Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/bn6DFo4tJdTFtNQGPGJIE5PQ5_8.roa
File: bn6DFo4tJdTFtNQGPGJIE5PQ5_8.roa (raw, json)
Hash identifier: NaLYGrz4ULD/ltsEF6PjTt5qyLeE4uujXC7pPZw0oik=
Subject key identifier: 6E:7E:83:16:8E:2D:25:D4:C5:B4:D4:06:3C:62:48:13:93:D0:E7:FF
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1070
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/bn6DFo4tJdTFtNQGPGJIE5PQ5_8.roa
Signing time: Tue 16 May 2023 08:36:12 +0000
ROA not before: Tue 16 May 2023 08:36:12 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24154
IP address blocks: 210.63.220.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4208 (0x1070)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:12 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=6E7E83168E2D25D4C5B4D4063C62481393D0E7FF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:a4:2d:1b:33:6e:dd:b6:d2:4d:4c:83:cc:1f:
10:9a:ec:a1:70:18:f2:d7:35:8f:28:04:be:47:8e:
a6:0c:e2:8b:8c:4e:00:08:19:28:fa:3a:f6:7c:37:
13:07:33:bb:ed:dc:3c:fd:d8:32:72:26:ab:78:cc:
3d:f7:ac:39:85:25:c0:c8:f0:88:06:d3:a8:9a:34:
52:2f:12:d2:38:76:27:7e:0f:4a:6a:e4:0d:60:33:
d5:97:65:d2:4f:9e:80:4e:e7:56:b4:57:3d:f8:91:
dc:04:96:b1:15:ef:bd:20:60:9b:19:8c:a4:e0:6d:
ab:f1:84:bf:5a:6d:71:80:44:9c:3b:4d:f4:b4:17:
71:46:4a:52:ba:37:6b:2c:ef:d2:11:ba:fd:cb:df:
e7:1f:d1:5e:46:b3:44:ba:ff:a6:f1:3a:53:8a:ef:
de:80:8f:b2:b5:e8:97:13:d7:73:a3:13:28:a9:e2:
e5:c9:78:c4:62:e7:16:c3:34:b9:58:a7:b0:55:ad:
f1:ac:96:60:84:37:be:4e:55:91:a8:c2:59:b3:15:
96:20:39:dd:95:56:64:b8:2e:9a:cd:eb:25:b2:b2:
f8:f5:f6:21:98:36:7a:6e:0b:7e:29:2e:3d:a4:58:
2e:0c:f2:3a:29:1e:7d:8b:8d:96:e9:8d:14:e7:24:
c7:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:7E:83:16:8E:2D:25:D4:C5:B4:D4:06:3C:62:48:13:93:D0:E7:FF
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/bn6DFo4tJdTFtNQGPGJIE5PQ5_8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.220.0/22
Signature Algorithm: sha256WithRSAEncryption
a1:3d:74:cf:f6:fe:be:cc:83:74:83:30:0a:6e:9e:43:87:66:
c9:33:78:a0:e9:d7:04:6b:19:9a:b8:02:63:b3:95:ef:68:ac:
dc:85:e1:f6:7f:d2:72:84:46:5d:2e:3f:b3:ca:e5:59:cc:65:
63:5a:53:f3:0c:03:98:02:1f:9c:fb:11:30:48:61:af:42:f5:
95:c9:36:9d:ed:ea:db:3d:ea:ab:91:1d:f2:33:ce:2f:e7:98:
90:29:b9:2b:57:10:c6:ed:74:61:a6:27:6b:3c:fd:2d:af:08:
3b:fe:28:72:d6:05:e8:4d:04:db:e1:10:6d:b0:bc:32:84:97:
e3:76:d2:1d:1b:9a:0e:de:2f:b6:45:02:4d:5f:70:e8:15:0c:
47:a4:7e:65:62:ca:51:fe:bf:50:0f:11:26:fd:37:56:19:ef:
92:7b:39:23:92:e9:58:7c:22:99:19:3f:44:b5:00:14:8a:7c:
ee:42:3e:68:f3:04:4e:a0:78:47:6e:b1:01:7d:6a:ec:aa:cc:
a9:8f:b1:3c:af:40:9f:05:43:71:b1:b3:e5:dc:98:57:4b:4a:
75:a1:c7:bd:11:12:8e:cd:5f:1c:dd:bf:74:09:ef:0a:7a:56:
ff:8a:58:39:da:4c:c4:59:46:75:8d:18:ae:e6:8d:ec:96:d7:
99:1e:cd:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 08:37:45 2023 by rpki-client on console-fra.rpki-client.org