Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/1ir49Jpq3zIMdfyLiu0Lh0WI1uw.roa
File: 1ir49Jpq3zIMdfyLiu0Lh0WI1uw.roa (raw, json)
Hash identifier: W5RRvBMiwfvk5zDYnyJiC458vX6KdbjHE+fK9/rsex8=
Subject key identifier: D6:2A:F8:F4:9A:6A:DF:32:0C:75:FC:8B:8A:ED:0B:87:45:88:D6:EC
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 11D1
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/1ir49Jpq3zIMdfyLiu0Lh0WI1uw.roa
Signing time: Mon 26 Aug 2024 05:24:24 +0000
ROA not before: Mon 26 Aug 2024 05:24:24 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9924
IP address blocks: 202.145.128.0/17 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:08:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4561 (0x11d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Aug 26 05:24:24 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=D62AF8F49A6ADF320C75FC8B8AED0B874588D6EC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:30:61:ba:af:d1:3f:84:bf:9d:af:bd:03:46:
b2:d0:86:e7:c0:09:00:be:cb:a0:5e:cb:32:4d:2b:
62:e9:a1:2d:bc:35:d1:ea:18:f5:9c:5b:6c:cf:b6:
0e:b2:4b:d4:e4:13:ca:02:aa:b1:f2:61:72:8c:c2:
9b:a0:9c:2e:fe:e9:30:b7:9e:64:eb:d5:a3:5f:64:
fd:fe:c7:78:67:40:40:43:cc:51:7d:9b:2f:41:81:
81:94:ae:61:eb:8a:d4:d5:b6:a8:7c:74:b6:ff:89:
d7:a8:71:c8:20:d5:4d:c6:07:a1:ae:fc:b7:ab:41:
f6:7e:40:4e:09:5d:f0:92:f6:38:62:fc:05:a4:cd:
f8:e9:5b:7b:aa:9b:77:51:b0:8e:d3:f0:9b:39:62:
83:62:13:36:f9:50:50:73:85:19:5e:1f:c1:39:1a:
0f:be:2a:db:de:d7:38:e9:b0:49:d9:cf:71:3b:c3:
8c:c4:6a:75:9a:b0:94:10:1c:e5:46:bc:46:b2:0f:
fd:1e:65:68:3e:98:1a:2a:ed:7a:ea:6d:4e:41:aa:
f4:e6:e1:14:a3:5a:6a:f3:ff:6b:fa:1a:5c:8c:b6:
52:58:11:ea:b1:aa:8e:ee:18:9c:9a:f3:10:29:60:
cc:f9:cc:74:5c:ff:e5:85:69:21:a8:f9:03:6e:58:
fa:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:2A:F8:F4:9A:6A:DF:32:0C:75:FC:8B:8A:ED:0B:87:45:88:D6:EC
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/1ir49Jpq3zIMdfyLiu0Lh0WI1uw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.145.128.0/17
Signature Algorithm: sha256WithRSAEncryption
08:43:fb:d3:6c:1d:12:c0:c7:79:c5:f6:08:5e:49:0d:7c:66:
8e:3d:17:15:c2:72:1d:d0:a7:4d:c7:a5:0c:52:e5:0d:98:59:
ed:16:62:85:6b:d3:96:11:55:1a:93:c9:12:cb:8b:38:dc:8f:
13:a9:95:87:2a:c9:9e:4b:bd:ba:65:65:f8:62:24:d6:9b:58:
6c:5e:16:35:92:e7:9b:f5:fb:58:37:31:9d:f4:52:9b:f4:ed:
00:96:68:01:94:7b:e3:24:d8:38:17:e8:c3:e4:1c:26:79:bc:
da:9d:13:3d:6b:37:cb:b9:d7:55:e8:68:31:f3:c1:14:0e:e4:
b9:88:59:92:f6:64:5b:a7:33:fd:18:53:41:86:8b:fa:5c:20:
09:65:4e:63:23:a7:2e:e1:e9:78:e8:55:53:d7:73:2a:c0:27:
0f:a7:44:7b:24:ff:ed:19:9a:f1:09:62:e6:2b:c1:51:a7:09:
4e:9a:db:6d:7c:80:78:51:4a:ba:91:87:da:6e:74:06:9d:5d:
63:df:b7:e4:8a:ab:33:f3:ec:db:d7:d0:7e:88:c4:d5:44:16:
ce:12:ca:d4:a5:46:35:c1:b2:c0:47:fa:cd:7f:d6:85:ef:ae:
2e:f9:68:4d:fe:81:9d:1d:e3:6f:09:7e:b0:b3:90:ce:f0:59:
47:26:e9:7e
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICEdEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw
NTI0MjRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQ2MkFGOEY0OUE2QURG
MzIwQzc1RkM4QjhBRUQwQjg3NDU4OEQ2RUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC1MGG6r9E/hL+dr70DRrLQhufACQC+y6BeyzJNK2LpoS28NdHq
GPWcW2zPtg6yS9TkE8oCqrHyYXKMwpugnC7+6TC3nmTr1aNfZP3+x3hnQEBDzFF9
my9BgYGUrmHritTVtqh8dLb/ideoccgg1U3GB6Gu/LerQfZ+QE4JXfCS9jhi/AWk
zfjpW3uqm3dRsI7T8Js5YoNiEzb5UFBzhRleH8E5Gg++Ktve1zjpsEnZz3E7w4zE
anWasJQQHOVGvEayD/0eZWg+mBoq7XrqbU5BqvTm4RSjWmrz/2v6GlyMtlJYEeqx
qo7uGJya8xApYMz5zHRc/+WFaSGo+QNuWPozAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQU1ir49Jpq3zIMdfyLiu0Lh0WI1uwwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvMWlyNDlKcHEzeklNZGZ5
TGl1MExoMFdJMXV3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
B8qRgDANBgkqhkiG9w0BAQsFAAOCAQEACEP702wdEsDHecX2CF5JDXxmjj0XFcJy
HdCnTcelDFLlDZhZ7RZihWvTlhFVGpPJEsuLONyPE6mVhyrJnku9umVl+GIk1ptY
bF4WNZLnm/X7WDcxnfRSm/TtAJZoAZR74yTYOBfow+QcJnm82p0TPWs3y7nXVeho
MfPBFA7kuYhZkvZkW6cz/RhTQYaL+lwgCWVOYyOnLuHpeOhVU9dzKsAnD6dEeyT/
7Rma8Qli5ivBUacJTprbbXyAeFFKupGH2m50Bp1dY9+35IqrM/Ps29fQfojE1UQW
zhLK1KVGNcGywEf6zX/Whe+uLvloTf6BnR3jbwl+sLOQzvBZRybpfg==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:19:41 2025 by rpki-client