Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/oA_oc6M9dYaCKczsUdeuYrHq3co.roa
File: oA_oc6M9dYaCKczsUdeuYrHq3co.roa (raw, json)
Hash identifier: Gb41UEm9dQoKE2C0lXWoQ3weGvr/CKq8wQ21UfPgaXE=
Subject key identifier: A0:0F:E8:73:A3:3D:75:86:82:29:CC:EC:51:D7:AE:62:B1:EA:DD:CA
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 10D6
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/oA_oc6M9dYaCKczsUdeuYrHq3co.roa
Signing time: Tue 16 May 2023 08:36:43 +0000
ROA not before: Tue 16 May 2023 08:36:43 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 202.178.128.0/17 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4310 (0x10d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:43 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A00FE873A33D75868229CCEC51D7AE62B1EADDCA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:c2:b5:1c:db:3d:bb:fa:7d:94:42:b8:d4:5d:
b6:c3:c4:b1:80:7c:d3:8b:1d:e2:6a:a2:bc:54:31:
fa:6a:f7:dd:2b:a2:84:89:f4:df:48:bb:6c:e5:ab:
af:4f:a5:b9:5f:d7:bb:27:6b:42:ac:95:3d:a1:81:
40:03:fc:42:47:dc:4c:a3:1a:8f:72:3b:2b:50:91:
a1:ec:75:b2:21:4b:1d:cb:45:5b:bd:5e:e3:6d:8d:
84:38:39:4e:0c:21:08:f2:5e:03:16:89:47:95:2f:
b0:f2:60:29:3e:64:9d:df:92:a9:b4:bb:52:db:20:
0c:e6:56:6f:11:e8:b0:fd:10:27:42:aa:8f:8b:34:
43:33:57:23:0d:85:df:77:67:65:a9:d2:9d:02:32:
e4:42:50:e0:70:82:6a:8b:09:74:b3:96:2d:ad:05:
5b:44:10:de:30:68:6d:04:98:c8:c4:87:df:f4:81:
d8:68:46:d9:c1:f7:da:26:5c:1e:58:b0:2d:5c:b5:
61:a6:09:e2:37:3f:26:5b:2d:ed:4d:52:a7:09:a0:
b4:2c:b5:af:95:9e:a1:cc:a6:45:1c:e8:3e:97:03:
d5:3c:a9:d0:6a:c6:c9:00:be:87:4b:39:51:58:cf:
d0:cc:60:b0:82:e6:40:59:71:1c:d2:69:be:b7:c3:
3c:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:0F:E8:73:A3:3D:75:86:82:29:CC:EC:51:D7:AE:62:B1:EA:DD:CA
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/oA_oc6M9dYaCKczsUdeuYrHq3co.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.178.128.0/17
Signature Algorithm: sha256WithRSAEncryption
9b:74:8f:6b:a5:04:85:de:06:c9:8e:7c:23:de:f3:c8:ab:92:
c6:d5:38:f0:df:3f:69:d8:59:59:bd:44:ae:ee:bf:f9:8f:b6:
35:06:c0:9e:9c:da:e0:b3:e6:f0:07:86:da:80:d6:5b:ea:3a:
be:58:b8:78:ed:06:2b:54:51:0b:94:c5:f0:74:fd:fb:3b:ae:
2a:71:25:29:cf:cb:40:8a:b8:7d:b2:7a:6e:93:ee:f9:94:f4:
df:e9:d3:28:4c:5c:bb:04:54:73:e3:32:10:3f:b7:ad:86:ce:
3c:7c:23:d4:14:1e:0f:ce:95:f2:f8:96:72:69:ad:43:a5:c8:
40:50:36:66:28:62:16:b4:a2:1f:ca:e7:18:4a:0a:e5:a9:7b:
7b:46:fd:52:98:e9:2c:74:9b:6c:c8:a1:cc:b3:9c:fd:1e:5b:
f1:41:52:88:f8:59:94:ad:36:8a:8b:45:63:ee:b8:a7:33:3f:
c8:df:61:1e:52:86:cb:e0:4c:b3:b7:28:07:ef:18:5e:17:e0:
c1:38:48:d5:8d:dd:42:c8:1e:d2:c8:90:db:3b:d1:7d:8b:49:
80:72:87:2c:3b:e8:b1:61:af:23:b7:97:c2:ed:1a:ee:b9:f1:
9c:72:93:50:d6:45:93:7e:9a:29:1e:1b:d5:f3:67:36:16:e1:
fa:a5:f2:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 08:37:45 2023 by rpki-client on console-fra.rpki-client.org