Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/_hSUWdS96fzV046hGF954wXMfZU.roa
File: _hSUWdS96fzV046hGF954wXMfZU.roa (raw, json)
Hash identifier: 05ujmoBIGdZAR8yImf3HXvok082ClH6GF8sYKjIsHtI=
Subject key identifier: FE:14:94:59:D4:BD:E9:FC:D5:D3:8E:A1:18:5F:79:E3:05:CC:7D:95
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1071
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/_hSUWdS96fzV046hGF954wXMfZU.roa
Signing time: Tue 16 May 2023 08:36:13 +0000
ROA not before: Tue 16 May 2023 08:36:13 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9922
IP address blocks: 124.218.80.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4209 (0x1071)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:13 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=FE149459D4BDE9FCD5D38EA1185F79E305CC7D95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:26:12:cd:6f:e0:61:63:4c:48:4e:b2:bb:85:
8c:f5:11:ea:a7:7f:2a:db:d7:75:b9:6c:3b:cb:a8:
73:41:5d:23:6c:9b:c8:ee:35:a3:b8:c9:43:a9:d1:
8b:98:18:33:98:11:b3:94:94:60:e0:7b:c6:01:e7:
d0:03:d7:5e:f8:47:51:45:c4:ff:0f:2c:24:dd:d8:
dc:6a:70:22:d9:99:9a:47:91:59:37:35:3c:34:3b:
47:8e:4c:a6:d4:50:b3:f0:b9:b8:9d:ad:2c:8b:13:
8e:59:e8:5e:b9:47:04:d3:7e:99:a8:de:2a:09:6b:
ae:4c:4b:0f:d8:77:96:12:fb:84:94:05:56:2e:b2:
03:1d:81:a8:9c:76:24:0d:62:6e:91:88:b8:c7:1f:
8c:2c:0b:ed:34:38:5e:29:40:6b:9e:6f:55:8f:c1:
ae:b7:95:85:4f:18:bf:e2:60:59:f3:c6:7d:b5:9f:
92:29:23:6f:6a:fb:4a:8c:10:c4:e2:b8:79:94:9e:
81:96:cf:99:34:67:a1:42:88:2c:a6:46:ac:6a:ea:
9e:97:99:5f:ba:ac:5d:de:13:af:12:c2:89:83:d5:
fc:0b:3c:6e:bb:9c:af:c4:1b:5c:85:3d:c8:b4:83:
e3:66:06:a6:0e:50:26:90:72:e3:64:d9:3d:de:31:
de:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:14:94:59:D4:BD:E9:FC:D5:D3:8E:A1:18:5F:79:E3:05:CC:7D:95
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/_hSUWdS96fzV046hGF954wXMfZU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.80.0/20
Signature Algorithm: sha256WithRSAEncryption
45:79:97:d2:a4:03:08:51:40:a9:45:65:9e:3f:58:96:13:85:
ff:78:7e:ba:0c:76:95:68:bd:35:ee:15:8a:80:39:8c:38:1f:
1e:cf:27:b0:6c:44:ae:47:32:98:48:8e:67:61:92:8a:01:8d:
79:94:47:b0:b1:6d:f6:52:7b:e8:00:5b:f5:4d:f7:57:03:2f:
2f:94:90:ec:47:76:ce:e4:62:0c:4f:4f:54:bb:e4:f0:8e:42:
28:47:41:3c:d3:5d:89:cd:95:3d:0f:e4:de:65:0f:88:17:02:
bf:9d:7d:9b:aa:09:1f:93:e6:c2:ad:76:bc:6b:8f:78:0c:e6:
4c:d0:c2:81:7d:c2:25:2d:84:9b:63:c1:e3:11:b6:a1:3a:06:
fd:53:67:d7:d3:37:b6:41:f9:22:63:48:da:48:8e:6e:a8:ba:
b0:7b:30:31:de:46:e2:f1:2b:4b:71:89:14:01:46:d9:8d:87:
2f:7c:6a:60:23:7f:46:c0:ad:b3:68:d2:c9:89:e2:05:5a:9b:
ce:50:42:10:b3:f4:4b:d3:2c:c0:7c:09:40:a2:0b:46:6d:ec:
de:7f:32:8a:45:a2:9f:93:76:4e:b8:85:32:c9:5d:c8:59:6a:
6a:e9:0f:4b:a5:27:1d:7c:ae:db:5b:d6:f2:fc:4e:be:3e:cb:
54:fd:48:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 08:37:45 2023 by rpki-client on console-fra.rpki-client.org