Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/69kKqh9e8OPBbaihIO_cvDCuQRo.roa
File: 69kKqh9e8OPBbaihIO_cvDCuQRo.roa (raw, json)
Hash identifier: 3HQggnUGjQT/cJlaY6qxSVP+Cvr7J3zyiOese1GBhy0=
Subject key identifier: EB:D9:0A:AA:1F:5E:F0:E3:C1:6D:A8:A1:20:EF:DC:BC:30:AE:41:1A
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 1293
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/69kKqh9e8OPBbaihIO_cvDCuQRo.roa
Signing time: Mon 25 Nov 2024 03:04:36 +0000
ROA not before: Mon 25 Nov 2024 03:04:36 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 18049
IP address blocks: 210.62.192.0/20 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:09:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4755 (0x1293)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Nov 25 03:04:36 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=EBD90AAA1F5EF0E3C16DA8A120EFDCBC30AE411A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:42:8e:72:3d:e0:dc:d5:88:a4:14:9e:9f:6e:
d3:11:1a:d2:25:4f:46:b4:84:01:2c:bb:4d:28:fd:
28:d0:22:cf:77:eb:f9:5f:ab:e3:ce:35:b0:e4:44:
e0:32:63:59:17:9f:f4:61:3e:29:97:75:2e:fd:71:
05:6d:ae:91:33:a6:7f:2d:7b:cb:88:7e:77:b9:ef:
ff:f7:91:96:10:c8:f7:e4:94:97:fb:51:d8:67:df:
3d:4c:db:8e:b5:a8:8a:8f:cc:4d:d1:62:2e:d1:be:
fc:16:3b:6b:7a:a6:3f:b2:9e:c7:aa:e3:79:f2:ed:
de:5d:6b:39:42:95:56:bc:9d:9e:6a:63:54:b4:5c:
be:9e:41:16:66:5f:3e:0a:a0:52:8d:f8:b4:5e:cd:
92:ae:54:36:bd:ca:20:81:bc:0f:71:1a:88:cb:2a:
a0:c7:be:25:09:1c:21:62:04:1e:9d:9d:8e:23:bd:
c4:88:15:24:c9:41:0a:db:94:28:cf:78:5a:af:db:
9e:54:db:87:36:8c:3b:d5:3f:e4:3e:38:ff:93:0b:
a9:4e:50:a9:94:eb:a1:96:55:c9:cf:67:21:39:6d:
5a:3f:d1:a2:1a:12:73:5f:44:58:c8:67:95:08:cf:
20:1e:09:71:9f:d2:a8:9f:15:50:48:b0:c1:a1:d9:
6d:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:D9:0A:AA:1F:5E:F0:E3:C1:6D:A8:A1:20:EF:DC:BC:30:AE:41:1A
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/69kKqh9e8OPBbaihIO_cvDCuQRo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.62.192.0/20
Signature Algorithm: sha256WithRSAEncryption
71:28:0c:c1:2d:2f:cd:52:d7:d1:b2:81:dc:9d:2c:d5:81:6f:
3c:8d:13:2a:de:52:3d:a6:b5:21:61:c1:c0:23:53:bc:fb:91:
ea:ee:8c:16:a6:15:7a:96:8f:85:c9:83:2a:68:86:6a:cb:0c:
b7:54:c1:15:35:ca:9a:36:fa:d9:06:f1:86:b5:9b:56:07:17:
11:20:ba:22:47:22:f6:de:19:1e:1a:08:08:c4:8a:cf:4f:5e:
18:97:bc:94:8d:c9:de:3c:1e:64:dc:cc:f1:9a:01:75:b1:76:
4b:a4:ca:8c:07:ff:90:8f:db:60:40:2e:12:cb:17:10:c4:bd:
05:55:33:e3:42:9d:35:b6:0a:8b:c9:a5:aa:e0:7f:0d:98:c8:
e0:54:e6:c4:9e:68:e6:6c:20:db:38:94:86:46:63:87:1d:b1:
46:c3:05:06:8e:8b:5a:09:6d:e7:de:96:6e:a8:e5:b0:b6:3a:
16:94:24:cf:11:51:3f:f2:bd:e4:01:53:55:8b:f4:c6:9e:24:
10:48:de:5b:32:9e:fb:b6:8c:9c:ae:75:06:98:37:79:d9:9c:
92:6f:f0:d2:07:3e:17:fb:78:18:ac:b3:18:d5:d5:45:ea:f7:
7c:ad:38:7a:6d:67:d6:0c:e2:b8:14:67:06:a7:7f:53:0b:1e:
7b:1f:e6:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 11:51:34 2025 by rpki-client