Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/Wo0MWeIxUMXK6_P3iLjEe_FrNjw.roa
File: Wo0MWeIxUMXK6_P3iLjEe_FrNjw.roa (raw, json)
Hash identifier: DGuxRWdrhTWSWW2c9BUTXwDK44BuWNdJOGDQ9p+VtGk=
Subject key identifier: 5A:8D:0C:59:E2:31:50:C5:CA:EB:F3:F7:88:B8:C4:7B:F1:6B:36:3C
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Wo0MWeIxUMXK6_P3iLjEe_FrNjw.roa
Signing time: Thu 15 Sep 2022 02:39:59 +0000
ROA not before: Thu 15 Sep 2022 02:39:59 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 223.23.63.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:39:59 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=5A8D0C59E23150C5CAEBF3F788B8C47BF16B363C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:e0:e7:f5:f7:b3:18:06:c8:aa:a6:ed:82:3a:
1b:0d:ea:22:98:16:f7:16:c9:31:60:c0:c6:54:5d:
6a:35:b2:5f:fe:90:22:ff:b4:e8:43:25:42:13:7e:
3b:c7:ff:08:0b:02:8f:72:9e:f9:3d:a2:20:54:f6:
23:fc:1e:dc:a7:38:c5:8a:ca:1e:bd:2b:d3:78:5f:
61:07:a7:65:df:2b:42:9f:c5:a8:56:e7:1f:ba:b5:
e4:b4:4d:5e:77:64:8d:8f:9f:a4:33:e2:03:df:d7:
41:0c:5b:d9:82:00:e7:c6:34:13:4e:93:f6:47:e9:
31:39:d9:99:da:a1:ea:42:10:62:58:e9:99:89:63:
dd:95:f4:32:72:08:ad:1d:15:c0:04:8d:d3:16:ba:
8a:32:29:de:27:3f:59:c4:34:cb:77:6c:9b:96:9b:
b6:2f:46:da:6e:e7:5a:38:3b:aa:9d:df:0f:ac:9a:
e2:02:73:4b:e6:1d:0d:a7:a1:29:55:9a:18:da:b2:
e3:12:29:3f:d9:ec:47:aa:86:e4:00:8e:f2:e8:b6:
fb:4e:7f:4f:11:0e:39:8b:05:7f:50:49:46:23:19:
0b:6e:ad:be:f0:2a:73:d0:50:c7:24:4e:d0:c3:5d:
b1:62:93:02:8c:8d:a4:f9:66:2e:21:bd:06:d3:d1:
7f:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:8D:0C:59:E2:31:50:C5:CA:EB:F3:F7:88:B8:C4:7B:F1:6B:36:3C
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/Wo0MWeIxUMXK6_P3iLjEe_FrNjw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.23.63.0/24
Signature Algorithm: sha256WithRSAEncryption
63:88:21:4f:62:2a:d5:70:b0:b8:90:c8:cb:d1:f1:fd:37:ac:
3a:81:be:c3:f5:fd:dc:bf:a1:2b:d6:96:3c:c5:b6:b4:71:58:
88:9a:97:06:e2:40:32:b2:a4:43:fa:29:c2:dd:5b:70:24:75:
32:f6:5e:48:6e:5a:a8:38:5f:e5:a9:9c:a3:df:0d:47:4b:1f:
17:5a:2a:2e:7b:67:eb:ac:82:47:96:0b:bf:16:52:f1:59:70:
6a:ea:04:81:e0:81:80:25:f7:32:a2:a0:81:fa:38:d6:4a:ac:
6f:27:2f:84:24:7b:71:ef:cc:15:b2:7f:3b:15:66:38:2b:db:
30:8d:de:66:27:2a:65:24:9d:84:95:15:41:1c:de:08:b9:ae:
c5:91:93:87:84:24:47:30:a2:01:fa:fc:40:40:33:b8:b0:44:
6e:a7:31:b3:42:f9:89:5a:8d:63:78:60:5c:9c:4d:da:43:34:
7a:79:69:0a:b8:c7:ec:5f:fb:2a:dc:04:2d:68:b3:cd:af:a7:
9d:aa:25:19:96:cf:21:65:18:98:10:9d:d8:c7:d7:d1:bf:16:
0a:3c:ba:be:f2:7c:33:9b:1c:07:bb:f1:98:ea:1b:f4:c7:90:
53:78:5e:5c:9a:6a:ec:c3:3c:ff:6b:ee:fa:72:63:6b:82:1c:
37:55:b5:41
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICD2MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMjA5MTUw
MjM5NTlaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDVBOEQwQzU5RTIzMTUw
QzVDQUVCRjNGNzg4QjhDNDdCRjE2QjM2M0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC+4Of197MYBsiqpu2COhsN6iKYFvcWyTFgwMZUXWo1sl/+kCL/
tOhDJUITfjvH/wgLAo9ynvk9oiBU9iP8HtynOMWKyh69K9N4X2EHp2XfK0KfxahW
5x+6teS0TV53ZI2Pn6Qz4gPf10EMW9mCAOfGNBNOk/ZH6TE52ZnaoepCEGJY6ZmJ
Y92V9DJyCK0dFcAEjdMWuooyKd4nP1nENMt3bJuWm7YvRtpu51o4O6qd3w+smuIC
c0vmHQ2noSlVmhjasuMSKT/Z7EeqhuQAjvLotvtOf08RDjmLBX9QSUYjGQturb7w
KnPQUMckTtDDXbFikwKMjaT5Zi4hvQbT0X8RAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUWo0MWeIxUMXK6/P3iLjEe/FrNjwwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvV28wTVdlSXhVTVhLNl9QM2lMakVl
X0ZyTmp3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAN8XPzAN
BgkqhkiG9w0BAQsFAAOCAQEAY4ghT2Iq1XCwuJDIy9Hx/TesOoG+w/X93L+hK9aW
PMW2tHFYiJqXBuJAMrKkQ/opwt1bcCR1MvZeSG5aqDhf5amco98NR0sfF1oqLntn
66yCR5YLvxZS8VlwauoEgeCBgCX3MqKggfo41kqsbycvhCR7ce/MFbJ/OxVmOCvb
MI3eZicqZSSdhJUVQRzeCLmuxZGTh4QkRzCiAfr8QEAzuLBEbqcxs0L5iVqNY3hg
XJxN2kM0enlpCrjH7F/7KtwELWizza+nnaolGZbPIWUYmBCd2MfX0b8WCjy6vvJ8
M5scB7vxmOob9MeQU3heXJpq7MM8/2vu+nJja4IcN1W1QQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:45 2023 by rpki-client on console-ams.rpki-client.org