Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/uJEfJmtR4eUGo9dc4b9PxmuyM1s.roa
File: uJEfJmtR4eUGo9dc4b9PxmuyM1s.roa (raw, json)
Hash identifier: 7i17H3xtv/iUrXXMdt+aDjUh1C5/oDx9yqiQTfxXPdw=
Subject key identifier: B8:91:1F:26:6B:51:E1:E5:06:A3:D7:5C:E1:BF:4F:C6:6B:B2:33:5B
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 10D5
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/uJEfJmtR4eUGo9dc4b9PxmuyM1s.roa
Signing time: Tue 16 May 2023 08:36:43 +0000
ROA not before: Tue 16 May 2023 08:36:43 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 210.58.88.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4309 (0x10d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:43 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B8911F266B51E1E506A3D75CE1BF4FC66BB2335B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:64:d8:aa:6d:ed:eb:78:46:fa:2a:9c:33:16:
8f:72:7c:e6:93:37:d7:91:22:b8:63:95:06:81:ca:
c8:3a:94:b8:7d:83:58:9b:ed:c8:5c:ab:c1:c4:2a:
97:d9:b4:90:3f:bf:f1:5b:7e:ed:6d:62:9e:80:68:
40:78:25:67:22:8a:69:7f:5b:9a:55:87:58:94:31:
58:55:c9:f2:e2:b9:0c:ed:c1:22:22:2c:44:f4:e0:
ad:b0:87:f4:b4:24:a7:4f:8b:39:c5:ac:95:8d:89:
e1:19:9b:1c:3a:29:0c:38:11:50:b0:04:93:80:ae:
cb:c2:22:58:37:fe:49:97:a9:cb:7a:2d:98:52:cf:
10:2e:0f:e7:54:31:9b:85:46:4c:60:b3:90:68:ea:
32:fe:6b:c7:ff:bb:bb:68:e1:7b:46:5e:81:c1:3b:
23:0b:3b:68:55:de:4d:1b:0d:5d:e5:77:60:e0:c9:
16:5b:54:ea:a1:e0:eb:d8:56:ad:97:9a:cd:da:c7:
9a:19:2c:5e:75:e4:92:0a:14:10:e0:2d:93:5a:83:
63:c4:a6:97:e9:ca:54:94:87:55:bf:ea:a7:48:94:
d4:22:87:00:a3:da:3b:01:d9:19:cc:b3:30:a0:db:
d7:c6:be:d8:c3:2a:39:e9:1e:ae:7b:c0:5c:1f:b5:
b0:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:91:1F:26:6B:51:E1:E5:06:A3:D7:5C:E1:BF:4F:C6:6B:B2:33:5B
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/uJEfJmtR4eUGo9dc4b9PxmuyM1s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.58.88.0/24
Signature Algorithm: sha256WithRSAEncryption
28:10:84:ee:19:64:87:7e:74:15:be:98:02:de:44:a0:e2:e1:
99:fe:ea:5a:0e:93:20:96:5a:99:e7:a6:42:a4:4e:20:9d:cd:
0b:dd:11:f1:ed:52:93:f0:f1:60:d5:b3:2f:66:61:57:86:63:
19:97:fa:e8:23:bd:1b:99:26:26:b5:9a:89:b3:66:12:e4:1a:
61:d1:aa:8a:65:17:03:37:89:37:32:39:b4:4e:be:da:b6:14:
20:3f:ed:b3:be:0e:ce:1a:8b:66:e0:8c:0f:33:29:5a:12:40:
01:34:fc:20:41:4a:88:c0:dd:01:f2:58:59:5d:82:36:40:84:
40:7c:e9:08:4b:e3:5f:88:03:33:6f:27:3c:ea:46:a1:88:e3:
d5:48:b5:e0:be:b0:d9:64:8e:e9:a7:9e:16:01:6b:e2:c9:a9:
71:00:3f:b2:67:5f:30:1b:44:ef:47:a8:5b:01:83:d7:57:e5:
e7:db:73:35:e4:62:81:88:ea:24:e0:9a:b3:95:e2:f1:4b:8a:
f2:9b:a4:57:2f:64:e9:14:81:05:5c:86:e8:4f:c3:1b:40:23:
84:02:54:a7:24:99:3f:37:75:77:31:61:58:46:1c:37:b8:d0:
60:62:ed:93:24:24:8d:8c:e3:c5:9e:b1:74:d7:f4:d1:be:35:
df:84:be:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 08:25:19 2023 by rpki-client on console-ams.rpki-client.org