Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/yxF6uReHUySjeqA2uyZmCpxwgpY.roa
File: yxF6uReHUySjeqA2uyZmCpxwgpY.roa (raw, json)
Hash identifier: JKE8PZedf9Ts+zYlF0kH347uyXk8FUKfJRJGqFn8zzA=
Subject key identifier: CB:11:7A:B9:17:87:53:24:A3:7A:A0:36:BB:26:66:0A:9C:70:82:96
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 10C5
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/yxF6uReHUySjeqA2uyZmCpxwgpY.roa
Signing time: Tue 16 May 2023 08:36:36 +0000
ROA not before: Tue 16 May 2023 08:36:36 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9311
IP address blocks: 210.200.128.0/18 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4293 (0x10c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: May 16 08:36:36 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=CB117AB917875324A37AA036BB26660A9C708296
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:91:59:85:86:0a:f4:58:e6:57:26:85:78:85:
8f:c7:40:bb:72:4b:9f:a6:63:a4:65:5a:66:d7:2d:
ef:e0:ec:fb:db:88:74:40:cd:da:ca:eb:71:62:f6:
be:de:0a:4e:19:5e:ac:6d:4a:74:b2:6a:09:d4:d9:
7f:1d:dd:4d:5d:e4:cc:6f:aa:e6:e5:27:29:7a:e8:
86:6e:74:37:3f:9a:90:79:a6:69:2d:96:91:36:27:
4e:82:8f:77:68:82:6b:05:65:cb:9e:cb:00:07:eb:
2a:18:d2:ef:e9:64:a5:8c:74:49:08:d4:93:69:38:
a3:e2:a1:2e:ec:cf:cf:04:d1:5c:60:10:0b:9b:d3:
61:bf:9a:e8:77:03:d6:4e:8a:e0:76:00:76:8c:76:
5a:c4:b2:b8:23:39:64:b9:bc:3a:12:aa:91:6c:9b:
72:98:c3:1b:12:8f:0e:de:6d:b3:9b:e3:81:d6:ea:
83:98:5e:d3:8a:0e:19:92:e7:86:bf:51:81:22:0a:
1e:cb:1f:0d:94:b3:ba:db:00:ea:af:92:1d:4e:7d:
cc:fd:a9:ec:36:e5:66:24:50:7d:9d:cc:5b:c9:32:
70:83:12:56:e6:5e:48:09:98:1a:76:27:e0:3a:61:
eb:df:74:18:fe:c7:f7:62:ed:90:09:8e:72:f9:77:
2a:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:11:7A:B9:17:87:53:24:A3:7A:A0:36:BB:26:66:0A:9C:70:82:96
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/yxF6uReHUySjeqA2uyZmCpxwgpY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.200.128.0/18
Signature Algorithm: sha256WithRSAEncryption
46:09:b1:98:81:16:9c:16:ea:5f:cc:0c:cb:65:2c:dc:6c:de:
76:91:a7:e5:9c:62:b9:f9:b8:5c:5c:6b:d0:39:f5:93:5f:c9:
18:47:a3:27:da:7c:d1:39:56:28:59:26:1e:37:19:60:44:e2:
eb:df:a9:20:51:fe:5e:d3:70:eb:19:58:7c:9f:24:3b:df:55:
b0:92:74:e7:0d:bd:9c:16:00:23:49:2b:3a:4e:b5:e6:64:75:
48:26:f5:25:99:bb:85:99:be:6d:1f:cc:12:2e:8f:ce:cb:4e:
e9:0a:e6:9b:83:69:08:d7:0f:db:1c:d3:1b:59:2c:da:00:70:
99:25:0b:1e:82:2d:90:03:2c:3a:c3:c9:a5:8e:58:e9:de:04:
87:55:9c:61:59:96:3b:e2:f2:d4:a7:d6:39:06:da:7f:3d:de:
32:ff:eb:ae:85:31:dc:46:95:a3:2a:6e:77:cc:6c:be:aa:1c:
40:be:b0:82:5a:5c:bd:cf:74:76:f4:c4:62:f6:d7:89:c8:ac:
4d:34:56:93:42:3d:aa:ee:95:cc:8c:f6:4e:a8:0f:31:86:fe:
c5:2a:c9:24:a7:cb:11:ad:b4:96:70:ef:2f:48:a4:48:de:47:
94:7e:2e:74:b6:be:a9:46:bb:08:36:f9:71:1c:f4:e0:40:0d:
8f:88:53:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 08:37:46 2023 by rpki-client on console-fra.rpki-client.org