Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/soWDpTrF62MX_2EQ75QlG0bEAkU.roa
File: soWDpTrF62MX_2EQ75QlG0bEAkU.roa (raw, json)
Hash identifier: N1MeqLLL+0+ZemdlL0PNwil72ihT40QjzItg+diQ2bU=
Subject key identifier: B2:85:83:A5:3A:C5:EB:63:17:FF:61:10:EF:94:25:1B:46:C4:02:45
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/soWDpTrF62MX_2EQ75QlG0bEAkU.roa
Signing time: Thu 15 Sep 2022 02:40:17 +0000
ROA not before: Thu 15 Sep 2022 02:40:17 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9311
IP address blocks: 210.203.0.0/17 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:40:17 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B28583A53AC5EB6317FF6110EF94251B46C40245
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:d6:52:f5:fb:19:d8:9b:70:fe:98:09:8f:ab:
68:b7:b9:66:6a:6a:3d:1d:9a:7f:0e:7b:75:e8:81:
95:28:03:c5:2e:c9:57:47:06:c7:b1:69:8d:ba:fd:
db:8c:dd:5e:04:a1:c4:bc:0e:f2:df:27:df:b2:04:
a0:92:17:ad:a0:d2:e0:d4:93:53:29:a5:6d:8f:a5:
2d:b2:03:57:a2:ef:22:07:18:f9:ff:f5:a5:0b:37:
57:90:fc:9c:fe:e9:72:c0:d6:a2:c3:32:c1:cc:48:
a3:b8:79:a3:76:a6:8b:5a:74:ac:ab:ed:f3:39:5c:
97:fe:47:1c:c6:3e:4e:f4:b5:ad:c1:87:d2:3d:ec:
7b:93:bc:48:8d:83:5b:7b:b6:15:2c:31:83:bc:0e:
65:8a:a6:4d:e4:17:df:88:32:f4:0d:80:89:28:cc:
f9:8e:54:98:a7:cb:44:e6:1a:5c:82:a4:d8:04:b7:
ff:fa:f9:aa:77:40:ef:a6:62:1d:d7:2e:53:1d:eb:
29:5b:f0:66:e7:49:47:b1:09:30:23:33:d6:35:91:
02:af:6b:54:7e:f7:9b:e5:34:78:43:e7:ed:f1:5c:
5d:70:d1:8b:a7:fe:d9:7b:7c:53:64:fb:51:70:b4:
a8:29:44:72:e2:93:30:52:7c:af:e4:c6:9b:7e:2d:
65:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:85:83:A5:3A:C5:EB:63:17:FF:61:10:EF:94:25:1B:46:C4:02:45
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/soWDpTrF62MX_2EQ75QlG0bEAkU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.203.0.0/17
Signature Algorithm: sha256WithRSAEncryption
4c:db:21:20:50:15:dc:01:b7:11:92:3e:1d:16:f2:8f:8d:b4:
d8:bb:26:57:28:e9:13:6f:8e:b1:46:93:eb:a1:f2:f2:9f:23:
99:90:39:ba:0e:0c:65:be:90:8f:21:91:ea:7d:c8:9d:09:cd:
62:c8:bd:fd:a6:5d:e3:ab:42:69:30:c9:62:c2:0d:f2:34:20:
9e:1c:da:70:fe:df:78:11:59:3e:40:43:f0:b8:ca:85:d8:c0:
92:83:aa:6a:d1:c8:90:a2:24:aa:ba:28:7c:37:a2:89:71:8b:
97:79:46:ae:ef:e2:56:cf:05:4e:87:96:49:15:e9:ef:4c:f6:
03:e6:dc:71:bb:28:50:81:ac:0b:ea:24:8e:0b:5f:f1:c8:72:
d9:04:2a:06:fd:b2:20:5e:cc:13:8b:e3:56:7a:7a:65:a7:e2:
dc:b9:f3:9c:f7:75:67:64:cd:d5:7f:8a:d1:8b:af:cf:68:19:
16:28:b9:f9:86:58:f0:4c:7e:d2:21:f9:2c:76:9e:ac:de:8a:
25:9a:7a:0d:25:01:b2:e6:b4:36:df:20:3d:47:cf:8d:ae:9a:
0d:3a:49:23:00:6b:c6:1e:04:ca:0e:00:9e:49:e1:a0:3a:dd:
f1:51:97:29:f2:ac:ca:ce:6d:1b:f7:20:86:a4:aa:f3:40:01:
25:5e:66:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:56 2023 by rpki-client on console-fra.rpki-client.org