Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/ltnhtQDnXZv3q564Uv-c4Z4BvPM.roa
File: ltnhtQDnXZv3q564Uv-c4Z4BvPM.roa (raw, json)
Hash identifier: Tmyi6xgfu6KI+pg1N8LEgu3ZPLYw/PDFMWiqNFYl2PM=
Subject key identifier: 96:D9:E1:B5:00:E7:5D:9B:F7:AB:9E:B8:52:FF:9C:E1:9E:01:BC:F3
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 10BB
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/ltnhtQDnXZv3q564Uv-c4Z4BvPM.roa
Signing time: Tue 16 May 2023 08:36:33 +0000
ROA not before: Tue 16 May 2023 08:36:33 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9311
IP address blocks: 210.200.106.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4283 (0x10bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:33 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=96D9E1B500E75D9BF7AB9EB852FF9CE19E01BCF3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:3a:f4:03:16:30:4d:1a:03:4f:7e:74:dc:16:
ba:a0:e8:2c:c3:d7:19:6c:e4:6d:80:e9:60:59:fa:
79:76:62:02:7b:b0:1f:d0:5f:af:ba:b6:1c:57:b4:
87:2b:b6:92:8c:c8:17:9c:28:a6:99:3e:88:bd:f4:
2b:1f:34:8e:d1:d2:ec:4a:6a:9b:c1:7e:56:36:8b:
71:ef:55:a9:28:ae:09:5b:7a:25:e7:1e:0b:7d:18:
70:61:11:21:9b:f0:95:46:c1:bd:a5:8d:d5:fe:9b:
c7:30:0a:a2:f6:62:6c:6c:40:19:56:fb:d2:71:7d:
39:3c:41:31:e4:1b:f9:79:10:9e:24:c7:48:cb:98:
b8:88:bd:9d:44:86:d6:83:e7:b4:d0:82:0f:06:a2:
71:72:c1:b9:af:1f:40:6d:46:6d:eb:20:19:cd:70:
20:2d:da:53:0e:13:b9:f3:cd:24:12:74:58:de:c1:
db:69:b9:3c:7b:bf:e2:8e:ce:8e:31:b5:d8:d4:fb:
0d:80:51:11:bd:73:02:bc:5e:b2:7f:da:d5:a3:15:
f9:d7:b1:bb:97:6d:0b:5a:cc:66:d0:a6:c9:73:ba:
84:79:e8:f6:f6:09:14:01:a7:5a:b5:26:63:07:04:
82:ba:7c:7f:c3:31:5f:1f:ad:29:c4:05:41:26:2e:
8b:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:D9:E1:B5:00:E7:5D:9B:F7:AB:9E:B8:52:FF:9C:E1:9E:01:BC:F3
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/ltnhtQDnXZv3q564Uv-c4Z4BvPM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.106.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:09:75:33:d6:52:53:77:6e:bd:09:95:78:12:aa:df:6a:84:
1c:7f:d7:7f:7a:e3:85:b7:76:ad:fa:2b:68:d5:57:de:dd:4f:
d3:10:eb:03:96:9d:c9:80:cd:0d:07:70:ca:36:69:b0:37:b1:
84:29:a8:52:61:a9:10:0b:b2:fc:ba:4b:6f:65:a8:d9:68:3d:
b3:51:01:65:73:de:88:ef:e0:65:e3:f1:89:aa:60:c1:d8:22:
46:91:8e:2a:da:e9:52:5e:b6:69:8a:9e:6c:75:cc:0a:22:4f:
49:b3:b7:9d:fd:8e:35:f7:4d:cd:d1:1d:c3:5f:bf:c5:bf:ca:
ff:af:be:c7:61:45:34:f3:be:de:7c:f7:0d:47:e3:8b:1b:7c:
16:ae:5a:76:6a:0e:1e:36:e1:0a:93:d4:1b:0b:a3:29:a5:1a:
f4:99:13:bd:b8:0b:af:27:cd:11:ba:ca:68:64:d2:e2:f9:fb:
f9:93:cd:13:a5:45:d4:0f:41:e8:b8:85:53:c9:a5:f5:3c:0f:
b9:42:42:44:42:a7:65:75:e8:4f:5d:d2:5a:ce:b3:9d:7d:32:
f3:2b:45:6e:d3:5f:36:f2:c8:43:43:b1:5b:eb:ef:a5:58:18:
81:c1:de:f0:1f:11:25:e3:a6:3e:8b:42:16:9f:42:14:46:ce:
4e:d1:3f:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 08:25:18 2023 by rpki-client on console-ams.rpki-client.org