Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/tpxzFha6TDOvA06KexvFXenDHqI.roa
File: tpxzFha6TDOvA06KexvFXenDHqI.roa (raw, json)
Hash identifier: TYcl+6fPuGbMZEKHuE9wxkGrJExz102mvyWm6NYaZPI=
Subject key identifier: B6:9C:73:16:16:BA:4C:33:AF:03:4E:8A:7B:1B:C5:5D:E9:C3:1E:A2
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/tpxzFha6TDOvA06KexvFXenDHqI.roa
Signing time: Thu 15 Sep 2022 02:39:42 +0000
ROA not before: Thu 15 Sep 2022 02:39:42 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 7482
IP address blocks: 210.203.0.0/17 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:39:42 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B69C731616BA4C33AF034E8A7B1BC55DE9C31EA2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:14:83:b9:9f:a8:ab:02:87:43:ed:9a:98:e9:
80:9a:97:b1:69:e2:2d:39:b9:7d:ce:cb:ab:3c:51:
89:50:96:46:d6:9f:8c:dd:4f:8b:91:46:b9:75:2e:
66:f9:05:29:79:30:95:4b:3d:08:18:fc:ea:eb:ed:
d1:99:7d:ff:dc:3b:b9:c4:b2:d4:06:8a:fe:a8:12:
19:db:4d:ff:60:b7:fd:9f:fe:6c:1f:d1:b2:02:22:
7b:1a:c5:0f:83:7b:54:e0:90:fa:de:5d:fd:5f:6a:
98:37:cf:c6:77:14:8b:a9:d1:28:5c:b5:48:c1:55:
dd:fc:7c:57:63:88:7a:b3:a1:88:c1:18:1a:2c:1a:
38:cd:40:80:f5:2f:58:d6:4e:f7:77:95:d3:7f:c4:
25:ae:a8:9e:0e:36:f9:da:57:d2:8d:a5:70:d0:6a:
cf:05:96:09:8a:64:80:cd:0a:50:6e:6c:c8:f7:84:
a3:99:88:f1:5c:2f:bc:57:e9:6d:97:a5:62:ae:cc:
1e:6c:dd:cf:b3:22:0f:d3:ae:a2:76:04:ee:92:ac:
e1:b4:01:19:19:8e:47:cf:7a:df:55:29:1a:ce:01:
11:1c:24:ee:c5:0a:5c:8e:d8:3e:59:7b:1d:c4:19:
d0:2f:f4:e3:7f:53:0f:e8:6d:83:02:2f:10:aa:33:
79:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:9C:73:16:16:BA:4C:33:AF:03:4E:8A:7B:1B:C5:5D:E9:C3:1E:A2
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/tpxzFha6TDOvA06KexvFXenDHqI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.203.0.0/17
Signature Algorithm: sha256WithRSAEncryption
84:c2:3c:27:13:cd:a5:9b:83:34:78:fa:b3:f0:fe:55:51:a4:
8f:d0:14:f6:8e:02:06:80:90:9c:15:a0:22:ea:bc:dc:9c:05:
c7:2c:a3:95:c6:31:2a:32:dd:20:e7:57:64:ec:2f:95:94:40:
86:af:b7:cc:5f:86:2f:6b:ba:54:63:33:76:a6:47:e2:8a:a4:
81:e1:ad:f5:5d:66:8b:d3:73:68:94:27:b0:a5:bb:8d:13:13:
f4:f4:3f:f8:b8:61:8f:3d:3d:1c:e7:a8:62:6b:03:7a:c0:4d:
f1:5a:33:aa:78:01:1f:ab:69:1b:21:94:20:4d:42:76:96:be:
69:57:22:c3:7c:05:30:ac:dc:b1:b0:38:59:40:77:37:7f:f5:
d6:de:7d:24:bc:96:4a:72:45:88:88:99:a4:b5:fb:5c:ef:38:
e9:e5:b2:39:db:7c:bd:8c:3c:47:6d:eb:ad:12:69:bb:bc:42:
58:b0:be:1a:8c:f9:4e:d6:8f:ff:e7:d9:5a:db:a5:c5:8c:06:
05:be:93:e9:4c:7c:36:07:c0:c6:e9:71:95:cf:fd:61:e2:a4:
ea:86:b8:2a:80:3b:0b:10:27:6b:53:be:56:04:9c:2e:63:20:
6d:29:43:3d:bf:76:99:ed:f3:e3:4d:74:11:25:f7:0f:78:b6:
eb:9f:e7:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:46 2023 by rpki-client on console-ams.rpki-client.org