Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/3rPuuju_oNH4gepOFE58uYnzRdU.roa
File: 3rPuuju_oNH4gepOFE58uYnzRdU.roa (raw, json)
Hash identifier: x3XntIrXJS3nh7JydRU7n2S9aBznqOB45o5OvJVgCy8=
Subject key identifier: DE:B3:EE:BA:3B:BF:A0:D1:F8:81:EA:4E:14:4E:7C:B9:89:F3:45:D5
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/3rPuuju_oNH4gepOFE58uYnzRdU.roa
Signing time: Thu 15 Sep 2022 02:46:58 +0000
ROA not before: Thu 15 Sep 2022 02:46:58 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9924
IP address blocks: 60.199.176.0/24 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:46:58 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=DEB3EEBA3BBFA0D1F881EA4E144E7CB989F345D5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:8c:06:64:8f:f0:64:ba:e3:8b:17:98:a1:6a:
cf:fa:74:66:34:d2:cf:77:a0:9e:3f:e0:71:fd:60:
02:ed:80:28:51:2d:e8:43:c8:f1:ce:ef:83:e5:f4:
8a:11:c9:42:d1:ef:23:5d:23:a5:92:a8:ad:2c:38:
6c:d4:e6:e1:86:30:7f:e6:f3:49:86:a7:5c:cd:3f:
45:44:b8:d3:65:34:b1:d2:41:d0:6f:96:81:98:52:
14:4e:d4:22:36:65:97:69:ae:77:49:a6:a3:ef:ad:
de:b7:34:3c:b2:07:8f:38:bb:19:96:05:b8:e1:45:
bb:43:22:a9:f4:25:85:89:af:4a:21:a0:29:d8:a2:
03:21:80:2d:d1:79:04:90:a2:cd:8b:22:bd:75:d1:
f1:07:3c:da:4c:06:80:5f:8c:09:ad:9b:de:76:90:
59:37:f5:95:c4:7b:19:56:eb:70:1d:17:f1:b2:e1:
49:48:0d:6d:1f:c8:5e:13:0a:4f:40:b0:49:01:58:
6e:ca:72:98:68:f9:20:16:b0:5d:cd:ba:d3:eb:03:
1d:49:54:10:39:03:60:35:11:83:ea:51:24:16:c8:
d4:35:b5:49:69:3d:1e:20:5d:ae:4d:5b:10:85:de:
4f:39:55:45:c2:e0:c3:67:84:c1:45:de:2e:ef:61:
33:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:B3:EE:BA:3B:BF:A0:D1:F8:81:EA:4E:14:4E:7C:B9:89:F3:45:D5
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/3rPuuju_oNH4gepOFE58uYnzRdU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.199.176.0/24
Signature Algorithm: sha256WithRSAEncryption
93:d5:af:74:23:20:18:a9:4a:1e:59:a3:3d:5c:da:35:8b:9b:
df:1c:6a:f6:e7:17:50:4f:cf:6d:dc:b9:ae:f1:10:4a:f9:77:
48:de:b2:b1:5b:53:62:ab:17:0c:c9:29:da:a8:48:d9:57:d6:
ed:30:19:f0:e7:6d:a9:c4:38:8f:b6:48:17:4e:88:54:1c:0d:
e2:b2:45:7c:de:1c:df:ba:f4:cb:db:3e:35:a7:e3:a1:c7:bf:
76:20:08:31:61:ca:63:74:0a:2e:56:7d:c1:42:4e:ed:12:43:
18:7b:f6:04:72:17:06:14:ee:35:cf:e9:f0:00:46:65:20:e8:
0b:a5:bd:6b:6a:3a:bd:00:9f:1e:24:61:67:02:9d:ae:13:23:
a5:19:e0:63:97:61:19:73:95:46:f1:ab:05:e9:40:45:4d:15:
5f:1d:6b:d1:a4:ac:3a:e9:e2:3a:e9:90:a9:9c:05:b2:a1:86:
85:f7:73:c4:f1:0c:b6:83:e0:a1:c7:75:36:b1:f5:8c:0f:2e:
6c:0a:3c:74:d0:2d:b0:5b:a0:c2:e4:16:e2:e6:a7:68:f6:cd:
81:b5:5e:74:af:9d:42:67:bd:81:ec:bd:4e:13:04:f5:d1:77:
e9:23:cd:01:e0:a5:b8:2e:33:68:e8:ed:a2:36:a7:f4:6d:03:
f8:64:37:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:21:49 2023 by rpki-client on console-ams.rpki-client.org