Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/c5Fl1Rnu1kUpWjqT6mQ6j1sHiRs.roa
File: c5Fl1Rnu1kUpWjqT6mQ6j1sHiRs.roa (raw, json)
Hash identifier: Y7mURHcfV4rWNXB15cP3JNCh11v4eV89HW4esM7DSQo=
Subject key identifier: 73:91:65:D5:19:EE:D6:45:29:5A:3A:93:EA:64:3A:8F:5B:07:89:1B
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1086
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/c5Fl1Rnu1kUpWjqT6mQ6j1sHiRs.roa
Signing time: Tue 16 May 2023 08:36:18 +0000
ROA not before: Tue 16 May 2023 08:36:18 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9311
IP address blocks: 210.63.253.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4230 (0x1086)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:18 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=739165D519EED645295A3A93EA643A8F5B07891B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:73:3d:7e:87:30:47:5e:01:3d:87:68:3b:c8:
d5:0d:45:24:dd:52:0f:b1:1a:f5:b7:74:23:dc:f4:
f0:8b:2e:4b:dc:e8:ac:4c:2a:af:91:75:b8:9d:2e:
e3:3c:8b:15:eb:b3:cd:48:7e:d1:e2:bb:51:13:ef:
cd:4d:e5:49:01:5e:5d:5f:37:18:5f:67:76:c5:a8:
e2:75:7e:05:2f:ea:71:61:f5:61:05:4c:09:a5:e5:
37:ad:b3:b0:12:8e:60:9c:37:ed:89:bc:56:ed:6d:
4b:02:9a:10:55:a4:a1:0b:66:dc:52:54:e2:b7:5f:
e1:e4:c2:f9:3c:13:bb:25:d6:28:d1:c2:88:58:20:
2b:41:2e:d5:c0:3c:eb:bd:9e:ae:ff:20:69:22:bc:
e5:0d:37:22:b1:d1:77:14:4f:bb:e6:f6:82:fd:7e:
6f:28:d5:0a:ca:fe:72:1d:ac:b1:06:36:b9:5c:5d:
ce:33:bf:b5:1b:80:3e:ed:25:42:a4:84:e4:69:c2:
da:bd:23:ee:55:1f:2a:13:f6:46:78:12:23:ad:be:
fe:d5:1d:70:cb:cb:27:26:41:04:0f:e6:a1:71:5f:
4c:6f:37:37:14:06:7f:c0:8f:f8:30:0a:4a:e2:f2:
a7:b7:56:b3:3c:e8:f4:2e:b7:bd:7a:ab:d7:8a:e9:
17:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:91:65:D5:19:EE:D6:45:29:5A:3A:93:EA:64:3A:8F:5B:07:89:1B
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/c5Fl1Rnu1kUpWjqT6mQ6j1sHiRs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.253.0/24
Signature Algorithm: sha256WithRSAEncryption
13:2f:cc:08:f7:01:c9:6c:8c:1a:a4:f5:90:00:4a:f2:f1:2e:
37:dc:24:e4:54:dc:36:06:07:71:98:8f:81:a4:e2:98:b8:1b:
3a:3a:36:b1:00:40:21:3a:7a:b8:d8:31:28:df:5b:37:1d:13:
72:19:35:4e:f5:66:4c:14:bc:86:f0:f9:35:02:a9:b1:2f:d7:
ca:5f:3c:ab:d5:9f:d3:35:b4:9f:36:78:b4:c9:fc:aa:1f:52:
9c:b8:22:24:c0:83:99:e6:be:5c:6b:05:68:91:41:ef:b1:f2:
fb:59:d9:c0:1b:a7:67:39:96:fe:90:d4:4f:ee:a0:fa:cf:6a:
e8:67:1b:9c:2c:11:b8:98:49:a3:45:fc:14:75:98:76:20:55:
5f:39:08:b2:46:51:9e:d9:23:4b:41:b7:21:a0:9d:a8:54:ab:
72:5a:7b:29:30:26:50:1c:55:c3:7b:4f:e4:92:da:e8:88:0f:
4e:79:31:11:17:d1:99:df:ad:69:cd:d8:fa:aa:65:8a:21:2f:
b1:20:79:fa:74:41:eb:39:9b:71:1e:44:cc:7c:b6:45:9e:a8:
86:f7:1f:68:b5:71:08:7c:0e:7b:53:04:76:c1:a5:f2:7d:8e:
eb:a3:5c:ba:37:d6:72:d6:13:43:e0:82:47:e1:25:98:83:f2:
49:0a:69:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 08:37:45 2023 by rpki-client on console-fra.rpki-client.org