Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/cZAnVe8phxvXyaBNXKj8PUfR2Pc.roa
File: cZAnVe8phxvXyaBNXKj8PUfR2Pc.roa (raw, json)
Hash identifier: OUsjkE1PxN8LRr4UrXe8Sei5V9HMduYOVJe/x2QzPfM=
Subject key identifier: 71:90:27:55:EF:29:87:1B:D7:C9:A0:4D:5C:A8:FC:3D:47:D1:D8:F7
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/cZAnVe8phxvXyaBNXKj8PUfR2Pc.roa
Signing time: Thu 15 Sep 2022 02:40:13 +0000
ROA not before: Thu 15 Sep 2022 02:40:13 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 60.244.128.0/17 maxlen: 17
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:40:13 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=71902755EF29871BD7C9A04D5CA8FC3D47D1D8F7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:e3:95:4b:7c:1d:6c:f0:f2:89:8e:fa:a7:0d:
3b:69:51:74:e8:65:d4:e1:9e:cf:e7:62:b2:f6:5a:
0e:d6:3c:c7:e5:f1:4a:7b:82:61:d5:24:ac:63:69:
2b:21:82:41:24:a3:3b:c5:d7:78:e7:bf:c2:a4:da:
e4:64:6e:f4:3d:9e:c0:2a:97:21:bb:a9:45:70:d7:
98:2d:2f:95:0a:f0:62:9e:93:6f:76:c0:f8:00:0d:
1e:93:ed:6c:9e:b3:5d:12:e3:02:e7:93:35:6d:9f:
2c:37:e0:c4:ef:11:10:5c:b2:14:cc:95:10:41:c0:
62:b6:d2:f6:38:d3:69:5d:ce:08:0d:be:49:83:ee:
d8:35:9f:72:a4:5a:55:94:fa:01:54:f5:63:ac:3f:
0d:22:1d:de:d9:7a:10:15:16:84:95:09:60:56:c8:
58:06:52:63:e5:7f:54:d2:64:4b:5f:91:5b:c9:1b:
1a:1a:11:90:4a:bd:0f:11:ee:5f:60:b6:96:25:9e:
6d:6a:a2:58:e3:cd:08:00:eb:f4:49:d7:21:ec:43:
63:21:61:df:c6:63:a1:0b:ec:38:6a:e9:11:82:1f:
46:2f:3f:75:b4:f5:70:a3:09:c2:1e:18:88:90:5f:
45:cd:f1:ea:6e:6a:47:f1:ff:63:6d:13:c9:09:9e:
40:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:90:27:55:EF:29:87:1B:D7:C9:A0:4D:5C:A8:FC:3D:47:D1:D8:F7
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/cZAnVe8phxvXyaBNXKj8PUfR2Pc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.244.128.0/17
Signature Algorithm: sha256WithRSAEncryption
49:0d:57:51:16:73:e4:5d:9e:cc:ca:25:21:3d:8e:2f:34:00:
50:31:1b:d8:fb:d8:18:80:72:86:bd:a6:6b:0b:70:e5:f1:41:
6a:ac:21:91:1b:14:81:2d:64:38:41:f5:ad:eb:a1:4e:5d:42:
77:b4:86:22:af:70:0f:62:21:78:c6:d9:8f:18:cb:b7:7d:3d:
de:ec:9c:1b:92:b5:0e:c1:43:9a:23:46:71:e6:d4:90:6c:d8:
45:d8:0a:d7:ea:02:86:61:25:0d:de:bc:79:4b:c2:a6:1e:85:
81:69:04:79:1c:a2:1f:ff:57:67:64:5e:c1:a4:9b:28:fb:90:
7f:59:5d:1c:79:ba:45:7c:42:95:52:e0:79:0e:25:f1:ab:93:
00:f9:6b:d7:a9:a2:a0:18:ca:9d:fc:0e:e4:8e:37:45:6f:c5:
67:46:f9:05:c5:40:88:e2:4e:ed:9d:dc:b4:5c:ad:49:bb:6f:
60:18:54:5c:6b:ec:69:e2:9d:0b:b9:b3:a2:cf:a3:fa:72:99:
d8:52:e1:d5:46:08:7e:1f:7d:3b:7d:b2:a3:98:5c:78:8d:3c:
c5:be:4f:31:94:6f:58:a2:37:9d:e7:af:19:f5:a3:6f:3a:15:
72:b3:86:f8:3a:70:dc:41:ce:b0:30:8e:48:67:1d:b0:ce:18:
ef:04:83:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:55 2023 by rpki-client on console-fra.rpki-client.org