Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/p541TNt6lOF0ZBoq0EYodP1rdNw.roa
File: p541TNt6lOF0ZBoq0EYodP1rdNw.roa (raw, json)
Hash identifier: JcUG1SZCzpuSn8ONFf4vPiNhFQRNMOtRyPGFuGMalxQ=
Subject key identifier: A7:9E:35:4C:DB:7A:94:E1:74:64:1A:2A:D0:46:28:74:FD:6B:74:DC
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/p541TNt6lOF0ZBoq0EYodP1rdNw.roa
Signing time: Thu 15 Sep 2022 02:40:33 +0000
ROA not before: Thu 15 Sep 2022 02:40:33 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 2404:0:1000::/40 maxlen: 56
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:40:33 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A79E354CDB7A94E174641A2AD0462874FD6B74DC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:db:fb:ea:9d:a9:b0:91:92:d1:9b:83:1a:26:
4b:92:0a:a7:0d:88:37:ac:bd:5f:94:e2:45:71:d7:
56:ed:42:79:e5:19:63:ff:d3:5e:52:fd:65:ea:ef:
c5:d1:97:d3:b7:f7:5d:a0:eb:2a:b0:9f:5f:d6:61:
c1:a4:59:d0:c4:0c:6f:3d:05:80:08:3b:a7:0f:8b:
7f:d5:20:c6:e3:54:2e:d2:cc:a9:bf:db:a1:3c:e2:
15:95:12:e5:c1:a9:02:90:ef:6a:fe:11:e5:6b:7a:
fa:3b:6f:a8:eb:02:14:eb:53:0f:72:4d:11:bf:28:
29:24:bf:d6:8b:5a:f9:97:84:78:07:39:85:a6:79:
de:30:09:17:cf:41:9d:87:73:5a:66:f2:1f:b4:ee:
d8:91:fa:39:5b:35:8d:78:c8:2a:0f:ef:f3:21:d4:
da:8c:44:14:6b:b9:30:77:45:07:1e:0a:b3:79:5e:
a8:21:8a:b9:d5:83:7b:c6:04:04:b2:e2:be:52:32:
c9:fa:d8:a8:30:c6:cf:48:88:75:54:22:cb:3c:f3:
7a:2b:0e:b4:ba:01:a8:f4:50:8d:0f:d1:0c:7b:b8:
a4:ce:28:c8:39:3c:d1:4d:21:05:02:b7:7f:93:bb:
f4:7d:40:13:ed:df:b2:f0:60:93:87:da:7f:d0:f5:
bc:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:9E:35:4C:DB:7A:94:E1:74:64:1A:2A:D0:46:28:74:FD:6B:74:DC
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/p541TNt6lOF0ZBoq0EYodP1rdNw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:0:1000::/40
Signature Algorithm: sha256WithRSAEncryption
2a:47:62:a9:fd:f8:c8:94:68:4a:44:99:ec:26:b7:58:e5:01:
3a:b9:d6:ac:74:a9:f6:b2:68:96:81:2f:79:27:ea:ff:e8:ca:
53:9f:65:67:7a:0f:b3:94:c3:06:04:46:8a:16:23:d2:3f:f1:
fe:33:bb:7e:87:2f:7f:4d:5c:5c:d3:38:1e:33:f4:dc:38:1d:
2b:27:b5:0a:ee:99:8c:e2:02:4b:8e:4c:2e:7d:44:48:33:ab:
95:d4:20:f9:f3:2c:26:38:88:84:d7:03:e2:77:57:4c:8a:4f:
ab:a6:be:1d:f6:c1:03:b3:d9:3b:58:59:90:78:c9:63:7d:75:
dd:ba:33:b3:0d:2f:d7:ee:03:6f:ab:e9:34:cc:ee:c0:4e:ab:
a3:6b:ea:50:63:6f:55:4e:9a:b6:e2:4a:64:6b:5c:c7:26:da:
5e:ba:5d:e6:a3:26:f4:f8:3f:5b:fc:8d:a2:a8:74:20:55:11:
31:80:40:d0:2f:f7:8c:03:b9:46:16:b2:5f:77:5d:b4:46:a9:
bb:91:82:76:00:35:52:57:3e:fb:9d:1d:53:c6:b2:d4:77:9f:
20:b8:2b:1c:b5:92:73:aa:fa:46:be:17:81:b6:29:c6:43:9e:
76:be:01:1e:24:e5:79:6e:ec:b2:18:23:99:8d:ef:6c:b3:1e:
e4:eb:18:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:46 2023 by rpki-client on console-ams.rpki-client.org