Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/WLsdkiy4i3IDH5Ejr14Q0Csf3oQ.roa
File: WLsdkiy4i3IDH5Ejr14Q0Csf3oQ.roa (raw, json)
Hash identifier: RxCjtSb8XUEPrhl8KbVwccbaLKXR8BinV8f8uAh3SUE=
Subject key identifier: 58:BB:1D:92:2C:B8:8B:72:03:1F:91:23:AF:5E:10:D0:2B:1F:DE:84
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0CC1
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/WLsdkiy4i3IDH5Ejr14Q0Csf3oQ.roa
Signing time: Wed 26 Apr 2023 06:25:04 +0000
ROA not before: Wed 26 Apr 2023 06:25:04 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 203.217.96.0/19 maxlen: 19
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3265 (0xcc1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 06:25:04 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=58BB1D922CB88B72031F9123AF5E10D02B1FDE84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:14:86:89:bd:ed:7a:c0:5b:16:0b:04:ce:e4:
d2:4a:fa:81:d8:23:a4:a6:04:49:0d:6a:17:a4:15:
ad:59:6c:72:9b:b4:2d:9b:cf:ed:f7:3c:41:de:70:
81:6b:dc:60:39:c8:e0:a4:e8:11:0b:2f:cf:89:ad:
58:93:1b:32:3d:09:46:25:14:cd:23:53:f4:80:55:
c4:58:70:92:e9:0a:01:6b:a9:1b:97:60:b5:94:e6:
83:ea:dd:ab:31:1f:f2:77:0d:44:af:3f:ce:1a:a3:
f3:8f:d9:b0:40:b0:67:65:ee:d1:20:ee:8e:93:40:
d6:e4:a0:e3:ed:36:64:b9:93:a0:ff:df:88:7f:68:
cd:16:e6:63:b2:71:60:f0:20:78:8f:77:3a:1d:11:
c9:da:5e:9c:aa:10:3d:ac:c2:16:20:33:fd:3f:45:
6b:0b:97:7d:ab:ff:ee:73:fa:75:35:89:07:7d:75:
e5:87:28:3f:0d:48:ab:79:83:b9:b0:9b:46:9c:13:
84:cd:c7:ea:31:a5:bc:6f:63:36:00:ef:13:3b:11:
33:07:ef:55:e7:c6:cd:17:23:b8:fd:37:60:7d:d4:
4b:6c:69:15:6a:8d:fb:5a:2a:3c:28:73:c1:ff:7f:
60:40:0d:de:02:1a:19:31:19:f4:7a:e2:28:4f:77:
65:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:BB:1D:92:2C:B8:8B:72:03:1F:91:23:AF:5E:10:D0:2B:1F:DE:84
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/WLsdkiy4i3IDH5Ejr14Q0Csf3oQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.217.96.0/19
Signature Algorithm: sha256WithRSAEncryption
9e:06:60:0c:0b:ca:0a:e2:62:1e:fe:f6:4b:52:26:8d:9a:1f:
0e:c2:46:cc:55:0c:b3:a3:3d:a9:2e:0f:43:cb:0f:78:ae:9f:
a0:79:11:23:fd:c8:07:2e:a4:5b:bf:0c:f8:f1:ff:0b:d6:67:
2a:3b:6c:f8:c1:e7:b5:dd:d5:97:0c:34:6f:8f:4b:fa:01:a8:
08:b7:6e:48:ce:f2:1e:93:8a:01:59:6c:dd:f7:f9:00:24:d0:
22:6b:4a:3d:e8:a4:c2:b5:04:de:c4:6c:6f:60:f1:1f:34:41:
76:6d:02:5f:77:67:27:0b:0d:09:8c:24:ed:91:0e:72:a5:93:
e9:48:c8:94:b7:3b:a7:2d:9d:80:9a:6d:68:de:8b:37:63:ac:
b1:d6:aa:e9:11:7b:ea:cc:ed:bc:26:71:3a:66:8e:fd:d1:a9:
41:6d:77:9c:4a:92:b2:f3:6c:30:6c:41:2c:9d:50:a3:de:8e:
f8:00:d0:7c:2a:36:6b:68:48:dd:60:9b:bc:a0:9a:8f:ad:c0:
e6:4f:32:51:84:61:5a:6d:2c:e4:cd:ce:d5:07:51:16:0f:c0:
f3:47:8d:f3:f5:19:d3:c1:16:14:72:eb:39:57:fe:67:50:e0:
55:e2:53:5d:9c:f1:83:38:96:4f:63:6e:a0:71:d8:0a:c9:8c:
a0:ce:34:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:01 2023 by rpki-client on console-fra.rpki-client.org