Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/Xq5_sVkWnBvDD9IYLf7ENKPxpfY.roa
File: Xq5_sVkWnBvDD9IYLf7ENKPxpfY.roa (raw, json)
Hash identifier: WvOIwwSMtH48SUtKZLtNOd93CquV1MEDCqWmbTDFHPk=
Subject key identifier: 5E:AE:7F:B1:59:16:9C:1B:C3:0F:D2:18:2D:FE:C4:34:A3:F1:A5:F6
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0BFC
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/Xq5_sVkWnBvDD9IYLf7ENKPxpfY.roa
Signing time: Thu 15 Sep 2022 02:37:28 +0000
ROA not before: Thu 15 Sep 2022 02:37:28 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 121.254.104.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3068 (0xbfc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Sep 15 02:37:28 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=5EAE7FB159169C1BC30FD2182DFEC434A3F1A5F6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ba:a6:6b:f9:c2:43:05:ab:24:8d:da:2f:38:
19:ef:b9:6d:31:b0:62:19:d4:81:1e:4e:f9:b6:62:
e5:ba:32:2e:b8:0b:19:85:49:68:c3:a0:ba:a4:9c:
95:2a:8e:66:c7:11:48:8c:00:82:b2:d8:a7:ca:95:
ea:d3:b2:e2:c7:45:63:e9:65:33:76:d6:16:48:04:
70:f5:a0:45:df:ae:d2:9c:60:7a:15:0f:b4:c4:ee:
d8:6a:50:91:ca:5b:cf:f8:d0:78:a5:3c:77:37:e0:
3e:ef:7c:c4:6c:15:7f:a4:0d:f5:28:2c:b6:82:67:
85:34:4c:3d:53:73:59:5f:d5:36:e7:e3:5e:0c:45:
a1:b3:f7:32:ee:9f:24:77:2b:a1:c7:5c:11:4d:59:
81:07:e2:66:ee:fb:b7:59:5e:7e:bc:6a:f3:51:ae:
66:74:99:86:31:27:fe:da:4a:31:d3:92:dc:fd:9f:
a5:63:3a:13:3c:0e:ce:db:32:8a:ca:dd:00:50:50:
29:a4:c5:62:05:0c:12:21:f9:ac:e2:ee:12:39:6b:
e0:e5:a8:c4:42:5a:cb:93:80:41:98:c9:6a:b9:ca:
2b:5d:24:12:f4:6e:51:2a:ac:fc:73:22:ee:9b:a0:
b8:50:d8:35:32:fc:94:2c:33:36:eb:e8:40:d5:b4:
47:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:AE:7F:B1:59:16:9C:1B:C3:0F:D2:18:2D:FE:C4:34:A3:F1:A5:F6
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/Xq5_sVkWnBvDD9IYLf7ENKPxpfY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
121.254.104.0/21
Signature Algorithm: sha256WithRSAEncryption
7c:05:a4:48:3e:ba:75:30:ff:95:b7:e9:08:b8:18:ca:d6:82:
7e:18:b7:c0:66:51:ae:ed:20:57:96:0f:3a:2e:36:eb:18:29:
ab:c3:12:36:5f:c8:e4:88:11:d5:78:05:70:d6:a7:2c:49:7a:
e3:9c:a1:a3:47:8a:f8:66:75:3d:0f:ed:9b:cb:94:34:5f:fe:
a6:cc:64:ac:32:2a:e1:b5:5f:f0:96:ce:54:17:cd:3d:38:13:
7d:ed:a3:b9:87:38:8e:5b:2f:a4:81:33:cd:39:e3:f6:12:fb:
35:23:17:ae:04:d7:0b:d9:ff:5e:65:f6:f6:c1:1f:d4:04:08:
f8:ad:34:33:ee:eb:43:c4:d9:00:c5:3d:26:3f:3c:96:9b:81:
d0:b7:47:04:16:be:f9:2f:b9:c1:71:a3:e6:e2:40:1f:a4:de:
f9:69:6a:c0:23:ca:63:29:cd:3a:f6:ef:d1:95:5a:5f:b8:35:
d8:16:ce:96:2a:4e:fe:06:84:00:40:df:61:bc:9e:fc:fb:b4:
fb:1a:57:ed:de:25:2b:09:50:0c:ca:d5:88:44:d7:1d:96:e6:
79:2c:6c:6e:41:e6:24:70:21:b5:59:2a:f6:b3:1a:a1:6d:56:
0c:61:b4:fc:a2:ac:19:d1:83:fd:bd:75:b6:db:3d:02:43:51:
05:a3:53:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:01 2023 by rpki-client on console-fra.rpki-client.org