f1:31:bd:
37:d6:86:87:0e:f4:cb:00:fd:58:2f:a7:4e:7e:be:5b:74:e6:
e9:b7:e5:b9:02:27:bc:88:3d:1a:b9:0a:29:55:ca:0a:f8:40:
fc:7f:4a:47:bb:6d:c7:5d:73:91:d4:d0:cf:69:93:d1:b9:82:
c6:d2:82:12:48:d6:4b:2a:cc:e1:fc:29:c8:c1:6c:02:05:bd:
ef:1c:23:05:9a:1f:5d:77:42:05:b4:f0:04:84:f7:31:7e:da:
ae:69:56:f5:53:82:ac:ae:57:0a:61:34:b4:70:e8:8f:67:74:
f9:93:bf:81:16:5a:db:01:34:17:ee:6f:5c:67:d6:a2:a2:56:
be:b8:29:e9:57:c5:38:df:9b:3e:73:81:46:32:a7:d0:1e:29:
5d:ed:e5:e4:7e:38:11:05:35:cc:f6:15:d7:b5:7c:53:74:d0:
60:bd:c4:79:2c:53:10:01:14:4b:88:e6:38:b3:fd:3e:64:ae:
10:c0:24:33:18:f2:f3:24:08:98:84:e4:60:1d:36:8c:3f:c0:
c3:1e:14:99:d8:94:4e:2a:53:2e:28:c8:74:28:76:27:6f:f3:
ff:fc:23:bd
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICENEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMzA1MTYw
ODM2NDBaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDU1QTM3RUYyM0Q4NjQx
NzdGNzk2RDY5OEI1MjAwQTJDRTMzQ0E2ODkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDimVqqqppK2Hl4kpb5ClJeKLTbHpFstdhjcthN3C4id9wSNPd5
ctRVHq/sczAvc7MT9SSjczi2b1sNwzeB6Tuvb1iiPoIM6dkClkxuCjyvWUzlQxjn
Atr089vmPNYJEYg/Gl9sVAScXw9gqmqwYcPAODw+Wj98nhJscUzLLE4I1uhcj5sF
IZXFsCKtX0686BjuG8jHL/d8/qhKSXEuYHp7c0YAvsoXSjLDjARi/7fYDd1KE0VJ
TBMg9g6IqTbUi5YX3m7DGluL64H4cyoHQwVAMRTA2L0NlXtghkDTrXK8/WNAiPT5
L+QtTkr0/2dhGofsIeHTDbQHrIbPW0HCsbqtAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUVaN+8j2GQXf3ltaYtSAKLOM8pokwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvVmFOLThqMkdRWGYzbHRhWXRTQUtM
T004cG9rLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEANI6WTAN
BgkqhkiG9w0BAQsFAAOCAQEAH7LKG3b4uWOkYO29wGNgcoXH3H12vnn8mw4dSq6T
BEt58TG9N9aGhw70ywD9WC+nTn6+W3Tm6bfluQInvIg9GrkKKVXKCvhA/H9KR7tt
x11zkdTQz2mT0bmCxtKCEkjWSyrM4fwpyMFsAgW97xwjBZofXXdCBbTwBIT3MX7a
rmlW9VOCrK5XCmE0tHDoj2d0+ZO/gRZa2wE0F+5vXGfWoqJWvrgp6VfFON+bPnOB
RjKn0B4pXe3l5H44EQU1zPYV17V8U3TQYL3EeSxTEAEUS4jmOLP9PmSuEMAkMxjy
8yQImITkYB02jD/Awx4UmdiUTipTLijIdCh2J2/z//wjvQ==
-----END CERTIFICATE-----
Generated at Fri Sep 1 08:37:45 2023 by rpki-client on console-fra.rpki-client.org