Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/xiB2tpatG7ubyQ6WYlnQISI9HbE.roa
File: xiB2tpatG7ubyQ6WYlnQISI9HbE.roa (raw, json)
Hash identifier: mbBTbOfYdfIyEsdLyqXhuYFDhtmH2hkmYEQbdRjeK9o=
Subject key identifier: C6:20:76:B6:96:AD:1B:BB:9B:C9:0E:96:62:59:D0:21:22:3D:1D:B1
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1088
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/xiB2tpatG7ubyQ6WYlnQISI9HbE.roa
Signing time: Tue 16 May 2023 08:36:19 +0000
ROA not before: Tue 16 May 2023 08:36:19 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24154
IP address blocks: 210.63.192.0/19 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4232 (0x1088)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:19 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C62076B696AD1BBB9BC90E966259D021223D1DB1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:9a:c3:6f:fb:02:9f:69:6d:16:60:ae:d8:2b:
cd:4f:f7:ad:5b:d3:9f:3e:d6:f5:f1:fc:83:1d:cb:
ef:80:b1:c1:3d:56:dc:79:cc:da:c6:96:2c:d4:76:
d5:5d:48:48:d6:fc:0a:08:d6:60:7d:57:7c:36:4f:
c6:5e:38:85:b2:08:b5:7f:18:6b:a9:92:68:83:96:
4c:a4:5c:a6:1f:cf:3e:82:1b:fc:c9:1a:4f:d4:6d:
08:08:98:20:51:70:67:89:b2:60:c7:25:5b:9e:79:
1d:8a:8d:86:6d:63:4a:43:59:11:0e:2d:20:55:31:
74:6b:6a:bb:4d:55:3c:89:40:34:d1:3d:52:0f:ee:
7b:5f:68:95:b9:87:40:a7:a5:5b:8d:c4:e8:94:b8:
2c:53:0f:01:14:d6:8e:2f:01:c4:5c:7f:6f:22:f8:
73:76:c6:40:e3:4c:53:6f:6b:65:2c:16:34:77:ca:
17:30:48:d3:0b:c5:78:42:b9:9d:6b:4e:a0:1d:a0:
2c:23:2d:8e:02:48:3e:c5:b4:c3:ab:c4:d9:9f:d5:
3b:21:98:fa:2a:29:b5:18:cd:11:7d:fe:76:bc:27:
d4:72:8a:be:a5:04:5e:d8:7f:40:fb:8c:47:21:95:
db:c2:d3:1b:ce:7b:b0:17:ea:80:87:51:92:9f:54:
5e:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:20:76:B6:96:AD:1B:BB:9B:C9:0E:96:62:59:D0:21:22:3D:1D:B1
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/xiB2tpatG7ubyQ6WYlnQISI9HbE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.192.0/19
Signature Algorithm: sha256WithRSAEncryption
75:1d:6d:ff:ac:3f:fe:db:17:fe:95:09:05:88:62:94:1f:84:
54:64:25:b2:44:3b:1d:10:77:fc:8c:d5:ee:76:a0:6b:f5:02:
bd:67:80:62:66:d2:10:f4:b1:cc:30:7c:3d:8b:f4:f5:03:58:
85:93:84:ce:d3:f8:66:e8:5d:67:06:a3:da:5d:c0:8a:07:3a:
74:bb:cc:96:27:62:2e:33:87:bd:f0:56:46:e5:a6:de:44:c7:
0b:6f:d8:46:25:4e:ad:4a:70:ce:cb:98:a7:bc:99:95:64:94:
49:bf:69:b4:6a:e5:83:4a:a9:7a:5e:a5:73:c3:05:33:c6:15:
31:eb:5b:8d:d6:0a:ec:45:44:a7:d6:88:3b:e7:ba:42:2b:ce:
8c:7e:4b:4a:78:f1:a4:e6:e7:57:d5:ab:e9:43:8f:95:e1:49:
cc:78:3d:f1:40:04:1a:1e:1f:9f:84:7f:6d:c0:78:8a:ff:e2:
57:e4:22:65:c6:85:a3:f3:a9:ec:d0:c3:92:a0:53:db:e9:ea:
17:99:70:df:ab:6e:89:7b:77:ad:17:ac:61:8a:74:c4:85:b7:
c2:e8:f1:fa:24:c8:00:4a:4c:0b:ba:7c:e7:3d:83:7e:fb:c9:
01:00:aa:05:67:ac:eb:4b:61:b2:47:a5:5d:89:e9:ed:d6:e1:
3d:ee:29:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 08:25:19 2023 by rpki-client on console-ams.rpki-client.org