Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/glU4FaznlaftxwWlUuEfEHb1zsU.roa
File: glU4FaznlaftxwWlUuEfEHb1zsU.roa (raw, json)
Hash identifier: Tj8CEVJhXueeme+qK4jYDNg7s4QexmQo9MJgTlLvw8k=
Subject key identifier: 82:55:38:15:AC:E7:95:A7:ED:C7:05:A5:52:E1:1F:10:76:F5:CE:C5
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1043
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/glU4FaznlaftxwWlUuEfEHb1zsU.roa
Signing time: Tue 16 May 2023 08:35:58 +0000
ROA not before: Tue 16 May 2023 08:35:58 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 7539
IP address blocks: 210.200.32.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4163 (0x1043)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:35:58 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=82553815ACE795A7EDC705A552E11F1076F5CEC5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:ca:4f:5f:8f:84:4d:a1:3c:7f:dd:b8:0f:d9:
bd:2e:5d:8a:66:2e:10:29:2a:77:8c:73:5a:7d:01:
cf:81:37:e0:84:77:68:62:46:f7:ba:29:37:ba:d8:
02:50:23:6f:aa:15:a6:fe:20:0c:59:db:00:bb:f0:
d4:98:67:c6:08:6c:da:02:9e:33:8b:9b:fa:5e:96:
87:a8:cf:0f:c4:05:7c:f3:9b:92:49:74:0c:d3:03:
3d:77:de:d7:16:6e:13:e6:22:8f:65:9d:df:11:28:
cc:1b:78:5c:df:f5:97:9a:71:4e:56:fd:d9:80:44:
82:b8:35:5b:d8:52:db:e6:af:0c:8e:dc:a0:31:26:
53:ae:94:09:76:bf:9b:37:c9:f4:59:40:5d:ee:04:
de:78:56:71:43:3f:5a:6d:1d:6f:7f:f2:0f:a5:98:
f5:9c:44:5c:4b:e1:c2:25:76:04:48:8d:c6:53:77:
76:c8:9c:40:f0:dd:23:43:df:62:da:a8:98:af:a8:
a5:94:b1:cc:67:ce:b4:2a:8d:a1:7f:70:6b:a4:cd:
94:3d:b5:34:8d:f4:db:9d:de:80:3b:ea:bc:df:1c:
e1:b0:de:b8:0a:0d:19:e1:64:af:27:4e:36:73:94:
4f:6a:f3:35:a7:e2:00:81:ab:f6:7d:2c:7c:bb:e1:
4f:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:55:38:15:AC:E7:95:A7:ED:C7:05:A5:52:E1:1F:10:76:F5:CE:C5
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/glU4FaznlaftxwWlUuEfEHb1zsU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.32.0/20
Signature Algorithm: sha256WithRSAEncryption
55:4e:60:17:4b:c9:71:04:4f:1f:ba:86:5d:cc:44:d0:aa:1e:
cb:95:66:d8:b6:ee:82:37:dc:9b:e2:8a:a5:78:d4:17:5d:a4:
13:72:ef:04:b4:f8:da:c5:31:bf:d5:c7:a8:d9:b1:c4:2c:e6:
6e:f8:fb:40:8a:c9:ce:95:4b:70:d5:ad:b1:2b:b5:c5:07:08:
22:07:0e:de:68:ff:a2:28:ee:2d:52:33:c5:91:42:8b:bc:78:
cf:ad:6d:c1:77:01:41:f2:d6:3e:29:21:62:cc:00:1b:f7:d7:
ad:bb:9c:f2:3d:00:1e:1b:4f:42:dd:e3:de:14:ba:98:7b:64:
b0:3c:b8:2c:ef:82:3e:0d:af:10:b7:fe:1e:e5:c3:3c:79:ae:
70:32:16:1d:6e:c3:73:d5:c0:c3:cf:c7:ce:4b:65:6d:fd:8a:
77:b6:f7:d8:1b:ca:f0:66:21:e2:6b:38:0c:e8:dd:89:c9:60:
5e:e6:db:15:11:4b:e6:e7:4f:bb:de:ba:77:05:b0:ec:4a:e8:
3e:63:73:a8:a3:1b:be:bd:80:dc:74:21:33:07:5c:f6:60:7a:
38:82:99:21:3c:68:cb:1e:b8:06:df:50:d5:cf:6f:76:c0:40:
f8:db:3e:21:c5:30:6e:76:52:eb:5e:04:15:99:ba:49:b9:ec:
73:04:b8:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 08:25:18 2023 by rpki-client on console-ams.rpki-client.org