Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/dmPotbdlF3Nbq2yhGH3HGbp0Zr8.roa
File: dmPotbdlF3Nbq2yhGH3HGbp0Zr8.roa (raw, json)
Hash identifier: 3AEfOcV0kpnOoTsgEwqMPC/gyNWLopBYvrf5Ycbtbi8=
Subject key identifier: 76:63:E8:B5:B7:65:17:73:5B:AB:6C:A1:18:7D:C7:19:BA:74:66:BF
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/dmPotbdlF3Nbq2yhGH3HGbp0Zr8.roa
Signing time: Thu 15 Sep 2022 02:40:31 +0000
ROA not before: Thu 15 Sep 2022 02:40:31 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 7482
IP address blocks: 203.79.128.0/17 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:40:31 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=7663E8B5B76517735BAB6CA1187DC719BA7466BF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:be:2f:11:59:33:8a:ce:4b:7d:f1:fb:f6:a4:
2e:9a:4c:fc:61:ac:85:4a:80:46:42:a2:bd:61:7a:
1f:e3:83:bf:3b:aa:ec:c6:8f:33:b6:d9:57:0a:d0:
5b:8e:13:ac:91:18:5e:59:23:f1:26:79:3d:81:93:
22:a0:c7:7c:ae:d5:c0:44:58:54:e9:6e:bf:2b:4b:
14:7f:13:4c:5a:d7:c4:67:44:72:fc:2d:16:9f:1f:
e4:60:f5:36:92:bc:f6:c3:6a:1f:f5:be:15:2c:a9:
fa:26:52:5e:47:fd:67:c9:71:3d:52:7f:59:f9:7a:
cf:58:ad:b6:ad:21:89:98:03:56:37:cf:96:63:4a:
6b:11:8c:44:8c:11:49:44:e9:de:09:6a:ec:15:a0:
4d:36:96:14:3f:f6:b2:a5:50:13:43:53:8c:e7:d3:
b9:40:8f:9b:2a:0d:85:c3:b2:bd:e0:f7:a9:b1:4e:
c8:fc:f7:b4:96:d5:7c:fa:ff:70:57:7e:32:b1:6a:
77:5e:8f:6b:c6:c6:51:5c:8a:81:15:54:3a:59:73:
80:f5:bc:4c:3f:f8:93:b0:3a:7e:82:96:2d:06:71:
6a:ec:cb:49:8e:fd:5e:06:e5:f4:dc:5c:c3:a7:c6:
b0:35:2e:94:9e:bf:5c:d8:c4:4c:b4:e7:b6:29:5f:
ff:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:63:E8:B5:B7:65:17:73:5B:AB:6C:A1:18:7D:C7:19:BA:74:66:BF
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/dmPotbdlF3Nbq2yhGH3HGbp0Zr8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.79.128.0/17
Signature Algorithm: sha256WithRSAEncryption
2b:24:cd:7c:2d:60:0a:ed:fe:e1:0d:4d:4f:57:c8:92:b6:5e:
d1:d7:52:bf:14:71:24:56:34:aa:8f:8a:1d:25:62:4e:f4:49:
82:82:29:0f:fc:db:40:1d:73:0b:85:bc:52:61:34:74:b8:f2:
44:62:99:0c:6b:e3:25:68:42:a3:38:f0:d3:c2:0e:77:22:1b:
f5:56:fb:cb:45:1e:0e:0e:81:6a:51:f8:c2:4b:57:72:71:12:
9e:9e:51:5b:91:9d:e5:22:f8:40:d2:82:0e:ab:8b:b3:c0:cb:
6d:3c:48:a3:04:14:55:f3:b9:ca:14:2b:f5:06:09:d8:71:d4:
e3:f7:da:a1:9d:db:a1:d9:e1:7d:c8:3a:0b:62:9c:4d:98:7a:
99:9c:09:12:a5:51:f6:a7:cd:41:76:70:51:46:c9:5d:16:99:
17:60:b4:8c:b2:0b:3a:ce:92:58:7e:b8:b6:65:7c:26:d6:35:
9f:01:fb:02:e6:5c:9b:4d:ca:43:65:bc:5d:f0:51:d3:d7:3f:
44:52:dd:68:b4:b4:c9:5e:e9:59:7f:c8:ee:0b:50:f8:f7:d1:
c1:59:58:4f:5f:f9:74:5c:ad:1f:d3:9f:a4:c4:1f:3c:17:33:
d7:4e:6b:ec:bf:e7:03:43:ee:e2:52:e3:c4:bc:9e:5c:42:67:
e8:82:2b:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:55 2023 by rpki-client on console-fra.rpki-client.org