Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/sKkDWCT2YQBrvAqbol9eHfTneVo.roa
File: sKkDWCT2YQBrvAqbol9eHfTneVo.roa (raw, json)
Hash identifier: St5BEY478c1WuxniJyMVMKlYaOTOXVS3+liN5QgcayQ=
Subject key identifier: B0:A9:03:58:24:F6:61:00:6B:BC:0A:9B:A2:5F:5E:1D:F4:E7:79:5A
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0BFC
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/sKkDWCT2YQBrvAqbol9eHfTneVo.roa
Signing time: Thu 15 Sep 2022 02:37:20 +0000
ROA not before: Thu 15 Sep 2022 02:37:20 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 111.67.48.0/20 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3068 (0xbfc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Sep 15 02:37:20 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B0A9035824F661006BBC0A9BA25F5E1DF4E7795A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:a3:e2:f0:77:a4:65:6d:f1:fb:e9:cf:2e:ea:
0e:d5:89:38:d7:de:ee:54:4d:03:31:ae:88:38:87:
82:05:39:b6:5b:cd:3f:ca:38:f5:03:f1:e0:7d:06:
b6:a7:f4:8d:12:1a:2f:01:6c:bb:60:d1:54:7a:fc:
ab:5a:c9:c0:03:53:dc:1c:d3:be:e9:6c:29:6b:24:
2c:69:2d:b4:aa:7b:57:51:9a:d8:a8:a0:fe:4a:ab:
8d:6a:98:0f:08:9a:7e:fe:f9:42:8a:2c:8c:1d:85:
56:3c:41:a0:cc:c9:57:af:7e:8c:ad:17:22:56:da:
7c:f3:8c:e2:ef:26:bf:1e:f5:97:b4:82:bb:28:b2:
e0:ca:5c:fd:31:dc:eb:9e:a3:b6:83:ae:d4:28:b4:
64:73:9d:a6:2b:7b:d8:87:79:fa:58:56:da:ba:3d:
7c:35:3a:07:3c:d3:f4:57:34:fe:b6:f8:84:50:5e:
f4:d0:59:d9:6e:60:1b:09:aa:31:80:3b:e8:7c:3c:
74:42:06:27:06:7e:f5:de:15:df:4d:03:cb:82:ce:
75:65:32:59:cf:3d:0a:2e:4b:b2:93:5a:f8:1e:59:
f4:6f:80:16:b1:58:36:29:d0:ba:56:11:a5:b6:c5:
3f:40:7e:94:9f:da:aa:b8:13:56:c8:d8:f3:3f:7e:
77:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:A9:03:58:24:F6:61:00:6B:BC:0A:9B:A2:5F:5E:1D:F4:E7:79:5A
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/sKkDWCT2YQBrvAqbol9eHfTneVo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
111.67.48.0/20
Signature Algorithm: sha256WithRSAEncryption
05:29:b9:b9:51:83:d0:81:82:e0:e4:27:96:9d:93:ff:d5:4d:
98:e0:3c:86:98:6b:12:58:e9:b7:1d:5e:15:dd:27:dc:1d:26:
ff:c4:8b:3c:d8:2c:f6:d0:16:10:52:02:af:a7:f5:48:63:96:
fd:33:53:60:c1:89:19:a4:5b:a6:7d:8f:e2:12:82:7f:cb:2e:
5a:67:c2:67:f7:83:45:06:86:f5:41:ca:3b:c9:99:9b:9a:9a:
21:0f:e1:9c:68:3b:e1:b5:3f:56:50:58:b1:f5:f6:44:dc:24:
75:4a:19:c5:76:63:8a:c8:21:06:20:a9:0e:ce:a9:3b:86:e9:
48:ea:26:3f:9b:be:ec:60:4b:d8:4d:88:68:1b:0f:fa:19:df:
c3:58:5d:3f:3b:35:3d:73:85:96:84:df:39:8f:20:82:30:60:
d2:f7:a4:77:71:0c:3c:25:72:9a:68:87:f7:e1:0e:b0:bc:34:
57:cc:6e:32:d0:db:e2:69:4a:c5:27:a1:e9:e1:45:0a:4d:db:
c4:3a:e8:c6:76:d1:d7:5b:13:64:15:4a:e7:60:3c:86:e1:73:
1a:06:b0:a8:5f:00:dc:a9:77:4d:a7:9b:53:4c:93:6b:d3:9c:
c3:97:9e:df:00:54:61:2c:c1:e8:72:29:4f:55:aa:d0:37:51:
d5:95:d4:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:01 2023 by rpki-client on console-fra.rpki-client.org