Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/YfcRLtlJ8uIRNuQkTcOLvw277Sw.roa
File: YfcRLtlJ8uIRNuQkTcOLvw277Sw.roa (raw, json)
Hash identifier: z8UXLbTb5QntcA/p5YjCJGrqkQNqovE7eYcrRj4JFO0=
Subject key identifier: 61:F7:11:2E:D9:49:F2:E2:11:36:E4:24:4D:C3:8B:BF:0D:BB:ED:2C
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 10F5
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/YfcRLtlJ8uIRNuQkTcOLvw277Sw.roa
Signing time: Tue 16 May 2023 08:36:51 +0000
ROA not before: Tue 16 May 2023 08:36:51 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 124.219.0.0/17 maxlen: 17
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4341 (0x10f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:51 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=61F7112ED949F2E21136E4244DC38BBF0DBBED2C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:26:a7:9e:9c:7e:89:76:dd:90:6b:40:fb:9a:
e5:14:03:13:43:87:17:f3:b4:ba:d4:fb:a1:ea:b0:
0d:13:a0:7b:22:b4:d4:f1:68:a8:72:8a:96:23:24:
2e:b9:8e:44:f3:25:2e:2b:00:f4:82:77:1c:ed:80:
c3:ba:26:85:83:b4:36:d4:10:c8:2e:00:3a:3f:29:
af:4c:32:cf:30:f1:61:41:78:be:29:d9:00:87:2d:
7b:85:4a:35:8d:00:6b:94:08:e3:b5:8f:b1:cc:b1:
f5:32:07:e0:25:48:b5:de:de:c6:ff:98:91:38:5d:
4f:5e:2e:a9:4a:d2:4e:8b:ff:32:2b:b5:73:c8:a9:
18:84:0d:2b:5a:b2:5b:a4:bb:90:34:06:97:7d:11:
2f:7e:94:ee:4c:e1:d4:94:a6:ad:28:f1:c7:f9:fe:
fa:f0:98:19:36:21:9d:39:46:77:72:c4:05:8b:79:
f2:6f:ee:45:03:29:f6:56:be:c1:03:80:dd:fa:4b:
a3:b7:83:52:18:af:aa:c5:db:e8:83:6e:09:2f:81:
83:e0:9c:0c:fa:7b:0c:62:9d:fd:67:18:26:1d:48:
e6:df:fd:b6:e5:15:54:29:f7:48:3a:03:d1:3e:8f:
1c:59:68:96:3e:0e:c9:e0:61:b8:47:ca:85:1e:3d:
4b:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:F7:11:2E:D9:49:F2:E2:11:36:E4:24:4D:C3:8B:BF:0D:BB:ED:2C
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/YfcRLtlJ8uIRNuQkTcOLvw277Sw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.219.0.0/17
Signature Algorithm: sha256WithRSAEncryption
7b:40:ed:8d:ad:7e:2e:7e:29:9d:cf:52:42:2a:3e:ae:c9:16:
1a:24:40:e1:85:98:c8:74:81:31:4a:8f:37:2a:c0:71:44:03:
c3:26:fa:f8:0f:00:43:8d:d6:da:ef:c5:84:54:52:00:65:a8:
08:de:a4:42:48:16:03:e0:60:73:45:e4:9b:26:97:72:13:61:
bb:44:3e:6a:73:96:ca:e9:35:a5:f1:1f:ab:dd:58:e5:01:d6:
49:7f:91:3b:50:9e:4d:6e:77:04:02:1c:67:da:6d:f5:e2:54:
3e:e8:ef:8a:93:5e:6a:fd:6e:ae:33:49:8e:68:a0:7a:6a:2c:
5c:dc:79:14:30:02:32:a4:28:98:3b:8f:bf:4d:a4:fd:11:a2:
fe:cb:36:1d:9e:79:08:a7:cb:47:dc:dc:ce:9e:c2:a4:00:9c:
0d:7d:34:a4:cd:43:a0:5a:c7:43:d4:b8:de:94:97:70:33:07:
cd:1f:4d:e9:e9:6d:58:27:25:fd:0f:10:d7:46:b3:ab:69:0b:
84:04:e6:1c:cb:5e:06:82:eb:05:52:1b:10:14:bf:7f:f5:bc:
3c:ff:b5:ff:9c:58:03:cc:8d:3e:bf:60:c3:78:5f:54:5e:af:
99:0d:c7:68:28:72:22:ca:de:e9:d4:2e:a3:01:3e:b5:87:26:
fa:05:d7:15
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICEPUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMzA1MTYw
ODM2NTFaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDYxRjcxMTJFRDk0OUYy
RTIxMTM2RTQyNDREQzM4QkJGMERCQkVEMkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC0JqeenH6Jdt2Qa0D7muUUAxNDhxfztLrU+6HqsA0ToHsitNTx
aKhyipYjJC65jkTzJS4rAPSCdxztgMO6JoWDtDbUEMguADo/Ka9MMs8w8WFBeL4p
2QCHLXuFSjWNAGuUCOO1j7HMsfUyB+AlSLXe3sb/mJE4XU9eLqlK0k6L/zIrtXPI
qRiEDStasluku5A0Bpd9ES9+lO5M4dSUpq0o8cf5/vrwmBk2IZ05RndyxAWLefJv
7kUDKfZWvsEDgN36S6O3g1IYr6rF2+iDbgkvgYPgnAz6ewxinf1nGCYdSObf/bbl
FVQp90g6A9E+jxxZaJY+DsngYbhHyoUePUsDAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUYfcRLtlJ8uIRNuQkTcOLvw277SwwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvWWZjUkx0bEo4dUlSTnVRa1RjT0x2
dzI3N1N3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB3zbADAN
BgkqhkiG9w0BAQsFAAOCAQEAe0Dtja1+Ln4pnc9SQio+rskWGiRA4YWYyHSBMUqP
NyrAcUQDwyb6+A8AQ43W2u/FhFRSAGWoCN6kQkgWA+Bgc0XkmyaXchNhu0Q+anOW
yuk1pfEfq91Y5QHWSX+RO1CeTW53BAIcZ9pt9eJUPujvipNeav1urjNJjmigemos
XNx5FDACMqQomDuPv02k/RGi/ss2HZ55CKfLR9zczp7CpACcDX00pM1DoFrHQ9S4
3pSXcDMHzR9N6eltWCcl/Q8Q10azq2kLhATmHMteBoLrBVIbEBS/f/W8PP+1/5xY
A8yNPr9gw3hfVF6vmQ3HaChyIsre6dQuowE+tYcm+gXXFQ==
-----END CERTIFICATE-----
Generated at Fri Sep 1 08:25:18 2023 by rpki-client on console-ams.rpki-client.org