Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/Pq_5NN1SeojPJX0OH2_nPcDHetE.roa
File: Pq_5NN1SeojPJX0OH2_nPcDHetE.roa (raw, json)
Hash identifier: yffUoS0t/93HJ9nk7dIEnc6D01FymTWoDJG1FYJDiwc=
Subject key identifier: 3E:AF:F9:34:DD:52:7A:88:CF:25:7D:0E:1F:6F:E7:3D:C0:C7:7A:D1
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0C9F
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/Pq_5NN1SeojPJX0OH2_nPcDHetE.roa
Signing time: Wed 26 Apr 2023 05:35:21 +0000
ROA not before: Wed 26 Apr 2023 05:35:21 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 121.254.64.0/18 maxlen: 18
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3231 (0xc9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 05:35:21 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3EAFF934DD527A88CF257D0E1F6FE73DC0C77AD1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:f6:b9:bb:e6:b8:3c:32:1c:f5:c2:1b:f6:cc:
49:50:5a:04:20:9d:8c:9d:c4:29:36:c1:70:d5:1d:
33:cc:b8:fe:97:9c:6b:c3:2e:59:a1:5f:4f:f8:d1:
82:50:89:af:46:69:25:7f:42:97:ca:02:da:e9:b3:
57:13:8b:a8:35:cc:14:cc:60:54:57:3a:87:39:2f:
bd:7f:2b:9a:20:e3:62:aa:e5:cc:0c:b9:58:18:37:
89:99:7c:69:a2:da:d1:d4:ad:a6:ac:19:f3:0c:be:
ee:c4:e5:10:4b:d8:7c:63:b2:02:05:4c:71:4a:f6:
a4:e7:b0:d9:2d:f2:70:b6:92:61:fb:34:f1:55:18:
45:56:39:9d:9b:be:a5:3c:27:22:b0:11:60:6e:21:
44:35:18:8f:f1:e8:77:64:ec:bc:dc:d5:fc:37:0e:
c0:30:ab:ac:da:f8:e9:5b:90:81:1a:7a:fc:7f:fa:
1c:47:fd:07:63:2a:ed:3d:17:3e:55:28:32:5c:99:
d2:93:b8:7b:ef:ff:f1:f9:aa:f4:17:7a:59:dc:8f:
b0:f8:03:2d:58:80:6f:90:94:4b:ac:d7:8e:27:03:
97:8f:94:74:d4:d5:d2:17:d1:5a:59:b1:93:8c:c3:
45:cb:df:66:15:5a:56:3a:7f:5b:37:5c:fc:a5:5f:
94:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:AF:F9:34:DD:52:7A:88:CF:25:7D:0E:1F:6F:E7:3D:C0:C7:7A:D1
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/Pq_5NN1SeojPJX0OH2_nPcDHetE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
121.254.64.0/18
Signature Algorithm: sha256WithRSAEncryption
b0:f2:2d:02:a6:37:e6:61:f7:39:26:90:2e:11:78:6f:cc:43:
08:3b:59:8c:93:97:ca:7a:0e:7e:f1:8f:96:02:4d:e8:c6:34:
b8:93:18:ea:e8:0a:f0:79:ff:2a:41:a5:8c:11:48:e6:bf:60:
17:76:13:39:e0:aa:56:ce:1c:38:4e:5e:d7:06:78:be:82:d0:
bd:5b:54:be:53:85:8a:5e:d3:61:e8:54:b6:81:01:1d:39:b6:
54:86:88:c0:78:8e:4d:d1:40:b2:9d:4e:fd:af:03:1f:c4:9b:
ca:39:c6:8d:ca:4d:5d:de:97:17:9c:29:08:8d:9d:ff:5a:eb:
f1:05:e5:4f:c2:a4:89:c3:8c:4d:99:10:e3:31:3a:5b:09:92:
3d:4c:43:f3:e4:c1:cf:ac:e2:43:b7:1f:9e:a3:cc:8d:28:05:
8d:79:34:1c:fc:07:5e:a7:cd:77:74:19:f9:3c:28:6a:4d:ae:
35:7d:54:c3:77:4d:fd:a1:34:41:e3:16:71:96:f2:2b:65:71:
bb:83:d6:72:e7:4b:2c:14:c1:41:e3:74:3a:68:85:f3:4e:cd:
86:13:29:cf:67:02:3d:91:a0:d1:7d:33:00:14:9f:18:2a:10:
4f:24:b6:68:66:a5:90:c9:96:6b:81:0e:6c:29:bb:8e:64:5b:
7c:81:94:91
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDJ8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0
NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yMzA0MjYw
NTM1MjFaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDNFQUZGOTM0REQ1MjdB
ODhDRjI1N0QwRTFGNkZFNzNEQzBDNzdBRDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDZ9rm75rg8Mhz1whv2zElQWgQgnYydxCk2wXDVHTPMuP6XnGvD
LlmhX0/40YJQia9GaSV/QpfKAtrps1cTi6g1zBTMYFRXOoc5L71/K5og42Kq5cwM
uVgYN4mZfGmi2tHUraasGfMMvu7E5RBL2HxjsgIFTHFK9qTnsNkt8nC2kmH7NPFV
GEVWOZ2bvqU8JyKwEWBuIUQ1GI/x6Hdk7Lzc1fw3DsAwq6za+OlbkIEaevx/+hxH
/QdjKu09Fz5VKDJcmdKTuHvv//H5qvQXelncj7D4Ay1YgG+QlEus144nA5ePlHTU
1dIX0VpZsZOMw0XL32YVWlY6f1s3XPylX5QTAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUPq/5NN1SeojPJX0OH2/nPcDHetEwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId
1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L
a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvUHFfNU5OMVNlb2pQSlgwT0gyX25Q
Y0RIZXRFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBnn+QDAN
BgkqhkiG9w0BAQsFAAOCAQEAsPItAqY35mH3OSaQLhF4b8xDCDtZjJOXynoOfvGP
lgJN6MY0uJMY6ugK8Hn/KkGljBFI5r9gF3YTOeCqVs4cOE5e1wZ4voLQvVtUvlOF
il7TYehUtoEBHTm2VIaIwHiOTdFAsp1O/a8DH8SbyjnGjcpNXd6XF5wpCI2d/1rr
8QXlT8KkicOMTZkQ4zE6WwmSPUxD8+TBz6ziQ7cfnqPMjSgFjXk0HPwHXqfNd3QZ
+Twoak2uNX1Uw3dN/aE0QeMWcZbyK2Vxu4PWcudLLBTBQeN0OmiF807NhhMpz2cC
PZGg0X0zABSfGCoQTyS2aGalkMmWa4EObCm7jmRbfIGUkQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:53 2023 by rpki-client on console-ams.rpki-client.org