Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/tksBFVFrYFmIYNu6W00CiFvS1XA.roa
File: tksBFVFrYFmIYNu6W00CiFvS1XA.roa (raw, json)
Hash identifier: RafmwVGrJiTFjvUksM7L4ogQwQmVTsU9knpGAmJEGZ4=
Subject key identifier: B6:4B:01:15:51:6B:60:59:88:60:DB:BA:5B:4D:02:88:5B:D2:D5:70
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0CF1
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/tksBFVFrYFmIYNu6W00CiFvS1XA.roa
Signing time: Wed 26 Apr 2023 10:31:22 +0000
ROA not before: Wed 26 Apr 2023 10:31:22 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 210.209.160.0/19 maxlen: 19
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3313 (0xcf1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 26 10:31:22 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B64B0115516B60598860DBBA5B4D02885BD2D570
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:bb:98:61:8a:fc:30:a1:f4:45:97:fe:68:4c:
ab:56:a2:36:e8:7c:a2:d5:15:14:e4:ae:30:41:6d:
0b:f1:98:72:0f:90:e1:15:16:81:fb:fd:27:6a:c0:
3c:58:28:51:81:20:96:b1:7c:1e:72:9f:22:01:ec:
4d:09:8c:f6:67:e8:52:7d:a9:e3:4d:8b:c9:56:c9:
86:22:9c:2a:d8:16:48:b2:4f:c2:56:2e:63:6b:70:
b6:21:7f:b1:22:98:8d:f0:9b:bc:81:01:a6:36:8a:
02:dc:3b:e7:ff:70:4d:81:8c:84:c0:5d:ba:d6:0e:
a1:24:46:80:d3:45:10:6f:58:54:14:b5:e4:ce:4e:
be:39:1c:9f:0f:4d:e3:d2:c3:85:49:fd:f0:cf:40:
9d:8d:e0:29:44:c5:0e:7e:57:0b:8f:da:f2:63:c3:
4e:f9:ab:ce:db:81:30:74:72:06:da:fb:ca:a8:b1:
12:66:2f:26:55:36:cb:c2:94:67:38:64:54:21:7c:
cf:a9:8b:01:0e:07:01:92:13:f1:f7:c6:0f:34:08:
a1:c5:cc:4b:04:31:6f:71:9d:f3:57:f1:03:f3:36:
35:e0:11:ae:71:df:eb:45:ab:b4:91:91:4d:25:07:
4c:00:4f:1e:f4:65:da:ef:0c:9e:fc:c2:ed:b1:de:
ad:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:4B:01:15:51:6B:60:59:88:60:DB:BA:5B:4D:02:88:5B:D2:D5:70
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/tksBFVFrYFmIYNu6W00CiFvS1XA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.209.160.0/19
Signature Algorithm: sha256WithRSAEncryption
1d:25:3f:39:a4:a0:11:05:00:49:0b:53:9a:aa:a9:8f:1d:68:
c4:4f:5a:15:e2:1a:76:d1:87:8b:7d:e4:4e:71:8c:78:50:c1:
e3:26:ab:e0:5e:07:a6:e8:d9:56:96:eb:97:a2:5e:54:84:6d:
e8:2f:c4:5a:d9:f3:87:2e:23:de:b0:00:7c:a2:78:a6:53:2e:
52:09:59:d7:46:96:4c:94:1b:d7:29:34:ee:d2:d1:99:08:59:
5c:a5:4c:00:51:eb:97:d7:2a:12:c5:d2:42:bd:fe:6e:8a:64:
e6:ab:3c:eb:c5:25:7f:45:c7:0f:24:b3:7b:1c:51:2c:e4:dc:
4f:ac:10:52:d7:77:77:96:62:0b:39:5c:ec:d3:e8:28:61:50:
12:54:90:5a:81:dc:d2:ef:60:91:86:51:b9:30:6c:05:3c:23:
3d:1f:9e:31:05:5b:b5:71:e7:05:eb:ca:e0:55:8f:b2:8e:89:
9f:2e:69:ef:7d:48:e5:c7:89:1f:57:68:13:1e:02:d1:1c:1c:
60:c6:86:4a:ba:7f:0c:2b:63:f5:58:b7:b6:a1:9a:66:fe:10:
d0:68:a6:11:2c:af:6e:6a:a1:45:4b:25:99:67:05:25:78:49:
0b:3e:76:d7:d9:a8:d3:02:36:aa:52:a7:4e:10:a9:a2:55:d0:
b1:4b:40:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 09:23:39 2023 by rpki-client on console-ams.rpki-client.org