Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/UpXNgTRqgOj1ZAumVNvghEkP9QQ.roa
File: UpXNgTRqgOj1ZAumVNvghEkP9QQ.roa (raw, json)
Hash identifier: UaXo0tLBeeC8P1c4KD1xm4+evCduFeUALxi8sTk1Ymo=
Subject key identifier: 52:95:CD:81:34:6A:80:E8:F5:64:0B:A6:54:DB:E0:84:49:0F:F5:04
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0D07
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/UpXNgTRqgOj1ZAumVNvghEkP9QQ.roa
Signing time: Wed 26 Apr 2023 10:31:27 +0000
ROA not before: Wed 26 Apr 2023 10:31:27 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 210.209.224.0/19 maxlen: 19
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3335 (0xd07)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 10:31:27 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=5295CD81346A80E8F5640BA654DBE084490FF504
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:34:2b:8d:02:31:7e:fb:eb:f5:77:b5:a5:37:
df:ac:f3:1c:6b:05:2d:9c:2f:6b:66:15:14:7d:9b:
ac:af:2d:3c:48:bc:61:8b:b7:ac:ed:cd:73:2b:92:
a2:c7:c0:be:35:fd:55:52:ea:0b:21:79:9c:77:70:
d7:13:51:9b:b4:56:9c:b5:22:e8:b4:02:6a:f1:2b:
6d:0c:85:f6:3e:2d:68:f1:a9:8c:16:b9:4a:0b:9d:
e4:23:a1:4b:88:61:24:41:c0:19:c4:5b:ae:2d:ee:
97:8e:f3:81:32:a8:04:9e:d2:40:d6:b8:67:0e:38:
2f:89:1a:6a:a2:e6:33:a3:b7:0e:0f:a3:62:8f:21:
8d:e9:e3:ee:78:ae:e6:a7:56:f2:56:f3:4f:41:4a:
5e:ab:9f:4f:80:79:13:49:c4:3a:eb:41:81:e2:a0:
98:d9:cf:52:01:bc:a3:9c:8d:c4:12:3d:1f:84:97:
0d:31:2e:bc:c1:64:de:d9:87:ec:f8:3e:bb:e8:a9:
99:36:07:52:de:da:da:af:d5:23:4b:16:d5:41:95:
b4:21:e3:c9:37:2e:9d:c0:db:2d:c4:9f:2b:7b:99:
1a:6a:e1:ec:f2:df:0a:66:a9:a6:27:60:25:94:5c:
5a:20:c2:65:ba:69:1f:6b:ae:db:f5:81:a1:03:46:
f4:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:95:CD:81:34:6A:80:E8:F5:64:0B:A6:54:DB:E0:84:49:0F:F5:04
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/UpXNgTRqgOj1ZAumVNvghEkP9QQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.209.224.0/19
Signature Algorithm: sha256WithRSAEncryption
29:67:ec:e7:9f:4a:33:5b:e2:bc:8b:3d:f4:a8:a3:49:eb:e0:
18:c8:19:92:09:e0:29:cd:37:c6:6f:e7:36:b7:e1:f0:de:03:
2d:c6:1e:53:ec:9b:4d:e9:1d:d1:d6:9d:55:17:fa:f9:74:a8:
7d:dd:64:ff:58:6e:ef:5b:36:c5:4c:34:5f:9a:5a:d4:93:cb:
78:4d:99:06:f3:53:7f:a4:4e:4d:72:48:4e:13:7c:c3:6c:66:
0f:01:2d:0b:da:85:e4:aa:1a:d0:09:4d:2b:83:3c:d4:6b:83:
b9:54:f1:7e:92:b1:14:c4:6f:0e:37:01:b8:e9:0a:4a:22:8f:
88:cb:a2:1d:7e:ac:a4:c7:8c:27:b3:fa:cb:e8:6e:bd:0c:92:
d2:77:df:af:d4:1b:97:e9:f7:fb:f5:fe:25:7a:7c:b7:2a:16:
32:83:ce:c7:96:59:a2:59:b4:69:01:9f:76:23:3e:72:2e:d5:
b5:3e:c6:65:7f:3a:42:62:77:1c:16:22:6f:df:48:af:2d:ce:
62:a0:a2:77:54:fd:0b:45:b2:1c:f3:a8:9e:76:f6:83:41:1e:
49:70:0e:28:fc:6f:fb:a8:a2:c2:e3:04:11:53:11:33:47:94:
7b:30:a1:2b:46:70:9c:6f:bc:7a:1d:0a:5d:1c:cb:f8:0b:43:
3b:24:0a:d4
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICDQcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0
NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yMzA0MjYx
MDMxMjdaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDUyOTVDRDgxMzQ2QTgw
RThGNTY0MEJBNjU0REJFMDg0NDkwRkY1MDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDANCuNAjF+++v1d7WlN9+s8xxrBS2cL2tmFRR9m6yvLTxIvGGL
t6ztzXMrkqLHwL41/VVS6gsheZx3cNcTUZu0Vpy1Iui0AmrxK20MhfY+LWjxqYwW
uUoLneQjoUuIYSRBwBnEW64t7peO84EyqASe0kDWuGcOOC+JGmqi5jOjtw4Po2KP
IY3p4+54ruanVvJW809BSl6rn0+AeRNJxDrrQYHioJjZz1IBvKOcjcQSPR+Elw0x
LrzBZN7Zh+z4PrvoqZk2B1Le2tqv1SNLFtVBlbQh48k3Lp3A2y3Enyt7mRpq4ezy
3wpmqaYnYCWUXFogwmW6aR9rrtv1gaEDRvTnAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUUpXNgTRqgOj1ZAumVNvghEkP9QQwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId
1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L
a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvVXBYTmdUUnFnT2oxWkF1bVZOdmdo
RWtQOVFRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBdLR4DAN
BgkqhkiG9w0BAQsFAAOCAQEAKWfs559KM1vivIs99KijSevgGMgZkgngKc03xm/n
Nrfh8N4DLcYeU+ybTekd0dadVRf6+XSofd1k/1hu71s2xUw0X5pa1JPLeE2ZBvNT
f6ROTXJIThN8w2xmDwEtC9qF5Koa0AlNK4M81GuDuVTxfpKxFMRvDjcBuOkKSiKP
iMuiHX6spMeMJ7P6y+huvQyS0nffr9Qbl+n3+/X+JXp8tyoWMoPOx5ZZolm0aQGf
diM+ci7VtT7GZX86QmJ3HBYib99Iry3OYqCid1T9C0WyHPOonnb2g0EeSXAOKPxv
+6iiwuMEEVMRM0eUezChK0ZwnG+8eh0KXRzL+AtDOyQK1A==
-----END CERTIFICATE-----
Generated at Fri Sep 1 09:23:39 2023 by rpki-client on console-ams.rpki-client.org