Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/gPSDLul_0JZOzyqACNaa5MIGrE0.roa
File: gPSDLul_0JZOzyqACNaa5MIGrE0.roa (raw, json)
Hash identifier: 0x/JP6zmnXUABI0eiRCeXPUa2+gVTxCqmFas38EVI7M=
Subject key identifier: 80:F4:83:2E:E9:7F:D0:96:4E:CF:2A:80:08:D6:9A:E4:C2:06:AC:4D
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 105D
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/gPSDLul_0JZOzyqACNaa5MIGrE0.roa
Signing time: Tue 16 May 2023 08:36:06 +0000
ROA not before: Tue 16 May 2023 08:36:06 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 7482
IP address blocks: 210.202.128.0/18 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4189 (0x105d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:06 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=80F4832EE97FD0964ECF2A8008D69AE4C206AC4D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:65:4f:88:af:94:ab:4b:68:f7:a2:ef:bd:9d:
91:11:bb:16:5d:0e:33:2d:cc:f0:f3:75:3f:0f:53:
fd:3b:c1:03:8e:c9:65:35:1a:c0:9d:da:33:15:49:
62:3f:1a:50:87:3c:7a:7f:01:b9:04:9d:4c:d1:f0:
84:36:df:13:a1:fa:64:33:ff:0c:bd:d4:b9:f5:9f:
9c:4a:c1:78:89:1f:e5:cb:ae:ae:29:9b:57:62:7c:
04:13:69:a3:01:dd:b9:25:62:fe:b6:f6:af:8e:7e:
63:8d:a9:8e:2d:6d:a6:9c:41:f8:db:63:5c:f6:c7:
e1:b1:ff:ca:9f:ee:92:6c:f8:d2:5c:0f:74:1e:2d:
60:93:af:7e:58:dc:a1:a4:bc:49:65:24:07:0a:ce:
78:a6:32:b2:4c:cb:20:15:d6:ae:ec:ab:b4:de:84:
12:e5:43:ea:24:16:3c:44:3f:cf:45:36:d9:57:ba:
e2:e2:7f:b2:a5:63:82:65:52:65:90:da:13:8f:c4:
07:a3:f7:44:bc:19:a0:d8:bc:7d:e9:ab:a4:11:c9:
1c:c8:5e:35:cf:ee:88:7a:76:8a:cd:8e:0a:44:d0:
fa:f2:c0:09:05:9c:7b:4a:72:ac:2e:62:17:05:26:
76:80:6d:b3:d6:19:ce:2b:82:47:c4:9e:c2:f0:cf:
3a:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:F4:83:2E:E9:7F:D0:96:4E:CF:2A:80:08:D6:9A:E4:C2:06:AC:4D
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/gPSDLul_0JZOzyqACNaa5MIGrE0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.202.128.0/18
Signature Algorithm: sha256WithRSAEncryption
2a:e1:fe:1e:7c:c6:99:af:e7:6a:40:59:24:5f:29:fa:24:41:
5e:87:aa:32:6e:b9:b7:13:b1:c2:af:06:4d:96:5f:bb:70:12:
f5:00:44:1e:a7:9a:be:8c:9e:8a:74:c8:d5:ee:3a:db:4a:66:
c7:67:9b:0c:ea:cf:db:d3:8b:cb:e9:c3:c8:13:a1:3a:19:52:
2e:9e:9a:66:0b:37:2a:77:f1:32:cf:97:cd:b4:3c:28:5f:f6:
83:da:f7:28:49:76:84:3c:28:98:ae:14:ab:ce:3b:74:91:8f:
5a:26:37:fc:a3:a8:37:e4:3d:fb:32:ce:8c:bb:42:61:e3:bc:
9f:a9:05:75:1e:8c:7e:d2:a9:f4:ed:71:f7:38:b0:0f:ca:ed:
04:ff:4d:80:3b:e5:eb:5c:26:2e:13:cf:d1:93:69:d5:a1:36:
dc:26:23:77:1d:3a:38:0d:26:f9:8b:3a:77:1a:8a:4f:ce:4a:
37:db:89:db:3b:43:60:44:92:e9:1e:06:e2:f6:8d:90:fe:d9:
15:bb:51:b5:62:40:5f:e6:09:81:10:b5:a3:07:ab:44:f8:9b:
dd:0a:cc:d8:d3:0b:a4:df:14:7b:9b:bc:10:cc:e0:9a:6b:15:
7d:0e:84:e9:7a:4e:f7:d8:68:39:01:5f:98:b0:8a:86:e7:29:
84:fb:05:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 08:25:18 2023 by rpki-client on console-ams.rpki-client.org