Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/bZzVyq0AyUzDvTS_ZYN7Z3uOGUQ.roa
File: bZzVyq0AyUzDvTS_ZYN7Z3uOGUQ.roa (raw, json)
Hash identifier: 0PXnksZ0HPQKsRxDJcknlcsGALMkvYuM6C+Q3ImS3JA=
Subject key identifier: 6D:9C:D5:CA:AD:00:C9:4C:C3:BD:34:BF:65:83:7B:67:7B:8E:19:44
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1060
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/bZzVyq0AyUzDvTS_ZYN7Z3uOGUQ.roa
Signing time: Tue 16 May 2023 08:36:07 +0000
ROA not before: Tue 16 May 2023 08:36:07 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 22787
IP address blocks: 210.58.91.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4192 (0x1060)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:07 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=6D9CD5CAAD00C94CC3BD34BF65837B677B8E1944
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:60:d2:32:9a:f2:bd:66:19:59:8d:8e:17:02:
69:52:fc:70:78:d8:4b:1d:e8:db:8a:f7:02:d1:3f:
27:2b:f2:85:0b:83:da:93:60:ef:75:e4:c2:60:57:
07:49:d4:ad:75:6d:43:96:a4:1a:c6:7c:65:ab:b7:
08:4a:4a:30:fa:8e:8c:24:c6:a0:ff:95:34:75:57:
57:0e:87:a8:7e:3e:1a:2d:66:c4:11:db:72:9b:fc:
5e:cf:69:3e:2b:6a:8f:59:f9:65:8d:43:89:14:8c:
12:06:50:5c:a2:4a:65:4c:69:85:81:36:22:9b:15:
20:f8:91:2e:8e:02:1e:ec:77:72:99:02:90:6c:43:
20:9d:ed:0f:c5:c0:ef:f5:4d:9d:20:3f:60:fc:0f:
f9:05:9e:66:a3:47:cc:06:cd:d6:3c:fb:1c:7f:af:
f1:fa:57:2a:fc:2a:3b:e9:4b:7a:96:79:c6:d4:eb:
6c:79:89:f6:e7:18:91:81:d4:ba:a0:aa:60:89:96:
64:92:68:a8:99:37:79:36:78:4e:84:b4:d7:88:3f:
37:2c:63:53:db:ba:eb:c2:83:32:3c:5e:39:7c:79:
ed:bf:07:20:c6:4e:b3:62:58:5c:1b:b6:25:50:69:
b0:d9:6d:22:d1:e4:da:2c:dc:02:17:04:b4:0c:b2:
02:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:9C:D5:CA:AD:00:C9:4C:C3:BD:34:BF:65:83:7B:67:7B:8E:19:44
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/bZzVyq0AyUzDvTS_ZYN7Z3uOGUQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.58.91.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:31:0f:bb:f9:c3:89:35:0b:83:b9:21:fd:2c:5f:89:05:ba:
d9:d7:73:a2:2d:5b:03:ba:cc:63:13:e1:51:a6:bc:d6:91:25:
5a:b2:23:8e:ad:ce:1a:86:e3:3e:4d:0b:50:51:d2:60:b2:46:
ee:20:21:d4:b4:ef:1a:2b:15:36:bf:be:5c:ae:54:4e:4d:3f:
75:6c:ce:b3:68:4f:12:2f:f5:a7:e1:0a:3f:bf:fd:e9:59:c4:
ad:05:8b:7b:59:7c:09:da:cb:9f:e6:bf:41:62:dd:14:2f:14:
0b:40:b2:16:77:fd:7f:60:48:1d:1a:e2:79:0f:e7:85:92:88:
8e:7e:3b:1d:50:8e:c3:f9:ff:e5:1c:c7:92:68:0d:c5:65:ad:
8a:27:6a:1e:68:d5:f4:c4:a5:75:b4:11:06:5d:3f:6b:8e:b8:
d9:f7:bc:5e:92:73:2e:c9:89:f0:ab:b6:03:78:db:42:9c:01:
4a:05:4f:81:af:a8:c9:6e:d0:a9:1b:6f:7d:56:21:1a:5e:f8:
f2:08:5c:8b:a7:be:21:fe:2b:97:e6:82:c6:27:bb:67:69:f4:
79:32:25:f3:71:b7:6b:b2:48:61:5e:07:0a:c7:a3:05:8c:ab:
be:fb:bd:11:17:f4:ee:e0:3d:aa:c1:cf:71:4f:d4:93:f4:af:
8c:cd:27:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 08:25:18 2023 by rpki-client on console-ams.rpki-client.org