Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/FRv1W5zVKf_eHpJVrBWtJQgiTbQ.roa
File: FRv1W5zVKf_eHpJVrBWtJQgiTbQ.roa (raw, json)
Hash identifier: ITFZNWgfNFaA/1YtuuQgh5WvpFAyAD2ZRMgOCuNIwc4=
Subject key identifier: 15:1B:F5:5B:9C:D5:29:FF:DE:1E:92:55:AC:15:AD:25:08:22:4D:B4
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0CEC
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/FRv1W5zVKf_eHpJVrBWtJQgiTbQ.roa
Signing time: Wed 26 Apr 2023 10:31:21 +0000
ROA not before: Wed 26 Apr 2023 10:31:21 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 27.96.240.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3308 (0xcec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 10:31:21 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=151BF55B9CD529FFDE1E9255AC15AD2508224DB4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:d1:f2:eb:a6:25:c5:79:5d:be:d9:b7:2c:55:
18:f0:9d:ad:f3:67:a8:76:4f:2b:b5:f4:51:93:72:
c9:88:04:db:e4:f7:c8:3f:c0:15:66:dc:79:89:81:
35:63:3d:7b:14:05:50:0f:29:eb:32:da:47:df:6d:
e2:e8:bf:07:6f:6f:2c:99:e5:6f:88:10:5d:0e:c3:
29:6d:84:72:a8:bc:30:0b:ba:5d:a8:f0:5b:c3:30:
b2:0a:4f:54:22:f2:87:0b:c5:e8:bd:a9:d0:19:bb:
97:19:8a:8c:a9:3e:a0:93:3f:d0:28:37:e6:39:ca:
26:ff:ea:9b:bf:bc:70:c6:6f:25:dd:a0:44:a3:c0:
31:5f:dd:e3:42:e3:75:8e:2d:39:b8:67:12:78:93:
b6:8b:57:2a:b6:ff:6c:7b:be:c8:70:ab:2b:9a:ce:
8e:f3:4b:4a:b1:30:24:bc:49:43:d4:6c:d1:02:5f:
62:4a:c5:82:89:b6:c9:2a:64:e1:fd:59:7c:e1:a7:
cb:f2:f1:4d:5b:21:d7:44:63:42:4d:0b:e1:48:2d:
7d:93:d6:5c:9a:0e:3c:02:32:98:38:c1:3d:0f:94:
f6:14:35:1f:37:57:bc:17:0b:72:0e:2a:76:21:dd:
4e:38:1c:67:72:0c:76:ad:06:ca:08:d4:a1:91:41:
3c:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:1B:F5:5B:9C:D5:29:FF:DE:1E:92:55:AC:15:AD:25:08:22:4D:B4
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/FRv1W5zVKf_eHpJVrBWtJQgiTbQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.96.240.0/22
Signature Algorithm: sha256WithRSAEncryption
a7:d6:2d:59:24:a3:7f:c2:4b:db:66:f5:83:cb:6e:54:7d:48:
65:c6:fb:72:45:14:0c:50:d2:b9:21:44:1f:e3:47:74:68:1f:
22:60:f4:fd:04:3a:00:47:f3:8f:9b:74:81:d1:f5:db:74:36:
d5:b0:0d:28:28:5e:e1:e6:1e:25:da:50:8c:ce:fb:75:1f:ae:
e0:65:bf:d1:6f:32:c0:03:d8:29:e3:14:d9:ab:bf:91:8e:28:
81:64:99:e8:54:78:8d:52:be:b6:51:07:7b:b6:72:eb:06:49:
23:33:3d:d0:4d:6a:81:87:dc:8f:2c:d0:3d:05:1e:e9:9e:b6:
df:82:53:f3:56:56:77:fa:1d:a7:8e:35:d3:56:29:61:67:01:
56:83:13:0b:f7:4e:8b:a3:0b:b4:70:95:2e:7e:d6:1f:d4:12:
3b:c6:90:da:43:03:8d:a3:54:ee:b8:a4:b6:99:aa:ff:86:34:
85:6b:a2:b3:5f:c7:c9:9d:b9:36:32:10:c1:1a:a0:1d:96:17:
d6:63:f0:d0:e2:77:a4:4f:3f:89:f7:2b:fc:45:d1:f7:96:d4:
b0:42:87:58:a2:b7:9b:00:dd:0f:08:cf:93:2c:39:8f:05:84:
81:73:31:c5:bc:75:40:68:3a:c2:48:db:d5:d5:00:0e:dc:25:
26:e7:9f:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:28:13 2023 by rpki-client on console-fra.rpki-client.org