Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/xtdl_rLb_beIs-kYGjwAOuhAUis.roa
File: xtdl_rLb_beIs-kYGjwAOuhAUis.roa (raw, json)
Hash identifier: a8S2tTT1tAUY/UamMivuTevuNJfep863qUYFoFMYFWg=
Subject key identifier: C6:D7:65:FE:B2:DB:FD:B7:88:B3:E9:18:1A:3C:00:3A:E8:40:52:2B
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 0F63
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/xtdl_rLb_beIs-kYGjwAOuhAUis.roa
Signing time: Thu 15 Sep 2022 02:40:16 +0000
ROA not before: Thu 15 Sep 2022 02:40:16 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 210.203.48.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3939 (0xf63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 15 02:40:16 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C6D765FEB2DBFDB788B3E9181A3C003AE840522B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:0f:84:84:3c:8d:b6:eb:46:aa:67:fe:cc:fc:
61:ac:9a:4c:08:30:b4:ad:f2:e4:15:d4:9b:73:82:
19:73:98:b7:a7:62:1b:b8:88:68:a3:11:2d:d9:ac:
ac:72:c2:14:5f:a7:63:5c:b5:33:71:e0:1d:b0:fa:
99:99:6b:e2:e1:6f:6b:67:af:41:6f:84:01:a9:d7:
08:62:43:a4:a6:d5:8d:a8:44:e6:09:49:a3:ea:bd:
44:55:d5:69:35:88:12:91:51:d3:34:46:d8:42:21:
00:ef:26:fe:0e:a6:99:16:ff:69:21:c3:fb:2c:4b:
80:e6:fb:6f:c5:e1:c8:9d:43:ac:15:52:49:54:2d:
58:79:1e:f3:7f:fa:5d:67:d5:a7:32:66:0b:68:e4:
c9:7a:ef:50:1f:d7:25:51:0d:fa:73:4f:20:53:4f:
be:d1:fa:8b:8c:18:3a:21:f8:07:f9:b5:88:3d:2c:
11:eb:9b:01:83:dd:0f:9c:67:59:74:9e:3c:23:97:
f7:5f:c1:7c:b8:46:4e:c1:9d:cd:b6:35:7b:68:91:
05:fc:c3:a2:d1:97:66:5f:bc:ff:a1:e1:b9:a2:c1:
0a:d7:d9:c3:a6:41:9d:fa:50:25:30:91:9e:7b:8a:
29:69:d4:3f:a3:3f:31:78:0b:09:20:f9:a0:50:ed:
b2:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:D7:65:FE:B2:DB:FD:B7:88:B3:E9:18:1A:3C:00:3A:E8:40:52:2B
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/xtdl_rLb_beIs-kYGjwAOuhAUis.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.203.48.0/20
Signature Algorithm: sha256WithRSAEncryption
82:72:13:4e:37:ae:b7:a9:8e:fa:2d:78:42:d9:6d:f7:48:85:
dd:d7:bf:46:51:33:b5:0b:1b:5f:f6:01:2b:26:49:6a:bd:88:
62:d0:eb:cf:76:b6:1e:15:b9:ea:70:52:36:43:d5:6c:07:4d:
75:46:32:01:35:cd:0a:82:8c:1e:0c:4f:24:44:1c:4a:eb:2f:
eb:2d:1e:8b:a9:f4:59:ac:c1:aa:c7:df:72:b6:59:54:29:e8:
9c:18:12:6c:90:ac:fa:66:96:b0:48:a0:e5:32:f0:94:8d:e0:
84:09:df:a7:64:d9:e2:0c:01:29:a6:f7:6e:2f:69:a2:34:50:
fd:56:4e:a8:2c:d0:3a:9b:34:52:7c:c7:9c:e0:1d:58:b0:47:
3a:89:73:e3:bc:2c:52:62:67:8d:b1:1c:de:e3:7c:31:15:af:
25:48:b3:4f:ac:80:4e:42:a0:cd:3e:9f:e4:43:27:20:34:c5:
14:83:17:a6:a5:f7:95:a5:d5:d9:db:e5:13:6f:45:31:17:6e:
c2:a6:93:b8:e2:2b:6e:6f:9c:61:3f:eb:fa:56:de:c9:d0:45:
ab:e9:b4:58:0f:1a:bf:b0:ea:6f:19:4b:30:b6:3c:46:2f:bb:
eb:85:e0:e2:4a:92:2b:dd:15:da:62:f0:02:5c:cb:b2:91:fe:
31:c0:3d:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:56 2023 by rpki-client on console-fra.rpki-client.org