Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/6opRn7IE_vCycEuJ4p62FD_oruQ.roa
File: 6opRn7IE_vCycEuJ4p62FD_oruQ.roa (raw, json)
Hash identifier: qjHkXwqS5UNaFRzj0YQ0Eum6BV+SjsIgIaAs/9pHHFs=
Subject key identifier: EA:8A:51:9F:B2:04:FE:F0:B2:70:4B:89:E2:9E:B6:14:3F:E8:AE:E4
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0D40
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/6opRn7IE_vCycEuJ4p62FD_oruQ.roa
Signing time: Wed 26 Apr 2023 10:31:43 +0000
ROA not before: Wed 26 Apr 2023 10:31:43 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 121.254.64.0/18 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3392 (0xd40)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 10:31:43 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=EA8A519FB204FEF0B2704B89E29EB6143FE8AEE4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:ba:b6:8d:51:1d:ad:58:a9:92:56:18:ed:f4:
cb:8c:eb:c0:ae:5d:b4:7b:2e:64:61:24:d5:36:0d:
df:44:11:4b:8e:34:4e:96:2c:e5:c5:51:bc:d7:73:
8d:52:b3:8c:94:5b:6b:3b:6d:86:84:e1:98:c5:fa:
86:e3:93:41:fb:cc:31:77:95:4e:17:ff:1d:2c:49:
f6:d3:08:04:09:ee:28:a8:f4:38:47:3a:76:1a:8c:
63:7f:cb:10:f7:32:7e:e3:3a:6f:10:fb:d1:63:56:
05:29:c0:bb:73:b0:63:5a:a0:a7:2c:a9:d1:22:59:
fb:9e:f1:35:e6:d4:58:7f:35:ce:b7:b9:b0:f5:c3:
96:e3:d0:b5:b4:0e:7b:e8:f9:b7:87:60:b3:a8:f2:
b8:f9:90:d0:26:af:6e:68:16:22:5e:e8:6c:73:e1:
ff:ec:0e:5a:bb:98:c3:31:97:9c:62:30:05:20:57:
3c:50:66:12:e8:85:f3:60:c5:02:79:ba:7a:8a:c6:
4b:a5:82:33:77:96:fe:ba:ad:a0:d0:ee:9c:d0:e4:
5b:2b:39:db:bf:86:dc:24:29:d4:3f:6d:be:bb:8a:
7d:51:65:e6:67:ae:f1:10:0b:66:39:ff:81:20:f4:
d7:f2:6f:07:4c:11:f2:41:15:08:de:e2:db:76:19:
60:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:8A:51:9F:B2:04:FE:F0:B2:70:4B:89:E2:9E:B6:14:3F:E8:AE:E4
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/6opRn7IE_vCycEuJ4p62FD_oruQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
121.254.64.0/18
Signature Algorithm: sha256WithRSAEncryption
9b:fe:39:0e:3d:35:a6:99:a3:9a:cd:02:a3:df:4d:a5:1c:43:
f7:82:34:14:ba:b3:77:d6:f1:2c:3d:34:4b:d3:77:8f:36:4a:
46:19:6f:d8:f2:55:70:4b:bb:bd:7a:90:3e:7b:fa:6e:e8:d1:
6d:9e:45:f7:ad:2e:92:87:7f:5b:e9:db:ef:bb:f2:7d:af:01:
26:81:05:34:70:3d:e9:39:07:9f:e5:1d:1d:df:62:33:13:78:
07:a0:8f:1d:89:01:b0:e8:b8:8d:a8:c2:36:33:59:f8:7e:d2:
a2:76:a3:e7:e8:44:69:20:70:9d:43:8a:26:56:38:43:e4:b4:
cb:43:b3:2a:68:09:d6:28:ba:da:40:9b:b8:a7:38:cc:14:2d:
9a:1b:79:be:ec:1e:89:78:bc:33:6b:f2:48:3e:6f:78:17:e8:
b6:ff:ec:16:6f:5a:b1:14:17:f2:39:ac:d3:76:f0:ec:c4:21:
17:78:b9:a2:0a:a2:00:7d:7e:03:27:63:fe:4a:96:32:66:88:
09:4d:ce:98:55:fe:2c:d6:4d:1b:be:32:47:87:12:fa:99:26:
60:b4:df:e3:2b:79:0a:4c:4f:c8:c1:af:c0:01:bc:8e:94:a6:
51:d6:64:d0:43:a2:cd:23:10:80:ee:f6:82:12:f6:f5:f3:ca:
d6:14:fb:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:23:39 2023 by rpki-client on console-ams.rpki-client.org