Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/_o23VvM96hIAa5QaPq6y2nyZg_0.roa
File: _o23VvM96hIAa5QaPq6y2nyZg_0.roa (raw, json)
Hash identifier: yflw72VgNCRUMgjuNlna6ASd6vZbVS/IWiom4tYs8WM=
Subject key identifier: FE:8D:B7:56:F3:3D:EA:12:00:6B:94:1A:3E:AE:B2:DA:7C:99:83:FD
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1025
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/_o23VvM96hIAa5QaPq6y2nyZg_0.roa
Signing time: Tue 16 May 2023 08:35:48 +0000
ROA not before: Tue 16 May 2023 08:35:48 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 7482
IP address blocks: 203.79.192.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4133 (0x1025)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:35:48 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=FE8DB756F33DEA12006B941A3EAEB2DA7C9983FD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:2a:94:3a:44:4e:f3:5e:5e:a9:32:81:c8:5c:
1e:d1:09:e2:5d:52:63:27:7c:63:e2:69:07:c2:c6:
c9:47:73:84:61:99:e6:7c:3d:3b:0a:c1:46:53:97:
e6:a9:a2:3c:14:9d:f0:97:d7:c6:45:40:bd:7c:c2:
96:38:5c:35:da:55:3c:79:fe:87:1e:bc:75:9a:db:
01:d3:41:39:6b:9e:94:24:87:d0:71:12:6f:2c:04:
f1:14:ab:8d:26:0d:1c:45:30:4b:2a:4e:6b:43:73:
e6:7d:d3:90:9d:ea:85:9c:0b:46:7e:f2:da:18:6c:
cd:1e:45:09:aa:63:ac:84:6e:ea:8c:b8:b3:4d:38:
a5:d5:5b:7a:30:53:f0:30:76:e3:17:35:7b:b5:d2:
5d:a3:06:d0:cd:de:27:a4:b7:70:0c:0e:70:a8:b8:
c3:40:34:92:15:68:1f:29:cc:c3:15:dd:17:da:65:
df:e0:9c:32:e1:6c:64:09:3c:a7:af:d9:83:f4:d9:
a6:8f:7e:24:49:f7:12:ce:f3:97:f7:f5:58:f6:78:
b7:75:e9:32:68:85:9f:b7:a5:0e:54:30:cf:38:50:
cf:04:dc:33:5c:c1:2a:e7:1b:55:16:d0:c9:d2:bf:
1a:72:e5:d9:26:ea:83:b7:88:11:e8:e5:0d:67:45:
2f:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:8D:B7:56:F3:3D:EA:12:00:6B:94:1A:3E:AE:B2:DA:7C:99:83:FD
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/_o23VvM96hIAa5QaPq6y2nyZg_0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.192.0/22
Signature Algorithm: sha256WithRSAEncryption
ae:ad:05:fd:a6:aa:ee:63:6a:03:94:03:ae:39:c4:1a:7f:53:
54:0d:b3:d4:91:33:1e:74:a8:06:f4:fb:d8:d4:5f:62:44:ab:
bc:1f:2f:1f:52:ad:cc:d7:b4:0c:bf:dc:fd:0d:a9:67:2c:2a:
25:47:50:aa:96:73:ce:55:09:8f:f1:a4:c3:cb:19:e4:a5:3c:
39:bc:25:9a:6b:83:c4:89:82:14:1d:0d:d0:8e:65:28:5c:78:
e3:53:88:42:bc:1f:84:15:61:b9:9e:2d:0a:58:af:56:01:be:
8a:64:4c:8a:d3:b8:b6:7c:ef:73:05:94:69:b8:e9:8f:f0:31:
e5:75:32:ef:68:90:a8:ca:00:e6:b3:5a:e3:81:d2:a3:5c:34:
6a:ef:ed:eb:fb:d5:c9:a7:ba:d4:e2:f1:70:7b:2b:b2:11:c7:
1f:e3:b5:93:d4:10:79:89:04:b0:14:b8:e2:5a:ff:e6:6c:21:
a4:01:60:a9:a0:de:42:47:2b:36:19:e8:ef:1b:45:41:12:b6:
78:04:ee:d1:a0:ea:46:43:82:6a:75:f1:a0:4c:70:98:c7:f3:
ae:5b:e9:bf:fe:5a:29:a3:6d:5a:d1:76:bd:46:d3:30:36:70:
f1:a5:8c:83:42:0b:f5:78:5f:6a:d8:1d:41:a4:77:35:94:2b:
69:c1:8d:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 08:37:45 2023 by rpki-client on console-fra.rpki-client.org