Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/WCxk27tsVAwabPijEuBeon31-lU.roa
File: WCxk27tsVAwabPijEuBeon31-lU.roa (raw, json)
Hash identifier: tMmWQnQF3E51pXpOql9SXE6JbM+Ro80sf4rvnnEzunQ=
Subject key identifier: 58:2C:64:DB:BB:6C:54:0C:1A:6C:F8:A3:12:E0:5E:A2:7D:F5:FA:55
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1027
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/WCxk27tsVAwabPijEuBeon31-lU.roa
Signing time: Tue 16 May 2023 08:35:49 +0000
ROA not before: Tue 16 May 2023 08:35:49 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 7482
IP address blocks: 210.201.0.0/18 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4135 (0x1027)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:35:49 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=582C64DBBB6C540C1A6CF8A312E05EA27DF5FA55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:d5:2f:9e:93:80:78:25:ed:4b:6c:28:2d:9f:
3e:47:a5:09:a5:bf:e3:d9:1f:50:3c:1f:ca:3b:37:
0a:92:29:25:6c:dc:77:62:b2:36:67:ea:cf:29:a8:
99:c9:79:48:cd:15:d8:45:7c:4c:93:8e:63:18:b8:
51:b7:d4:48:fa:ef:48:06:eb:d2:16:12:1c:1d:b7:
d3:6c:0d:b9:b4:2e:9b:8b:e5:35:8b:b2:bb:60:a0:
b9:d5:08:60:64:36:2b:0e:0a:f4:71:ce:06:e0:ef:
47:14:64:20:87:23:f3:8a:12:f7:f6:d9:af:96:1b:
33:6d:36:49:e8:c5:45:bb:2c:58:94:7e:67:ec:b2:
c8:1f:f5:14:2c:d9:1a:28:82:6b:ee:80:2b:dd:70:
3b:9b:b8:29:2a:09:60:18:37:7c:a2:e5:38:e1:1c:
be:5e:7b:42:a5:e8:1a:aa:ad:06:1c:f7:ca:8a:ed:
40:04:73:47:70:c6:76:8d:95:6c:8d:87:a4:cd:bd:
b6:2e:c7:d4:4c:c1:1b:3a:f6:38:f0:f7:71:51:ac:
69:02:e0:f7:cd:34:bf:3c:dc:23:76:3e:23:91:94:
73:7e:d9:71:bf:f5:63:ae:8a:1e:ed:ce:87:47:e6:
69:6f:ae:a6:19:b7:c9:fe:8a:42:79:af:4a:bf:0a:
13:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:2C:64:DB:BB:6C:54:0C:1A:6C:F8:A3:12:E0:5E:A2:7D:F5:FA:55
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/WCxk27tsVAwabPijEuBeon31-lU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.201.0.0/18
Signature Algorithm: sha256WithRSAEncryption
01:87:e2:3d:27:ec:20:a8:02:63:1d:18:06:fb:77:f1:2b:dc:
3a:78:a9:1e:f9:42:ab:1f:ae:af:c6:6b:68:db:8b:e6:97:e1:
2e:d6:96:82:eb:fc:68:98:ef:a5:81:70:a6:b4:7f:49:d9:b8:
11:e2:41:7b:ce:df:7f:18:2b:73:eb:62:59:c8:d9:48:ae:de:
3c:0c:1c:31:01:10:a9:45:6a:85:0a:bf:e8:9a:49:5a:01:92:
62:51:ff:28:d6:ae:b5:c9:02:d7:75:68:02:8b:90:3b:43:e9:
dd:87:40:6c:9c:fd:bf:69:b6:77:25:6b:dd:50:da:81:cf:75:
47:88:04:4b:fd:b0:22:63:52:5e:98:8a:79:74:27:09:ca:21:
7a:88:dd:83:46:fe:61:e2:16:79:f5:f1:20:89:fa:c6:2e:9c:
15:e8:ff:ae:54:67:55:f5:25:f2:fc:44:1b:f7:e2:d7:68:4f:
1b:ff:71:27:b7:d0:0f:4d:98:1e:4e:47:cf:d0:61:78:5b:f3:
0f:b5:65:85:7d:29:72:67:6b:6f:76:e1:cc:bd:71:90:c7:41:
55:17:12:43:d2:32:e1:2e:55:c9:9c:4d:ad:d2:23:d1:9a:f6:
86:72:25:9a:9f:bc:04:8e:44:9b:89:59:f8:86:f8:91:09:3a:
c2:c2:6d:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 08:37:45 2023 by rpki-client on console-fra.rpki-client.org