Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/cK_KJV60i_4BVLexZvCL1zxSkkc.roa
File: cK_KJV60i_4BVLexZvCL1zxSkkc.roa (raw, json)
Hash identifier: gN0WWqkns32sMVlSJxPXv6wyXY5LCHCXhN+leO2DD0Y=
Subject key identifier: 70:AF:CA:25:5E:B4:8B:FE:01:54:B7:B1:66:F0:8B:D7:3C:52:92:47
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/cK_KJV60i_4BVLexZvCL1zxSkkc.roa
Signing time: Thu 15 Sep 2022 02:40:28 +0000
ROA not before: Thu 15 Sep 2022 02:40:28 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 7482
IP address blocks: 210.202.96.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:40:28 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=70AFCA255EB48BFE0154B7B166F08BD73C529247
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:c8:35:d1:95:37:86:82:d0:a5:f5:ea:da:be:
f4:30:cc:0b:c2:c9:aa:1e:65:32:eb:ff:b5:89:b0:
d7:b3:21:04:67:b7:3c:fe:4b:fc:62:d8:40:d6:cb:
f9:84:19:83:ce:4a:11:f7:1c:f0:15:80:c0:7e:f5:
6d:00:d8:6e:e6:0e:98:b8:cf:f8:73:ff:3a:e5:79:
39:a8:d3:af:b2:db:93:db:67:97:9d:9a:67:02:28:
a8:2b:5a:18:ab:96:12:37:61:11:c5:51:64:32:98:
c3:55:82:75:8f:b5:a8:ff:48:21:ec:25:65:07:ab:
c4:00:b0:c4:24:49:99:52:3e:89:7f:98:f3:bc:33:
e4:87:59:d1:3d:78:87:db:84:40:0c:24:b2:18:54:
fb:bd:75:44:41:16:91:92:2c:e0:2b:e3:ea:be:1f:
ac:2b:f0:ed:f6:b5:28:fd:22:e9:f9:14:34:9c:b0:
47:a4:f6:19:12:77:b8:e6:bf:f7:08:e2:15:59:10:
4c:c4:42:63:98:6d:8c:45:e1:68:91:1a:3a:c4:bf:
27:e7:6e:f0:36:d8:ca:cc:13:de:41:14:e9:34:84:
91:49:d5:56:e1:64:c6:52:9c:a6:64:ac:b9:cc:8f:
a4:fd:11:d2:fe:ea:5a:32:93:18:0a:6e:01:3e:76:
db:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:AF:CA:25:5E:B4:8B:FE:01:54:B7:B1:66:F0:8B:D7:3C:52:92:47
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/cK_KJV60i_4BVLexZvCL1zxSkkc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.202.96.0/20
Signature Algorithm: sha256WithRSAEncryption
57:8e:59:28:97:67:bf:b9:c8:3e:1e:5a:fe:35:5d:bc:88:66:
d5:66:c4:02:81:ee:00:b0:80:37:43:4a:1b:1c:c9:0e:a6:89:
c5:da:31:5a:b0:b7:25:fa:03:1e:b8:3d:46:f1:61:62:23:07:
90:7d:6b:b7:ff:b2:16:29:4f:6f:92:71:03:62:22:9e:b9:c8:
6c:e7:8d:aa:40:4b:73:1f:32:0f:81:6f:cf:3c:73:0a:33:80:
fd:66:ce:b6:31:e7:8a:74:13:5e:4b:b1:d9:10:40:a9:fc:0e:
77:11:35:9e:1c:73:e3:d4:3e:49:0c:a3:4d:ea:ee:94:4b:05:
58:9f:ae:52:ec:f6:b7:92:83:95:22:e9:2c:35:37:1a:1a:61:
a6:dd:0c:e7:dd:41:fa:c1:92:e9:bd:a8:1c:c1:c9:08:17:02:
d8:48:c5:7d:75:a6:e7:da:35:37:0a:c0:fb:51:56:e7:23:98:
2c:67:68:e4:9e:49:75:cd:f9:07:25:94:65:0c:37:cf:77:35:
f8:e0:8e:5d:78:1e:52:5e:93:3b:16:51:66:95:bf:9d:45:b8:
b5:7d:6d:5b:35:a1:97:b9:61:77:01:cd:a1:0f:f8:5d:8b:32:
c7:82:c5:88:b8:1a:2c:28:89:12:18:31:a7:7a:18:c6:89:0d:
f5:0b:bd:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:45 2023 by rpki-client on console-ams.rpki-client.org