Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/_j69mXpuPGhGTDK5cQMtYh6mFDE.roa
File: _j69mXpuPGhGTDK5cQMtYh6mFDE.roa (raw, json)
Hash identifier: fe2Bd933neec8KC9OI4dmzLYlW6GRynwlFaZwCP6ZSU=
Subject key identifier: FE:3E:BD:99:7A:6E:3C:68:46:4C:32:B9:71:03:2D:62:1E:A6:14:31
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 10E3
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/_j69mXpuPGhGTDK5cQMtYh6mFDE.roa
Signing time: Tue 16 May 2023 08:36:46 +0000
ROA not before: Tue 16 May 2023 08:36:46 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 218.184.0.0/16 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4323 (0x10e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:46 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=FE3EBD997A6E3C68464C32B971032D621EA61431
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:d5:77:da:d2:55:62:e2:39:5e:89:ed:af:6f:
69:97:c2:45:96:fc:3b:d6:fd:33:49:53:d7:38:0b:
54:ec:17:47:c4:8e:93:fd:57:b8:62:62:4d:f1:91:
05:74:bb:3d:14:35:3b:c6:39:c4:95:e2:f6:df:6a:
ed:31:09:fe:67:67:a2:3e:cf:f0:52:48:38:48:53:
f4:e7:70:72:d4:25:43:c3:cf:3a:f1:f7:41:de:4a:
0f:84:1f:b8:2f:3f:e1:5c:c8:14:f3:dd:1f:c1:04:
8c:fe:4f:d6:ad:1c:de:3e:82:0b:10:05:66:61:6d:
eb:ec:8b:02:c5:2b:28:00:4a:df:38:fb:66:41:0b:
2b:90:6c:2e:67:a0:c5:54:07:ac:78:74:5e:c7:5c:
6e:6e:95:08:07:34:3d:17:9e:95:e6:52:e8:c6:f1:
c8:af:a5:75:d8:06:52:f4:e3:64:25:30:8a:77:4e:
b7:d0:7e:75:1e:50:dc:c0:0f:2c:e6:c5:f9:bd:b9:
3f:fe:35:6b:b2:7c:e0:ab:48:f3:18:73:19:4f:23:
30:0e:52:66:28:d2:f4:37:b4:59:f5:ba:ca:1a:bd:
01:90:1c:2c:ef:80:d9:ef:49:11:80:37:ec:a9:3d:
4c:4b:03:46:a5:91:32:1a:52:40:e0:3c:63:12:f9:
1b:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:3E:BD:99:7A:6E:3C:68:46:4C:32:B9:71:03:2D:62:1E:A6:14:31
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/_j69mXpuPGhGTDK5cQMtYh6mFDE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
218.184.0.0/16
Signature Algorithm: sha256WithRSAEncryption
b2:9b:02:78:a8:c5:38:91:01:de:77:3a:73:30:1e:ae:81:f4:
0f:0a:11:ac:28:27:d9:f6:35:79:12:a1:ca:21:36:fb:42:9b:
b4:bb:76:c3:24:12:f6:d1:7e:4c:1b:9e:f1:4a:ec:27:7e:38:
f7:56:73:70:08:7f:1f:d0:b6:f8:b9:fd:54:a0:ba:f8:73:55:
e7:20:de:31:c5:a8:a6:83:d2:be:f3:f7:48:30:57:df:96:f9:
4d:82:c5:b6:4c:3f:ee:e5:7a:f6:83:ac:21:8d:01:4c:6d:79:
55:2e:32:b1:a0:a5:33:de:57:51:50:94:cc:01:d4:4b:e8:1f:
2a:90:b3:5b:bf:e6:ff:a8:de:ad:d8:78:16:dd:8b:ae:f8:73:
6d:f0:21:5a:1a:a0:3b:65:3b:84:2c:85:86:45:56:40:13:3a:
a3:dd:5b:ef:84:70:e0:a8:c4:d2:7f:43:86:90:e8:3d:3c:4c:
db:1a:50:e6:26:2c:d3:86:3d:01:a2:65:b3:54:1d:2f:a0:47:
bd:d5:eb:0d:86:48:87:2e:5e:e8:10:4d:e7:6d:89:f9:9c:95:
a3:c9:eb:65:1a:f3:03:cd:3b:ee:33:47:69:97:4e:3b:1e:64:
88:f6:fc:99:28:b4:f6:f2:8d:22:05:b3:a6:71:50:ff:28:e2:
ac:d3:cd:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 08:25:18 2023 by rpki-client on console-ams.rpki-client.org