Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/-1nsQsoCpk9yYJZAziCko4lu_rM.roa
File: -1nsQsoCpk9yYJZAziCko4lu_rM.roa (raw, json)
Hash identifier: t6VCuB8bKCaPkxN87B+cG0Nq0IwDuIVPN7I2JIL2aFo=
Subject key identifier: FB:59:EC:42:CA:02:A6:4F:72:60:96:40:CE:20:A4:A3:89:6E:FE:B3
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/-1nsQsoCpk9yYJZAziCko4lu_rM.roa
Signing time: Thu 15 Sep 2022 02:47:32 +0000
ROA not before: Thu 15 Sep 2022 02:47:32 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9924
IP address blocks: 210.17.20.0/24 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:47:32 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=FB59EC42CA02A64F72609640CE20A4A3896EFEB3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:d9:71:c4:ba:b2:34:90:e7:a6:62:96:c6:c5:
d4:25:64:b3:76:e0:60:df:60:5a:21:13:e3:98:48:
e3:01:14:14:0a:ca:4b:27:d6:ce:01:9f:71:60:36:
9d:b0:1c:3d:83:e6:34:fb:69:5a:63:d7:46:97:35:
eb:50:3d:ce:17:6d:80:75:a5:80:10:89:b3:50:75:
cf:58:a4:87:6d:ee:f4:95:ab:48:b9:52:45:e9:94:
f1:91:e7:0b:14:4b:1e:3d:11:e8:3c:a4:91:ca:05:
80:a4:d2:61:5c:62:fc:1c:06:63:2a:8a:73:62:65:
3e:5a:bc:48:2b:1b:92:ee:7a:a0:7e:7b:c1:3b:89:
ec:7a:19:dc:28:9a:fd:b2:09:19:b8:b2:bc:7f:b1:
8f:ed:00:ac:57:d6:bd:94:00:d3:79:b9:66:c0:5c:
fd:68:4b:9e:30:55:cc:1b:ca:8d:b4:db:39:f9:d4:
32:b9:aa:5b:59:0c:c5:06:5e:75:bb:11:10:ec:4f:
31:a5:eb:82:3c:8b:6b:68:b3:c1:ad:e4:51:54:90:
c7:02:e3:44:70:dc:43:6a:73:c3:95:89:5d:9f:40:
36:cd:1f:d5:bf:a6:9b:ac:f8:e8:d0:c0:8f:f7:af:
95:39:3f:47:ae:98:fe:6b:05:17:52:66:fa:69:a0:
7c:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:59:EC:42:CA:02:A6:4F:72:60:96:40:CE:20:A4:A3:89:6E:FE:B3
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/-1nsQsoCpk9yYJZAziCko4lu_rM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.20.0/24
Signature Algorithm: sha256WithRSAEncryption
22:35:2a:88:d7:6b:c8:eb:23:c5:39:ed:6d:47:eb:39:46:80:
0d:d1:2e:f8:ab:95:be:07:f1:a2:c0:0c:9d:31:73:08:e7:db:
5f:0f:7d:65:83:af:c3:76:61:6d:87:05:59:5d:9a:a3:c1:98:
88:dc:99:dd:92:bf:ac:f4:4e:22:9d:d8:df:2e:fb:22:df:0b:
9e:f1:f4:e5:df:24:08:58:00:c7:c2:61:31:a2:9d:33:17:b0:
cf:c7:05:95:4b:8c:9e:d5:94:88:9f:d1:8e:96:64:13:f9:c8:
07:d1:a2:9a:07:c5:42:3c:f8:e5:01:ea:81:22:1f:3b:7e:93:
90:2d:e6:3c:38:ef:b0:d1:2c:20:a1:fb:6e:4f:a7:c4:8d:e4:
82:8c:c0:87:7a:ac:d0:9d:40:67:95:b1:85:ae:22:ff:f1:38:
d4:66:3d:84:09:0d:0e:5d:10:26:64:9f:1a:71:f3:22:04:a8:
9d:70:b3:42:14:c8:9e:3a:28:ce:71:79:1e:98:ff:87:c3:42:
ea:fc:a9:1f:32:c6:bf:57:47:12:ca:33:3a:f5:11:99:3f:07:
73:47:db:38:22:89:b4:b7:64:a1:a5:4e:63:72:6d:e1:e3:f9:
c2:bf:ef:a8:ef:30:c5:72:1d:94:a4:ef:cc:3e:25:ed:a5:f5:
5a:a3:5b:ed
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICDckwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMjA5MTUw
MjQ3MzJaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEZCNTlFQzQyQ0EwMkE2
NEY3MjYwOTY0MENFMjBBNEEzODk2RUZFQjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDI2XHEurI0kOemYpbGxdQlZLN24GDfYFohE+OYSOMBFBQKyksn
1s4Bn3FgNp2wHD2D5jT7aVpj10aXNetQPc4XbYB1pYAQibNQdc9YpIdt7vSVq0i5
UkXplPGR5wsUSx49Eeg8pJHKBYCk0mFcYvwcBmMqinNiZT5avEgrG5LueqB+e8E7
iex6Gdwomv2yCRm4srx/sY/tAKxX1r2UANN5uWbAXP1oS54wVcwbyo202zn51DK5
qltZDMUGXnW7ERDsTzGl64I8i2tos8Gt5FFUkMcC40Rw3ENqc8OViV2fQDbNH9W/
ppus+OjQwI/3r5U5P0eumP5rBRdSZvppoHzZAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQU+1nsQsoCpk9yYJZAziCko4lu/rMwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvLTFuc1Fzb0Nwazl5WUpa
QXppQ2tvNGx1X3JNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
ANIRFDANBgkqhkiG9w0BAQsFAAOCAQEAIjUqiNdryOsjxTntbUfrOUaADdEu+KuV
vgfxosAMnTFzCOfbXw99ZYOvw3ZhbYcFWV2ao8GYiNyZ3ZK/rPROIp3Y3y77It8L
nvH05d8kCFgAx8JhMaKdMxewz8cFlUuMntWUiJ/RjpZkE/nIB9GimgfFQjz45QHq
gSIfO36TkC3mPDjvsNEsIKH7bk+nxI3kgozAh3qs0J1AZ5Wxha4i//E41GY9hAkN
Dl0QJmSfGnHzIgSonXCzQhTInjooznF5Hpj/h8NC6vypHzLGv1dHEsozOvURmT8H
c0fbOCKJtLdkoaVOY3Jt4eP5wr/vqO8wxXIdlKTvzD4l7aX1WqNb7Q==
-----END CERTIFICATE-----
Generated at Fri Sep 1 10:21:49 2023 by rpki-client on console-ams.rpki-client.org