Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/qvxoUXnkbIy3gcFdCHNUWDdhvWY.roa
File: qvxoUXnkbIy3gcFdCHNUWDdhvWY.roa (raw, json)
Hash identifier: lmRe0WZ837psB3mypfWx9QFYWEnfslCdU+O6MkZIGvA=
Subject key identifier: AA:FC:68:51:79:E4:6C:8C:B7:81:C1:5D:08:73:54:58:37:61:BD:66
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/qvxoUXnkbIy3gcFdCHNUWDdhvWY.roa
Signing time: Thu 15 Sep 2022 02:40:14 +0000
ROA not before: Thu 15 Sep 2022 02:40:14 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24154
IP address blocks: 203.207.44.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:40:14 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=AAFC685179E46C8CB781C15D087354583761BD66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:2c:41:b0:be:b7:2e:08:06:1b:1b:a2:9a:5f:
0f:49:65:14:4a:3a:97:86:32:2d:59:5e:48:79:cc:
e2:b7:e7:e7:7f:72:3d:dd:b9:4d:3c:10:d5:46:4a:
2f:e7:64:64:e9:7c:df:95:ce:dc:33:93:dd:d4:ef:
a6:eb:f9:ff:57:71:5f:96:77:e2:e8:b3:26:62:e2:
43:30:c5:93:97:4d:5a:58:42:ae:50:1a:91:de:c2:
62:56:70:c9:ea:2e:3e:fd:14:e9:9f:0e:46:21:46:
00:58:4b:9b:65:f1:fd:63:51:00:38:c5:b4:03:8d:
2a:eb:f8:98:a3:86:9c:1d:dc:76:c3:20:f3:07:97:
7b:27:5c:7b:17:95:20:cb:8f:b8:99:10:38:1c:8a:
b1:01:85:81:e5:11:a6:db:84:3d:32:af:1a:5c:d5:
a0:d9:27:56:46:e6:71:75:b3:e1:7d:da:cb:bb:4b:
9e:47:07:b3:4c:85:c5:a8:94:04:a1:cb:35:47:d9:
41:b1:f9:50:94:e1:2a:5b:70:a7:68:f1:33:93:ca:
4b:b1:89:c2:93:f0:65:99:97:02:b7:5a:48:c4:84:
bd:3b:ed:82:01:bf:13:03:0d:fd:71:f2:a4:a7:19:
ae:6e:bc:10:04:d9:89:82:57:51:a8:65:1d:f9:ed:
7b:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:FC:68:51:79:E4:6C:8C:B7:81:C1:5D:08:73:54:58:37:61:BD:66
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/qvxoUXnkbIy3gcFdCHNUWDdhvWY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.207.44.0/22
Signature Algorithm: sha256WithRSAEncryption
40:51:1e:45:10:9c:e7:9f:f3:e6:18:16:b6:a3:d2:78:e8:4b:
bb:1a:89:7e:bf:17:d4:95:a5:eb:05:37:9d:14:50:1a:bd:cf:
e8:83:c4:28:58:20:d5:09:17:1c:1c:ff:b5:a6:b6:b6:1f:9a:
26:74:a4:79:a5:0f:5b:44:10:c0:47:93:14:a8:d4:e1:bc:06:
5b:e7:24:79:d7:99:50:4f:5a:15:f3:44:cc:ad:fd:a3:d6:d8:
e4:bd:b1:cd:28:b2:83:89:13:e9:7b:3c:80:5d:77:81:f0:a3:
28:b0:a8:01:35:bc:27:c0:f6:08:fc:9a:42:c4:fe:ec:bf:08:
70:38:b1:c8:71:4f:32:fe:76:f4:23:c9:0a:ea:86:81:87:88:
8e:10:eb:33:be:06:30:09:1b:53:13:3f:e4:a0:bb:9a:8e:2f:
0a:b7:35:26:79:55:9a:ea:17:bc:31:c8:2f:f3:88:f4:fe:dd:
ea:33:a3:f0:28:fe:1f:97:9e:41:36:1c:43:76:cc:61:25:18:
03:0b:17:47:04:1a:86:60:e2:20:44:c0:3b:17:f5:67:74:62:
e6:fd:1c:cb:97:5e:80:de:1b:4e:ae:30:ea:48:02:f6:60:97:
41:35:f5:b7:15:ee:19:b5:58:69:00:87:1a:20:01:f4:0c:b1:
69:14:e5:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:56 2023 by rpki-client on console-fra.rpki-client.org