Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/yE2tj4wuHJUpzB0qJUjKZGmUvfw.roa
File: yE2tj4wuHJUpzB0qJUjKZGmUvfw.roa (raw, json)
Hash identifier: 6dTzuyQclswUdPnMamTmWPFPy3sQ9aZSmKUK3eQvIxE=
Subject key identifier: C8:4D:AD:8F:8C:2E:1C:95:29:CC:1D:2A:25:48:CA:64:69:94:BD:FC
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1073
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/yE2tj4wuHJUpzB0qJUjKZGmUvfw.roa
Signing time: Tue 16 May 2023 08:36:13 +0000
ROA not before: Tue 16 May 2023 08:36:13 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17709
IP address blocks: 210.63.232.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4211 (0x1073)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:13 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=C84DAD8F8C2E1C9529CC1D2A2548CA646994BDFC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:8b:54:ec:01:e3:7a:31:25:39:ae:0c:e3:67:
05:99:07:d9:fa:3a:8d:24:c2:bb:f7:9b:1d:2b:49:
e0:59:58:99:60:13:d5:d4:23:24:60:48:c9:d6:54:
71:f5:32:a6:54:04:36:b1:6c:89:0b:6a:16:59:e5:
1b:0c:17:bc:8b:d6:b2:97:50:5f:ff:4c:e9:b6:3b:
9d:22:b3:be:aa:29:4c:18:1d:38:20:d8:b3:af:17:
03:7e:48:d0:2f:8d:da:e7:9d:c0:b0:cb:cd:ec:0c:
fe:2f:47:80:04:be:6b:5e:4b:5b:23:48:49:09:c1:
28:38:4e:6e:a7:ea:9d:6e:b5:21:6d:44:28:a6:ca:
ad:28:c1:16:74:1f:8b:62:1a:93:98:8d:c1:16:54:
3a:af:19:17:08:5c:3f:f2:7c:da:48:e8:e3:55:6a:
c8:a0:67:8c:61:bc:ba:65:d4:56:f3:ec:e7:ce:dd:
49:6e:52:75:df:e5:eb:0a:0a:63:65:67:60:dd:8d:
40:1c:73:4e:94:b1:fa:dd:2a:79:64:be:3a:99:dd:
13:e2:67:84:8f:30:c4:5e:a5:d4:73:48:15:04:44:
40:4a:3d:bf:af:6a:91:43:e9:20:8e:ab:80:f0:7e:
19:4c:03:ac:f2:de:e8:0a:22:c2:5f:cc:58:cd:bb:
ae:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:4D:AD:8F:8C:2E:1C:95:29:CC:1D:2A:25:48:CA:64:69:94:BD:FC
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/yE2tj4wuHJUpzB0qJUjKZGmUvfw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.232.0/22
Signature Algorithm: sha256WithRSAEncryption
33:c3:3d:02:aa:bf:7c:7f:d9:99:c4:88:74:35:66:ed:ee:37:
0a:0a:d1:f9:fc:52:e7:02:38:a6:1a:68:9a:ad:fa:51:d5:06:
8e:18:c3:00:0e:e3:ca:e6:2b:e3:fc:be:09:ba:60:77:76:00:
25:b1:6c:e3:0c:80:87:9b:14:10:c3:34:49:34:38:a1:38:64:
10:57:03:54:95:b9:3c:fc:7d:d9:88:e8:da:20:54:f1:e9:f6:
cb:85:ae:c1:84:83:2d:d3:ba:34:00:15:87:08:22:2a:9b:cd:
c0:28:b8:f8:2f:c4:00:af:54:49:55:f9:ee:a1:3e:f5:5a:46:
f3:41:94:03:56:13:20:8d:c7:fa:34:36:ad:17:8b:4c:14:0d:
47:a3:f8:dc:39:52:23:31:52:0e:63:f0:7a:f2:62:42:8f:75:
e6:35:79:75:88:28:d2:b2:68:c0:ae:c6:14:09:e4:c8:bc:99:
c0:fd:ef:90:fa:f0:bd:95:6a:bc:bc:26:4e:47:c7:8e:84:9d:
a8:22:f5:22:27:8e:87:21:69:91:b6:1a:70:d8:1c:52:f4:36:
3a:d6:41:3e:38:05:f1:23:b6:59:f6:8c:8b:3c:39:41:72:3d:
35:f6:b2:30:d3:fa:5f:18:b0:59:c0:e3:a3:3e:d1:a8:46:d0:
61:68:49:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 08:25:19 2023 by rpki-client on console-ams.rpki-client.org