Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/lW2jLwK1tlL5-FnQ6t2jA5mOl_k.roa
File: lW2jLwK1tlL5-FnQ6t2jA5mOl_k.roa (raw, json)
Hash identifier: UNVH6U2/k1TG9dFOX4I8c278v7KdM1041krXyB7BrsM=
Subject key identifier: 95:6D:A3:2F:02:B5:B6:52:F9:F8:59:D0:EA:DD:A3:03:99:8E:97:F9
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1052
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/lW2jLwK1tlL5-FnQ6t2jA5mOl_k.roa
Signing time: Tue 16 May 2023 08:36:03 +0000
ROA not before: Tue 16 May 2023 08:36:03 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 7482
IP address blocks: 223.22.0.0/18 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4178 (0x1052)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:03 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=956DA32F02B5B652F9F859D0EADDA303998E97F9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:d1:93:5e:ea:65:35:d7:b3:b8:b8:b6:26:2e:
a9:a4:f7:57:a3:75:3f:ca:20:85:c3:be:b7:9c:f3:
86:2f:9d:d9:54:ad:67:09:25:69:71:84:c3:96:28:
71:12:c6:a4:c2:58:9b:81:66:80:b9:27:7f:0a:4c:
ec:d3:c5:51:50:2c:aa:81:cb:23:93:34:5d:05:18:
3b:14:27:4c:63:c3:31:dd:02:32:0b:5f:41:71:70:
31:af:7e:e0:e7:4e:c6:8f:22:09:ae:32:92:ba:91:
10:b4:bc:bb:13:24:7e:ff:db:53:a5:30:53:36:f2:
7b:dc:54:b9:d9:cd:87:d2:d7:e1:4f:77:df:eb:96:
1b:04:56:bc:09:8a:58:c2:6e:8c:a6:ca:94:29:31:
32:e7:b8:00:a6:47:07:02:4f:2b:e2:87:48:6f:90:
b8:ec:6f:78:ae:8a:86:4e:03:72:9d:4c:12:e0:e6:
d1:96:72:a1:d8:3f:ee:5f:1a:b5:1d:39:31:fa:66:
de:ad:df:10:1a:11:57:5a:21:a6:62:c9:de:bc:36:
da:d9:ee:6c:f8:32:92:1f:4c:bd:d3:cf:be:73:cd:
a2:d9:d4:5d:c7:3c:95:44:24:9d:a7:8b:70:e5:c7:
a7:55:97:db:af:59:7e:75:f2:a0:f9:21:d8:76:a1:
bc:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:6D:A3:2F:02:B5:B6:52:F9:F8:59:D0:EA:DD:A3:03:99:8E:97:F9
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/lW2jLwK1tlL5-FnQ6t2jA5mOl_k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.22.0.0/18
Signature Algorithm: sha256WithRSAEncryption
56:f9:19:8e:b5:94:88:52:f0:b5:0b:24:23:cd:29:ae:51:54:
f7:4e:20:03:42:5d:ae:7a:c5:55:74:87:d7:2d:81:04:41:7e:
69:15:4e:60:dc:92:b1:b7:9d:de:60:f5:d3:68:72:4f:c9:05:
1f:cc:44:78:68:84:c9:b9:c7:26:0c:c3:35:e4:8a:ef:b9:47:
e9:7b:2f:ed:37:a5:7f:7f:8c:dc:59:10:7f:67:0b:5b:b7:3f:
94:c9:6a:dd:7f:51:67:f4:04:f8:ee:dc:57:8a:0f:20:ba:8f:
e4:c1:ca:0d:dc:21:53:13:41:ae:84:da:d4:de:f9:cc:c4:96:
41:68:5b:76:b6:16:ef:38:cc:d6:3f:d4:33:29:d2:41:9b:d5:
c9:5b:cb:fe:a1:90:f4:2e:b3:d4:3e:9a:c3:35:dd:2b:d1:5b:
aa:e8:58:22:0d:03:c4:a2:a1:bd:8e:63:1b:b9:58:7c:85:2c:
b8:cb:6d:e7:da:4f:2e:f7:54:bc:2e:e4:e4:02:16:ed:4a:f5:
71:83:19:6f:01:88:fa:0e:7a:ae:91:66:14:cf:6a:89:9b:d4:
58:5f:95:27:44:79:28:6d:2a:90:78:9c:f5:0f:94:70:73:98:
06:b9:92:68:ef:f5:3d:73:ad:f6:e4:24:0f:41:8d:1e:9c:3d:
b3:4f:90:bc
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICEFIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NjQyMzBGM0UzOUJFRkJCNzNBN0Q0RERCMjZGRTJENDQ2RUUyNTAeFw0yMzA1MTYw
ODM2MDNaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDk1NkRBMzJGMDJCNUI2
NTJGOUY4NTlEMEVBRERBMzAzOTk4RTk3RjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDm0ZNe6mU117O4uLYmLqmk91ejdT/KIIXDvrec84YvndlUrWcJ
JWlxhMOWKHESxqTCWJuBZoC5J38KTOzTxVFQLKqByyOTNF0FGDsUJ0xjwzHdAjIL
X0FxcDGvfuDnTsaPIgmuMpK6kRC0vLsTJH7/21OlMFM28nvcVLnZzYfS1+FPd9/r
lhsEVrwJiljCboymypQpMTLnuACmRwcCTyvih0hvkLjsb3iuioZOA3KdTBLg5tGW
cqHYP+5fGrUdOTH6Zt6t3xAaEVdaIaZiyd68NtrZ7mz4MpIfTL3Tz75zzaLZ1F3H
PJVEJJ2ni3Dlx6dVl9uvWX518qD5Idh2obyNAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUlW2jLwK1tlL5+FnQ6t2jA5mOl/kwHwYDVR0jBBgwFoAU+wZCMPPjm++7c6fU
3bJv4tRG7iUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBPTC8t
d1pDTVBQam0tLTdjNmZVM2JKdjR0Ukc3aVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Ly13WkNNUFBqbS0tN2M2ZlUzYkp2NHRSRzdpVS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0FQT0wvbFcyakx3SzF0bEw1LUZuUTZ0MmpB
NW1PbF9rLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBt8WADAN
BgkqhkiG9w0BAQsFAAOCAQEAVvkZjrWUiFLwtQskI80prlFU904gA0JdrnrFVXSH
1y2BBEF+aRVOYNySsbed3mD102hyT8kFH8xEeGiEybnHJgzDNeSK77lH6Xsv7Tel
f3+M3FkQf2cLW7c/lMlq3X9RZ/QE+O7cV4oPILqP5MHKDdwhUxNBroTa1N75zMSW
QWhbdrYW7zjM1j/UMynSQZvVyVvL/qGQ9C6z1D6awzXdK9FbquhYIg0DxKKhvY5j
G7lYfIUsuMtt59pPLvdUvC7k5AIW7Ur1cYMZbwGI+g56rpFmFM9qiZvUWF+VJ0R5
KG0qkHic9Q+UcHOYBrmSaO/1PXOt9uQkD0GNHpw9s0+QvA==
-----END CERTIFICATE-----
Generated at Fri Sep 1 08:37:45 2023 by rpki-client on console-fra.rpki-client.org