Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/_Ha_3IuNW0J0BRoTXZFfZf_wAz4.roa
File: _Ha_3IuNW0J0BRoTXZFfZf_wAz4.roa (raw, json)
Hash identifier: cnmp+qkRq5wtatzQOZsPQlFSjhqGmj43GIyb+VsFDos=
Subject key identifier: FC:76:BF:DC:8B:8D:5B:42:74:05:1A:13:5D:91:5F:65:FF:F0:03:3E
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/_Ha_3IuNW0J0BRoTXZFfZf_wAz4.roa
Signing time: Thu 15 Sep 2022 02:40:03 +0000
ROA not before: Thu 15 Sep 2022 02:40:03 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24154
IP address blocks: 222.156.254.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:40:03 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=FC76BFDC8B8D5B4274051A135D915F65FFF0033E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:dd:9d:4b:9e:96:8e:01:ed:2d:79:5c:06:04:
05:16:80:60:d7:d0:b2:90:db:58:cb:b0:26:8d:ad:
8e:f3:da:e8:c1:34:49:10:28:90:4e:d2:c6:c6:dd:
4a:9f:68:06:80:45:28:91:3f:16:18:b5:b2:c4:65:
03:73:b2:ab:0d:8b:85:43:12:c2:47:ed:76:73:db:
93:29:6a:6d:f5:0e:1f:e5:c7:4f:07:ef:43:13:6d:
e3:52:86:14:c1:1f:86:3f:c0:6a:68:1b:f4:4f:e0:
42:3b:1c:79:1f:34:21:c1:2c:06:0d:c3:1d:dd:43:
56:2a:5c:f0:d7:04:7e:4a:0c:d0:2d:5b:97:62:7b:
f4:ae:f1:66:ab:e1:bb:a9:4e:93:6a:b9:f4:37:59:
43:a1:f8:11:d8:8e:a5:cd:7f:1d:c0:84:75:fd:47:
83:4b:35:ae:d6:99:e6:d1:3f:4d:bb:34:90:79:7d:
af:ef:fc:9c:97:c3:9d:d9:ab:cd:bb:43:d3:36:11:
7e:10:36:92:32:50:04:b5:d7:a8:b8:64:f9:0a:9f:
19:c4:09:e2:4f:a7:66:c2:44:c3:18:a1:c7:ab:45:
08:d7:a3:76:7d:ef:d2:0b:43:09:ff:b8:f1:d1:cf:
97:c6:38:ac:a5:c9:dd:ba:af:47:75:5d:ee:a4:63:
1e:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:76:BF:DC:8B:8D:5B:42:74:05:1A:13:5D:91:5F:65:FF:F0:03:3E
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/_Ha_3IuNW0J0BRoTXZFfZf_wAz4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
222.156.254.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:df:66:9a:48:cd:df:5d:0f:e1:9b:a1:21:35:a0:ed:5a:4b:
17:99:c0:9d:90:bd:61:a2:9e:d2:ca:1b:d3:a9:b6:5f:29:96:
b0:e2:d6:e0:a2:45:53:1a:7e:67:01:8e:d1:b2:e8:4d:31:bb:
f1:14:44:59:45:2f:9a:9c:c4:23:5d:9f:5b:71:9f:dd:93:e6:
cb:20:45:6e:24:eb:48:45:08:25:54:0c:40:b2:9e:04:e9:72:
39:73:11:41:5d:07:cd:ad:ab:30:1b:87:8d:78:e1:84:88:6b:
db:0b:98:30:74:fb:4f:23:99:99:4a:ed:25:98:1c:6c:01:21:
de:ce:2b:ab:58:9c:f5:5a:51:6e:9b:3a:cf:88:bb:8b:2f:78:
1d:a1:83:b0:aa:a5:27:67:8f:df:a3:24:e7:4d:8a:b3:87:4d:
bd:9c:8b:e0:f1:38:b8:c6:ab:6a:3a:64:75:16:41:e0:e3:e6:
6f:f3:a7:34:8d:d4:a3:66:c7:47:a0:8c:b0:47:d7:81:86:00:
30:09:23:97:10:b7:6d:a2:41:9d:dd:cc:bc:0b:bc:22:15:54:
c1:30:31:26:69:0a:3a:03:25:2e:88:fe:c9:39:d1:20:0c:4a:
b8:de:42:9b:ef:d7:fa:86:ec:04:9f:99:88:71:95:14:ca:6f:
c4:46:87:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:45 2023 by rpki-client on console-ams.rpki-client.org