Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/6aocc_WrryUZIXCAMm53OArHVjg.roa
File: 6aocc_WrryUZIXCAMm53OArHVjg.roa (raw, json)
Hash identifier: 02OPn/gc/IH3zpw1iEoees/f2rYG2m3tlnp/h0AD32I=
Subject key identifier: E9:AA:1C:73:F5:AB:AF:25:19:21:70:80:32:6E:77:38:0A:C7:56:38
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/6aocc_WrryUZIXCAMm53OArHVjg.roa
Signing time: Thu 15 Sep 2022 02:47:33 +0000
ROA not before: Thu 15 Sep 2022 02:47:33 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9924
IP address blocks: 60.199.0.0/16 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:47:33 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=E9AA1C73F5ABAF2519217080326E77380AC75638
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:7e:2f:f3:c1:8a:af:ae:5b:50:26:52:df:3c:
c9:26:75:b3:6a:43:18:30:66:9b:33:d8:a3:56:04:
26:b2:e4:eb:29:b7:93:e9:9b:d3:ca:fa:47:1b:8f:
66:2e:48:c8:06:df:c5:13:74:62:54:e3:53:40:6f:
73:4d:f5:f3:65:ab:1d:64:2d:ee:a7:39:44:91:f7:
a3:e7:d4:f8:59:f3:e4:9d:fc:1e:54:16:d9:18:f0:
4e:f6:70:e3:3a:00:96:23:b1:61:9d:9e:74:07:6e:
a4:45:98:6c:30:88:d0:8b:6f:97:45:71:28:b7:5c:
6f:c8:77:28:07:85:fc:c0:b5:99:ff:d2:64:0f:74:
55:ce:92:74:c3:b3:04:0c:d0:de:fa:f6:15:e7:f9:
a4:3f:f4:94:31:cb:92:9f:cd:f8:63:6e:67:69:54:
d7:09:15:47:2a:f2:1a:ef:e2:7b:7f:d8:f0:2a:92:
56:09:01:f8:1d:b2:92:63:c6:5d:7c:c4:ca:3b:f4:
d7:14:f4:54:66:13:6a:f7:f6:dd:21:8a:c9:00:30:
e4:9c:20:88:8d:d1:b2:a4:d6:74:40:59:a1:5d:98:
6d:f3:ba:ad:2a:a8:89:d5:6f:d4:52:c3:c2:e7:4b:
f5:42:e1:b1:02:de:e5:13:cd:80:95:ff:33:0d:5f:
fa:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:AA:1C:73:F5:AB:AF:25:19:21:70:80:32:6E:77:38:0A:C7:56:38
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/6aocc_WrryUZIXCAMm53OArHVjg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.199.0.0/16
Signature Algorithm: sha256WithRSAEncryption
19:af:58:a5:d8:c4:e7:5b:8b:46:c7:62:12:85:ea:91:a3:7e:
9a:9d:8a:8d:8d:42:bf:f0:42:79:54:d7:3e:a9:b2:a9:81:99:
85:a7:05:65:20:d2:8f:22:cb:e1:3e:01:eb:17:80:9c:74:69:
69:56:aa:a1:6e:b0:30:c3:b4:67:be:5c:31:5e:45:5f:2b:c3:
5f:85:1d:69:bb:78:de:13:80:2b:79:01:d3:5f:91:a2:e1:69:
98:70:17:bb:6d:c0:a5:75:c9:5b:b8:94:5d:12:9b:c0:dc:3a:
29:64:a0:ff:70:9a:1e:4e:89:33:16:6a:96:61:e4:99:1d:2a:
e1:8e:dd:0c:e8:70:4d:29:cb:cb:fd:fe:47:e8:88:1f:1e:e4:
6b:19:d7:2a:b7:09:6f:de:15:3b:41:54:1e:f0:35:9b:fa:77:
d7:b3:f3:d3:ac:80:98:35:ec:a5:cb:80:b9:ec:e6:5a:44:5e:
7d:92:19:de:6d:ae:19:99:a3:da:6a:a6:30:54:8b:db:7b:d3:
f4:2a:86:1e:33:10:51:d8:03:49:9d:24:aa:f9:c5:1c:ef:53:
09:c1:da:ac:f5:59:44:91:6f:84:0e:3d:4c:e1:15:55:7f:bb:
cf:71:75:10:0c:6c:d1:37:88:b1:f0:5d:eb:cf:cb:7e:3b:87:
39:ef:78:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:21:49 2023 by rpki-client on console-ams.rpki-client.org