Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/StSG2W5MfjByUdHTJC1XqYL0QUs.roa
File: StSG2W5MfjByUdHTJC1XqYL0QUs.roa (raw, json)
Hash identifier: z6Seb4HNSizHpP/ZzEbYyZPkq2ZP5yNxdMWbb0Ffeq0=
Subject key identifier: 4A:D4:86:D9:6E:4C:7E:30:72:51:D1:D3:24:2D:57:A9:82:F4:41:4B
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0CF4
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/StSG2W5MfjByUdHTJC1XqYL0QUs.roa
Signing time: Wed 26 Apr 2023 10:31:23 +0000
ROA not before: Wed 26 Apr 2023 10:31:23 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 182.155.0.0/17 maxlen: 17
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3316 (0xcf4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 10:31:23 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=4AD486D96E4C7E307251D1D3242D57A982F4414B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:d7:70:24:9e:95:99:00:44:65:f7:27:7b:b7:
fa:6a:d7:6c:32:87:73:12:d3:ae:b0:c6:42:2c:01:
97:1f:0e:ec:12:6a:b5:b8:b8:f1:e5:2f:70:b5:2a:
1f:41:fa:db:19:12:8e:e7:e0:4e:78:ed:42:fd:9d:
04:cc:af:2f:fe:a9:ad:67:b6:4f:ae:69:96:3d:31:
4a:be:c8:9d:0e:da:81:5f:2e:ab:0e:40:8d:58:e1:
9b:fe:2b:53:40:75:c1:31:89:19:ca:aa:30:59:5b:
66:12:10:df:c7:2c:1c:b7:ab:1b:92:1a:9e:d0:9e:
f3:39:4a:0f:dc:2b:1b:30:7b:2f:09:80:49:ac:60:
f4:ee:c3:be:aa:d8:f7:51:6a:e6:52:77:7f:0a:8e:
11:3e:a7:c8:f5:94:91:d4:aa:71:79:2a:d5:90:44:
4b:90:53:9a:1e:1e:4d:6c:17:cf:1a:81:26:b2:59:
a5:21:b6:06:ea:cd:b0:60:50:db:1c:12:77:4b:a1:
e3:f7:bf:2c:77:d2:38:b7:9f:66:8a:5f:26:b9:69:
d4:bb:f2:ec:98:ae:65:6a:84:9f:44:7e:63:ff:99:
b4:b0:9a:aa:35:d5:9a:90:35:d5:95:81:0f:ed:12:
01:83:b7:a7:fc:7a:b0:cf:31:0b:c1:51:95:7f:a6:
8c:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:D4:86:D9:6E:4C:7E:30:72:51:D1:D3:24:2D:57:A9:82:F4:41:4B
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/StSG2W5MfjByUdHTJC1XqYL0QUs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
182.155.0.0/17
Signature Algorithm: sha256WithRSAEncryption
09:e9:27:4f:85:83:07:ad:c1:cc:0a:99:46:30:fc:5a:b4:f0:
6b:ab:8c:41:c4:b8:7c:6d:a4:fd:30:00:c9:e6:be:db:c3:9f:
40:bd:41:75:96:8e:79:84:27:bd:1c:02:f8:6d:e9:33:7c:ed:
bc:92:07:b1:18:16:c2:b7:04:d6:22:ee:6d:8a:e7:0e:b7:62:
17:2b:f5:50:3f:d9:63:82:c3:f8:ec:ff:6a:8d:d5:3c:4c:e9:
55:96:8e:eb:07:f0:b6:6e:e0:d3:d0:05:dd:57:07:f3:6a:d4:
8c:a0:8a:14:be:b5:0a:f7:27:50:82:d4:bb:0a:3e:c1:fb:3c:
85:78:06:f5:59:7f:69:c6:c5:2d:08:de:e7:51:18:cb:b7:6a:
40:90:64:70:09:ac:e7:7d:14:84:d2:d5:f1:44:a3:52:68:52:
fa:b4:92:24:22:64:0d:c0:ce:6f:98:5e:fd:ce:99:24:f8:03:
24:02:4b:9b:00:e8:97:f3:00:7e:67:82:09:0c:4e:d8:3e:a9:
88:d2:c4:47:ce:cb:dd:8b:b3:d6:c1:97:e8:8d:0a:f8:f0:d1:
e6:77:9d:ac:b2:5b:03:60:ba:04:56:26:fc:4c:03:7e:e4:ca:
4a:83:1a:23:71:17:4a:3a:19:7f:15:cd:3a:63:7c:bd:b6:87:
92:0e:8f:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:28:13 2023 by rpki-client on console-fra.rpki-client.org