Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/25SYl2_U8XYeOQtrhWzzGKXSIMg.roa
File: 25SYl2_U8XYeOQtrhWzzGKXSIMg.roa (raw, json)
Hash identifier: ZrqRclzQ0ls8LPxzDIEhdDMMeRSbaxcSj/OXCT5kJUg=
Subject key identifier: DB:94:98:97:6F:D4:F1:76:1E:39:0B:6B:85:6C:F3:18:A5:D2:20:C8
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 121A
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/25SYl2_U8XYeOQtrhWzzGKXSIMg.roa
Signing time: Mon 26 Aug 2024 05:24:41 +0000
ROA not before: Mon 26 Aug 2024 05:24:41 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9924
IP address blocks: 210.17.43.0/24 maxlen: 32
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:09:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4634 (0x121a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Aug 26 05:24:41 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=DB9498976FD4F1761E390B6B856CF318A5D220C8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:8f:8f:4e:07:eb:ef:3b:f6:95:9e:cf:86:3e:
30:f1:e9:b4:c1:f7:a6:e1:3a:c0:de:15:f7:45:b3:
46:2a:84:fc:60:f6:a1:ef:8b:ac:6a:40:a5:a9:2d:
5e:44:80:54:b9:96:8e:c1:8c:70:eb:d1:16:d8:da:
f7:de:8b:25:c6:4b:2a:da:fe:8c:0c:7e:5d:43:84:
9f:6c:41:46:fd:f3:05:bb:37:76:5b:be:be:dd:13:
d9:a4:89:2f:e7:c0:e8:e0:2d:38:b1:cb:a0:3e:f7:
90:9f:b0:0a:ec:2b:a7:ce:8b:02:6d:e5:b4:de:16:
e2:69:ba:98:15:3d:e5:aa:a4:e4:cf:0f:e7:d6:27:
b4:f9:36:94:bf:57:ea:ce:2e:fc:9f:29:d1:88:1c:
c6:65:e9:18:ce:b0:85:a7:81:a4:8d:7e:34:4b:ff:
7e:c7:fd:2c:c5:b1:42:d0:f3:c2:7e:ed:84:f6:e4:
54:4f:a0:39:19:75:3d:b7:21:94:46:50:ff:ad:ba:
40:f9:11:05:cf:a3:87:0f:06:c6:59:17:34:a4:25:
db:96:c9:5d:b2:3f:05:a5:dd:f9:80:42:d0:c7:4c:
b3:d6:bd:16:f5:7e:e5:c2:11:9c:04:b7:50:34:82:
33:83:72:9b:69:54:bc:58:65:79:ac:56:16:b7:9e:
fb:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:94:98:97:6F:D4:F1:76:1E:39:0B:6B:85:6C:F3:18:A5:D2:20:C8
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/25SYl2_U8XYeOQtrhWzzGKXSIMg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.43.0/24
Signature Algorithm: sha256WithRSAEncryption
70:a6:ec:5a:23:3e:87:d8:2b:00:0e:97:91:14:0a:c6:d9:c9:
f9:a4:6e:b1:80:0c:08:b8:28:ad:f0:58:1d:24:2c:1a:94:d5:
a0:a7:df:94:34:28:b3:cc:2c:a1:56:ef:3c:5d:25:db:ee:b3:
61:01:01:e8:09:eb:46:4a:a2:6d:e2:12:68:24:e0:18:f8:88:
be:4f:84:fd:97:50:cd:f7:f5:20:59:09:b9:c1:c7:94:4d:78:
da:6b:74:30:7e:bc:33:1b:64:65:ae:ff:81:d5:79:96:7d:bf:
19:d7:67:ff:3b:02:c2:eb:71:ba:65:86:47:43:c3:2f:d3:67:
93:76:dd:7a:10:54:b1:0a:a6:0b:12:16:09:75:8c:8c:2d:7f:
c8:cf:53:c3:02:bf:b1:24:6b:d1:24:a3:7a:1d:01:a0:1d:af:
70:06:0c:80:1c:d2:fb:53:6f:d4:48:dd:37:64:70:cb:62:92:
9a:0f:9e:03:ab:09:74:35:86:29:75:1a:25:b9:fd:09:3e:be:
c5:25:6b:9b:6c:71:fe:fd:41:75:9a:18:37:3e:74:69:c8:82:
d5:fe:93:87:83:0c:ca:2f:4e:a2:02:43:0d:fb:ad:5d:12:18:
08:44:34:5f:ea:9f:68:67:b9:34:8d:eb:40:ee:4f:47:de:49:
b4:fe:c9:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:34:38 2025 by rpki-client