Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/5eg2d0HssTsc4GvKkBNt11V9wzY.roa
File: 5eg2d0HssTsc4GvKkBNt11V9wzY.roa (raw, json)
Hash identifier: vfq/1kVoYiNQB0EdeUCH92nnJAqLRIs8CWqY6lUr7WU=
Subject key identifier: E5:E8:36:77:41:EC:B1:3B:1C:E0:6B:CA:90:13:6D:D7:55:7D:C3:36
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 1299
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/5eg2d0HssTsc4GvKkBNt11V9wzY.roa
Signing time: Mon 25 Nov 2024 03:10:04 +0000
ROA not before: Mon 25 Nov 2024 03:10:04 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18049
IP address blocks: 210.62.0.0/19 maxlen: 24
Validation: Failed, certificate revoked on Thu 12 Dec 2024 05:52:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4761 (0x1299)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Nov 25 03:10:04 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=E5E8367741ECB13B1CE06BCA90136DD7557DC336
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:7e:2e:87:b1:3c:32:88:1b:1f:76:d6:51:28:
8c:3f:36:e4:23:02:69:df:84:77:1e:b3:a0:06:e0:
7b:8e:b5:a9:75:0a:c0:6b:2f:9f:b6:47:2e:24:b6:
e6:ec:02:6b:36:9f:18:76:ab:20:25:0c:ca:a2:2a:
26:e1:18:0d:99:99:fd:29:f8:0d:98:3e:35:f1:38:
8d:47:e7:f3:91:8c:92:9d:57:15:b3:24:4a:c6:68:
eb:3e:7d:77:35:34:f9:59:cc:7a:95:4c:fc:f7:fc:
55:d1:6e:b2:08:08:f5:6b:26:11:1d:df:82:92:18:
47:39:bb:65:2f:cb:45:5b:23:e0:7f:26:ad:6c:60:
4a:af:c7:a3:ae:ab:33:2d:9f:98:30:6a:44:36:6f:
8a:b5:2a:9d:7d:b8:d2:c9:86:10:b6:a3:a6:ad:4c:
60:8d:2e:8f:e8:ef:76:d8:c7:6f:64:2c:84:7c:94:
d5:e8:c0:fd:ca:06:ba:08:85:b2:ee:15:1e:4d:cf:
4e:4b:31:8b:59:16:a8:d7:d1:7c:a9:4f:d8:8a:7b:
d6:02:c4:a9:8a:7f:52:96:31:8a:04:8b:e8:0a:3c:
db:81:f2:07:e8:68:23:f5:9f:d8:76:b9:aa:61:a1:
f5:cb:1d:60:9f:bd:08:52:04:cd:d8:b8:f7:31:fe:
79:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:E8:36:77:41:EC:B1:3B:1C:E0:6B:CA:90:13:6D:D7:55:7D:C3:36
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/5eg2d0HssTsc4GvKkBNt11V9wzY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.62.0.0/19
Signature Algorithm: sha256WithRSAEncryption
37:5b:5c:c0:f1:91:36:a5:4d:ea:52:f7:e5:35:1f:b4:d3:e4:
ef:5c:f9:fe:5f:85:56:ea:68:fc:ac:51:27:6f:a8:94:45:0f:
3e:b2:31:1f:ef:c9:1a:1f:29:58:82:27:1d:97:fb:eb:19:7f:
e2:d6:67:1e:bf:04:12:55:e5:37:14:f8:0e:2d:19:3d:10:16:
c2:e6:68:a5:06:b0:ba:f1:b0:68:39:47:df:55:21:dc:c8:9e:
f5:9d:a7:4f:db:1d:36:8e:16:91:8b:f6:38:a4:26:ea:5e:84:
57:90:fb:85:4c:16:67:5e:ff:31:15:55:05:d2:23:90:89:40:
ce:6f:f0:af:a5:45:7a:d0:4a:ac:22:ed:11:3c:2d:93:3a:8e:
a4:e1:d4:05:1f:f1:3a:e8:e9:32:92:62:b9:a9:04:a2:54:60:
f5:56:c0:48:2e:57:fb:0b:78:07:7d:7b:23:ac:2a:01:51:86:
1b:b7:af:d0:df:d4:74:fa:33:c2:cf:fe:8a:9d:37:1b:de:45:
6f:4b:64:46:30:b0:26:0b:e9:1c:87:e2:4d:83:a1:03:0e:0d:
7e:64:08:4b:f2:73:ae:46:49:67:dc:18:12:f7:5c:5a:6c:9a:
07:06:cd:fb:c1:d9:44:74:9f:9b:a1:12:8f:9e:20:5f:fc:0c:
13:fb:17:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 12:18:09 2025 by rpki-client