Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/d4Lw7v9lcMvslEjDjTzWsR-oOPo.roa
File: d4Lw7v9lcMvslEjDjTzWsR-oOPo.roa (raw, json)
Hash identifier: n3+c/dSaalMbmKgFsVXRT4pq1Th0WNb4kjp7NJI0tFQ=
Subject key identifier: 77:82:F0:EE:FF:65:70:CB:EC:94:48:C3:8D:3C:D6:B1:1F:A8:38:FA
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0D8F
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/d4Lw7v9lcMvslEjDjTzWsR-oOPo.roa
Signing time: Mon 31 Jul 2023 03:00:40 +0000
ROA not before: Mon 31 Jul 2023 03:00:40 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 113.61.175.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3471 (0xd8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Jul 31 03:00:40 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=7782F0EEFF6570CBEC9448C38D3CD6B11FA838FA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:96:2f:4f:11:8d:cf:3e:53:c3:af:40:c7:6d:
d4:88:0c:59:30:83:9a:37:34:8f:c7:df:03:36:e3:
52:d8:a9:3f:eb:04:b0:72:fd:c2:c6:01:02:8f:42:
52:56:5a:a2:e1:71:94:ba:69:fe:04:06:68:11:92:
da:8c:1c:2e:74:a3:51:75:56:7a:49:9f:59:c8:f8:
02:ee:95:28:72:c1:2f:85:dc:63:a6:22:af:98:49:
94:4a:e7:b0:07:b4:a0:b0:29:22:76:43:70:94:c7:
2c:78:45:95:5d:aa:0c:25:2f:b7:fc:59:ba:25:7a:
cd:98:a3:5b:8a:99:20:3a:39:11:69:23:de:f3:ee:
b0:a7:6b:aa:ca:2b:9c:dd:77:13:43:3c:90:43:47:
a8:93:4d:05:79:2b:bc:84:c5:00:f6:63:01:d9:9e:
bc:be:ca:de:6d:1b:a6:92:c9:e9:41:a7:a2:84:3a:
66:17:a7:2c:77:6a:d8:b6:82:b3:c9:39:0c:78:3e:
0f:6e:73:fc:81:1e:90:4e:56:17:4e:96:9b:46:ac:
87:14:c1:2f:24:69:88:0f:03:a5:65:d2:ee:ed:b6:
c5:a7:3b:d4:e2:64:16:fa:a6:4b:58:5a:4d:d6:c0:
73:46:2f:35:34:84:4d:14:ca:aa:cc:51:80:82:25:
8f:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:82:F0:EE:FF:65:70:CB:EC:94:48:C3:8D:3C:D6:B1:1F:A8:38:FA
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/d4Lw7v9lcMvslEjDjTzWsR-oOPo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.61.175.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:ca:dd:04:2b:5d:32:9c:5c:bc:6c:5a:df:9a:f5:4b:5f:26:
fd:77:16:16:c0:0d:8d:b4:60:09:d9:ec:a3:76:09:e3:b8:ab:
51:9c:07:38:bb:9c:94:40:6c:20:f5:7d:6b:a5:a7:5b:90:b5:
2e:c8:4a:bf:f7:a8:d3:93:9d:33:56:0f:2e:a0:2f:a3:db:be:
ad:23:f2:7c:ff:06:6f:7d:b9:1d:b5:dd:2b:b9:c0:1c:d2:9c:
4c:d3:45:b3:e0:b6:a3:0c:af:64:9a:d2:8d:d0:cf:cf:10:87:
5a:88:ac:94:80:b8:64:84:32:f9:ad:8e:f5:c1:f0:8b:a5:13:
07:52:d5:bd:ec:a1:c4:5b:d9:98:32:7b:99:a5:44:1f:e8:da:
c6:36:5b:2c:03:e2:cc:b2:92:3a:86:81:c8:d1:ae:6a:b4:3a:
12:b0:b1:79:86:12:79:2f:00:01:63:cf:9d:e7:84:84:e1:d3:
fa:89:71:3f:64:4d:af:0c:48:6b:c5:4a:22:e9:39:91:69:61:
c7:c6:66:40:ee:88:06:17:b2:c7:41:4d:3d:a3:18:1d:a9:6a:
0f:b9:3b:84:21:c4:73:8f:02:35:68:90:65:02:70:da:78:ed:
96:58:60:70:ae:93:00:f6:17:cd:84:ef:1d:2c:a2:9e:7d:1c:
cf:17:5f:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:23:39 2023 by rpki-client on console-ams.rpki-client.org