Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/tzUmFqfozURV9jQze0yp5bxMFJk.roa
File: tzUmFqfozURV9jQze0yp5bxMFJk.roa (raw, json)
Hash identifier: U2cKyoS+lFrzeUUcv1kxrU9ak6dT96MdlPxQOiMJllQ=
Subject key identifier: B7:35:26:16:A7:E8:CD:44:55:F6:34:33:7B:4C:A9:E5:BC:4C:14:99
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0BFC
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/tzUmFqfozURV9jQze0yp5bxMFJk.roa
Signing time: Thu 15 Sep 2022 02:37:26 +0000
ROA not before: Thu 15 Sep 2022 02:37:26 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 17809
IP address blocks: 203.222.0.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3068 (0xbfc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Sep 15 02:37:26 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B7352616A7E8CD4455F634337B4CA9E5BC4C1499
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:6b:36:1e:40:97:53:5e:7e:88:62:bc:7f:ef:
2a:92:48:71:f5:73:2d:ca:7c:5e:1b:6d:3e:4a:ee:
e4:71:95:9b:96:8e:ae:78:88:a1:a6:dc:71:0c:46:
de:dc:e0:e4:cd:7e:bc:79:c6:89:df:04:53:2d:34:
83:6e:b4:f7:78:49:d4:cf:2d:72:b7:3d:d4:1e:2f:
1a:2a:c6:b1:0f:fc:b1:0a:f0:ff:72:a9:d8:e6:df:
aa:85:7a:59:c7:ad:0a:6a:d5:0d:df:12:e6:b6:89:
c4:ca:f6:41:18:19:1d:9d:48:19:48:53:bb:32:95:
88:2b:e4:89:58:df:bf:51:67:7f:4b:85:c5:8e:c8:
89:36:4e:e3:b3:2e:c4:47:dc:12:ca:11:6d:92:30:
39:30:3f:cc:37:df:37:7c:67:2a:3f:b9:55:03:ec:
1c:b6:6f:02:09:de:be:67:d8:7b:11:6e:19:92:dc:
25:86:eb:bf:d6:65:31:29:a3:f0:42:ed:01:b4:30:
a7:a8:a2:31:45:a1:e3:6f:9c:1c:b8:cc:26:31:b6:
16:4f:f8:d2:47:af:4e:05:55:77:93:84:c4:62:37:
11:de:22:63:93:bd:5a:ac:ce:f3:11:a9:7a:ca:6a:
cf:e2:34:f7:77:2b:13:73:58:7c:9f:1d:c4:6c:f6:
68:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:35:26:16:A7:E8:CD:44:55:F6:34:33:7B:4C:A9:E5:BC:4C:14:99
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/tzUmFqfozURV9jQze0yp5bxMFJk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.222.0.0/21
Signature Algorithm: sha256WithRSAEncryption
50:26:49:71:19:86:11:7c:23:1e:6b:2d:5e:b8:dd:26:1b:bf:
05:97:7c:e7:ec:43:f4:5b:8a:54:5b:7b:b6:6d:25:7d:51:46:
eb:66:44:06:23:a6:11:5e:5a:12:9a:15:f5:b3:80:44:85:4c:
7c:87:2d:ac:ba:60:89:4b:cb:44:8b:79:1a:0e:1d:c5:be:e2:
95:80:13:b7:0a:1d:37:ba:ce:c1:00:6f:b7:58:e3:26:81:e4:
a2:59:78:a8:57:31:62:ec:80:3d:e7:f3:ee:ab:bf:a3:14:8f:
99:21:96:d5:a7:15:bc:31:b7:13:a3:ee:53:12:79:51:2e:65:
85:67:ab:2c:33:05:6c:17:3c:0c:a2:b9:4c:10:bf:19:21:53:
0f:32:d5:fb:76:df:4f:a1:b5:c0:3c:94:b0:42:a0:1b:66:d6:
e2:79:38:b1:cb:7a:2a:fd:77:6f:f4:03:b5:66:ba:b1:2e:cd:
9f:30:e3:67:df:9f:cb:0e:f1:45:f0:34:f5:b6:86:cf:c6:1c:
4d:3c:15:96:ec:92:55:5f:1a:41:a9:d5:4f:ae:14:75:b4:44:
fc:71:a6:51:0e:a4:24:14:a3:d1:b3:63:2f:d9:92:93:57:6a:
e7:f1:2b:cd:d0:10:1e:7a:00:3f:b0:d4:f9:bd:1f:dd:b8:5a:
33:e5:e5:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:01 2023 by rpki-client on console-fra.rpki-client.org