Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/3C0R8qqTiSR2lOCXV08Hx8y6VBg.roa
File: 3C0R8qqTiSR2lOCXV08Hx8y6VBg.roa (raw, json)
Hash identifier: POfBK5+Azu4cWvXUcRDFEqpdHjbw1+9nfuPy7amFY9g=
Subject key identifier: DC:2D:11:F2:AA:93:89:24:76:94:E0:97:57:4F:07:C7:CC:BA:54:18
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/3C0R8qqTiSR2lOCXV08Hx8y6VBg.roa
Signing time: Thu 15 Sep 2022 02:47:06 +0000
ROA not before: Thu 15 Sep 2022 02:47:06 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 203.77.38.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:47:06 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=DC2D11F2AA9389247694E097574F07C7CCBA5418
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:0e:b3:87:04:9c:4c:ae:ea:c1:1b:99:f2:d6:
e2:33:9f:e7:f8:fa:4c:f4:7d:f0:a0:5d:93:70:26:
33:4b:f3:7b:4f:d6:17:7d:b2:da:c6:53:66:f0:47:
01:58:06:8f:ba:09:c8:c7:d3:91:49:b5:bf:da:03:
3a:07:67:5a:30:88:f2:b5:7e:38:36:4f:bb:cf:8d:
a9:92:78:82:a8:f4:f9:07:0a:95:5b:93:45:83:2e:
aa:4b:87:0f:0f:07:2c:5c:00:0c:74:d5:12:96:04:
84:b3:69:a1:3a:13:3c:85:a9:6b:16:4b:89:27:ad:
31:84:1b:92:98:50:29:77:63:70:89:25:5c:3a:58:
9b:67:d7:03:a2:4e:b6:78:e8:37:e3:a8:28:45:ff:
06:e0:7b:20:ec:ca:19:8e:a1:57:80:7d:65:7a:22:
8d:66:cc:e9:a6:e8:b9:ac:be:60:59:69:33:a6:3e:
a3:eb:14:fa:bd:2d:68:e8:66:85:50:fb:d8:ec:2b:
4a:f0:2d:ef:64:aa:da:a0:54:df:b0:cf:3e:5a:0b:
dd:ba:bd:87:8f:fe:aa:21:26:a4:85:7f:be:9e:4e:
30:2f:82:94:f0:a4:e1:68:62:02:49:92:5f:dc:61:
ff:b0:94:3a:9e:6a:47:8f:02:a6:da:d6:e6:0f:df:
60:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:2D:11:F2:AA:93:89:24:76:94:E0:97:57:4F:07:C7:CC:BA:54:18
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/3C0R8qqTiSR2lOCXV08Hx8y6VBg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.77.38.0/23
Signature Algorithm: sha256WithRSAEncryption
57:6b:77:d9:7c:10:77:c9:25:a9:8e:e4:d4:37:9c:9e:f9:eb:
15:cb:48:6c:1e:94:31:17:ac:d7:a1:3d:fb:01:1e:a9:45:a1:
79:ff:34:61:14:8a:5f:95:21:fb:97:40:26:48:07:d1:93:6d:
fb:7e:1b:53:9a:36:d3:f6:d8:bb:9f:69:c1:a8:32:30:40:cb:
c3:1d:76:88:c8:23:a6:2c:1a:1f:de:e2:25:df:a2:b9:a2:b7:
0a:4e:f6:33:e7:3c:c2:7b:f0:7e:2b:21:a8:61:56:4e:ef:e5:
55:c8:9a:c8:8e:fe:cf:d9:a7:55:f9:33:36:d5:34:2c:02:74:
88:d7:22:15:84:3a:1e:28:ae:23:31:70:11:9a:0a:0e:05:6f:
4b:7d:18:c1:26:c4:21:01:8c:99:a2:55:a4:64:a0:25:33:9d:
6c:8e:1c:7e:a5:b4:b9:1f:ee:df:a9:02:44:99:c2:09:ae:53:
57:28:60:22:23:08:01:8f:93:19:de:fb:7a:61:24:5d:b8:5e:
9d:6d:00:f0:f7:8b:87:8b:f5:21:e1:57:de:57:48:7b:b5:c5:
30:c4:52:8e:55:3c:13:d6:1a:56:2b:68:c4:dc:23:b4:2a:69:
0b:88:7c:dc:03:e9:12:7a:b8:a7:0e:15:60:ad:f6:05:4f:91:
6e:1a:e1:77
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICDckwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMjA5MTUw
MjQ3MDZaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKERDMkQxMUYyQUE5Mzg5
MjQ3Njk0RTA5NzU3NEYwN0M3Q0NCQTU0MTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC0DrOHBJxMrurBG5ny1uIzn+f4+kz0ffCgXZNwJjNL83tP1hd9
strGU2bwRwFYBo+6CcjH05FJtb/aAzoHZ1owiPK1fjg2T7vPjamSeIKo9PkHCpVb
k0WDLqpLhw8PByxcAAx01RKWBISzaaE6EzyFqWsWS4knrTGEG5KYUCl3Y3CJJVw6
WJtn1wOiTrZ46DfjqChF/wbgeyDsyhmOoVeAfWV6Io1mzOmm6LmsvmBZaTOmPqPr
FPq9LWjoZoVQ+9jsK0rwLe9kqtqgVN+wzz5aC926vYeP/qohJqSFf76eTjAvgpTw
pOFoYgJJkl/cYf+wlDqeakePAqba1uYP32CLAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQU3C0R8qqTiSR2lOCXV08Hx8y6VBgwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvM0MwUjhxcVRpU1IybE9D
WFYwOEh4OHk2VkJnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
ActNJjANBgkqhkiG9w0BAQsFAAOCAQEAV2t32XwQd8klqY7k1DecnvnrFctIbB6U
MRes16E9+wEeqUWhef80YRSKX5Uh+5dAJkgH0ZNt+34bU5o20/bYu59pwagyMEDL
wx12iMgjpiwaH97iJd+iuaK3Ck72M+c8wnvwfishqGFWTu/lVciayI7+z9mnVfkz
NtU0LAJ0iNciFYQ6HiiuIzFwEZoKDgVvS30YwSbEIQGMmaJVpGSgJTOdbI4cfqW0
uR/u36kCRJnCCa5TVyhgIiMIAY+TGd77emEkXbhenW0A8PeLh4v1IeFX3ldIe7XF
MMRSjlU8E9YaVitoxNwjtCppC4h83APpEnq4pw4VYK32BU+Rbhrhdw==
-----END CERTIFICATE-----
Generated at Fri Sep 1 10:18:39 2023 by rpki-client on console-fra.rpki-client.org