Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/mnCdQPhe7CMLrZNIFkEVqxF1W-4.roa
File: mnCdQPhe7CMLrZNIFkEVqxF1W-4.roa (raw, json)
Hash identifier: gQ5erx5zkNT4wwYWQHuRi3coXGDVq5dfkbiZ7a0ZVws=
Subject key identifier: 9A:70:9D:40:F8:5E:EC:23:0B:AD:93:48:16:41:15:AB:11:75:5B:EE
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/mnCdQPhe7CMLrZNIFkEVqxF1W-4.roa
Signing time: Thu 15 Sep 2022 02:39:53 +0000
ROA not before: Thu 15 Sep 2022 02:39:53 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24154
IP address blocks: 210.200.85.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:39:53 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=9A709D40F85EEC230BAD9348164115AB11755BEE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:08:01:93:4e:44:34:4d:eb:f8:0d:ae:29:8f:
1f:5b:74:21:c3:d0:2b:11:c1:f4:ee:bc:ce:15:4a:
34:82:8b:ad:45:e5:43:1e:6b:0a:11:61:16:c8:6b:
90:74:bf:e5:e3:f5:ca:46:3e:16:49:3f:36:52:be:
c3:bd:87:65:fb:2a:0b:5c:d0:f4:ea:24:2c:56:d5:
4d:2d:2e:55:74:3d:5c:31:c6:84:38:cd:04:b1:66:
85:13:44:23:c2:2b:af:3f:f5:20:f1:d1:34:44:ea:
18:e2:dc:2f:c1:7d:10:f5:b9:b1:9c:b1:1b:83:00:
3a:5c:87:26:01:ad:f6:a1:2f:1e:32:44:2a:e6:f4:
1e:0a:cf:10:df:d3:dd:42:c0:b5:60:be:8a:f8:c4:
8a:4d:c5:59:e3:a4:9c:ee:f0:64:78:b4:85:1d:e2:
81:a6:e6:1b:19:0c:6b:36:84:17:74:3e:a2:8f:97:
30:aa:97:83:9d:81:d5:b5:73:54:63:3a:ee:83:2a:
fc:ea:43:02:db:48:02:56:45:f1:22:0f:41:1c:ab:
c5:47:b2:8a:4f:96:13:8d:29:df:af:d8:93:10:0d:
b5:a2:0c:6f:73:38:00:0f:31:0b:77:d5:1a:bb:02:
4f:4a:90:1d:f1:a0:53:2c:52:cc:85:c6:64:fc:f9:
dd:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:70:9D:40:F8:5E:EC:23:0B:AD:93:48:16:41:15:AB:11:75:5B:EE
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/mnCdQPhe7CMLrZNIFkEVqxF1W-4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.85.0/24
Signature Algorithm: sha256WithRSAEncryption
11:30:89:c6:31:2c:47:4c:5e:e9:5e:00:3f:11:9f:56:a4:36:
d1:8b:6b:77:f3:a4:17:cc:65:89:d3:0a:2c:0d:2a:43:b2:9a:
ba:6b:b7:1f:47:dd:01:0c:80:10:3c:95:7f:e9:32:3d:c1:15:
77:17:c8:a1:64:66:de:d0:dc:d0:d4:4c:99:50:68:63:63:6a:
18:95:7a:a2:c0:5e:46:7f:36:5b:ac:7e:8e:c7:df:44:78:96:
dd:ab:2e:be:27:72:4a:f9:b5:d0:9b:34:0e:bb:59:e3:0f:cf:
20:fc:ba:04:bb:0e:4f:5d:bb:4f:53:66:6a:b4:7b:a1:01:dd:
fd:f2:83:a6:8e:65:03:ef:85:35:37:29:77:a6:7f:5d:d1:7b:
00:96:2a:66:4d:dd:56:b2:7c:5c:ad:73:68:29:52:bb:91:ef:
ae:b4:e6:d3:01:34:ee:aa:72:d6:b5:13:e9:31:ba:08:bd:1d:
ea:38:c9:76:fa:92:80:1e:16:af:d3:a2:a9:76:1e:47:1f:a8:
a8:87:87:5b:c7:d1:e0:83:9d:48:f0:ac:01:1d:ac:da:bc:fd:
b4:13:f6:f6:66:b2:cb:14:92:0c:b3:c2:ba:e3:39:a4:a7:ae:
b3:5f:3a:dd:86:cc:27:fa:20:3d:b5:ee:fe:3e:71:c2:10:3a:
2a:5b:c2:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:56 2023 by rpki-client on console-fra.rpki-client.org