Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/p0P-rvr3T4zc-T4Z6m5JZzOmXqE.roa
File: p0P-rvr3T4zc-T4Z6m5JZzOmXqE.roa (raw, json)
Hash identifier: D1tj3Batcpg5cniCwh3pFDOZnc4BZA481a2rX5eluB0=
Subject key identifier: A7:43:FE:AE:FA:F7:4F:8C:DC:F9:3E:19:EA:6E:49:67:33:A6:5E:A1
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/p0P-rvr3T4zc-T4Z6m5JZzOmXqE.roa
Signing time: Thu 15 Sep 2022 02:39:48 +0000
ROA not before: Thu 15 Sep 2022 02:39:48 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 7482
IP address blocks: 222.156.0.0/16 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:39:48 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A743FEAEFAF74F8CDCF93E19EA6E496733A65EA1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:92:a4:0e:df:c4:8c:46:ec:0e:11:47:2f:3b:
8d:10:8b:6c:c0:cb:38:83:3d:60:79:97:3d:86:14:
6a:4b:f9:6e:f8:c0:11:c8:86:dd:73:03:f3:cb:38:
10:c6:db:75:94:f0:b0:10:41:62:01:b4:26:07:cd:
67:47:58:d7:0b:cc:26:3f:1c:70:2a:a3:a2:b3:e3:
91:a1:7b:68:b3:24:6e:24:b3:7d:7c:41:bb:aa:2a:
c7:93:3e:71:36:38:c7:75:f8:ce:c4:86:14:4a:47:
46:1b:8b:3d:45:9e:00:b1:c7:38:ed:44:5b:60:fc:
d1:f9:07:8f:6d:45:0a:9d:72:fc:d1:d2:71:df:f6:
39:b7:52:3a:8f:52:3a:22:18:60:a1:6e:fc:44:2d:
84:c5:35:92:29:d9:cc:2e:8f:89:20:45:6b:bf:6e:
13:06:2e:c5:bc:5b:fa:67:25:ba:a3:3d:6a:74:d3:
f8:1f:b3:a9:c0:ba:1f:8a:41:07:e5:39:52:09:74:
f7:5d:56:1c:4a:8d:dd:ae:76:ee:51:ef:1c:42:00:
13:1a:f0:f9:a1:8a:9d:9f:52:bf:75:95:ad:55:fb:
84:a8:a1:bd:58:d3:05:7d:11:bf:d0:c9:96:5e:de:
b7:d7:ce:e0:55:d4:1a:fa:ca:cd:91:91:2c:f3:57:
af:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:43:FE:AE:FA:F7:4F:8C:DC:F9:3E:19:EA:6E:49:67:33:A6:5E:A1
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/p0P-rvr3T4zc-T4Z6m5JZzOmXqE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
222.156.0.0/16
Signature Algorithm: sha256WithRSAEncryption
48:d2:4e:fb:95:42:d4:5b:f8:8b:97:b1:8e:79:11:15:25:77:
cf:cf:7e:81:15:65:f6:0b:ff:0f:40:27:74:63:6c:d5:ed:d5:
ac:05:f0:3b:35:ca:c7:21:af:fd:12:13:a8:2d:91:f3:84:89:
42:a4:df:f0:40:68:14:57:c3:0f:0d:79:60:fb:da:6d:ba:90:
84:93:63:1f:9e:9e:5c:68:37:b5:e1:d8:70:48:b9:f8:60:fc:
76:8d:59:db:c3:82:ef:fa:e7:b3:b9:86:5b:c2:ac:60:be:45:
d2:48:42:4c:4e:75:11:4e:5a:a4:f2:2f:77:84:e5:1a:d1:87:
2d:69:03:e6:66:33:a9:46:a0:22:2f:fd:64:dd:4a:6f:a9:ed:
45:22:97:51:36:b2:78:44:a1:7c:cb:4a:54:89:22:85:75:4e:
6e:e2:d0:3f:b8:0c:64:36:c0:1a:f5:18:b3:e5:12:92:4b:a7:
93:83:fc:48:62:c0:29:26:4d:c1:06:eb:d2:99:bb:83:1f:a0:
64:82:b2:5f:b9:45:a4:61:0b:7d:49:63:1e:3f:fb:1d:70:38:
fc:48:ea:72:67:f7:18:53:f0:2b:7e:f0:1a:cf:7e:7e:34:bd:
6b:45:5a:e4:3a:76:ad:db:6f:22:52:49:7e:78:0b:2d:38:f7:
e5:58:97:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:46 2023 by rpki-client on console-ams.rpki-client.org