Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/8hc_rFwRQbEBnk3JssKHtbFxKbc.roa
File: 8hc_rFwRQbEBnk3JssKHtbFxKbc.roa (raw, json)
Hash identifier: NpfO6AjOm14r/ccO5KcILA55UfU1hd/kWax65uB8eCY=
Subject key identifier: F2:17:3F:AC:5C:11:41:B1:01:9E:4D:C9:B2:C2:87:B5:B1:71:29:B7
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 11BB
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/8hc_rFwRQbEBnk3JssKHtbFxKbc.roa
Signing time: Mon 26 Aug 2024 05:24:19 +0000
ROA not before: Mon 26 Aug 2024 05:24:19 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9924
IP address blocks: 210.17.112.0/20 maxlen: 32
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:08:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4539 (0x11bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Aug 26 05:24:19 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F2173FAC5C1141B1019E4DC9B2C287B5B17129B7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:fc:5a:b9:bd:68:c7:20:36:c0:92:b3:a0:11:
88:76:9d:6e:34:0c:f2:32:ff:6e:f7:6a:59:7f:ea:
1e:c5:71:b3:2c:49:61:6f:ad:41:e5:09:06:bb:c9:
3a:6a:c3:44:fc:c1:c4:85:38:28:0d:db:9a:9b:19:
55:04:fa:ba:1a:6c:1a:62:f4:c3:74:b8:4c:c7:d5:
b5:bf:2d:13:e4:a5:33:b7:50:f7:51:f5:cd:7b:2a:
75:a6:3e:4a:cf:17:a7:7b:8c:f9:e5:88:9b:c9:af:
28:fe:70:90:1c:f1:1e:68:32:ee:83:62:33:77:7e:
77:d5:6d:76:d1:9d:1d:82:67:35:07:62:25:35:db:
19:24:83:c7:29:83:6d:cb:0c:98:aa:0c:99:cc:1a:
70:47:46:bf:09:7d:28:98:97:b6:b1:c8:6a:09:96:
9f:3d:b5:37:cf:a5:8f:a0:a2:a8:68:32:03:54:6c:
2a:05:bf:78:bc:00:f3:94:30:8e:71:c5:69:ff:ec:
de:ac:01:75:87:2e:ab:86:0c:8f:44:0f:5b:89:30:
48:b9:ac:6b:23:e4:0c:e2:49:29:cd:2f:ac:60:e0:
dc:c6:4c:36:a0:93:42:f5:12:81:a5:79:4d:41:3f:
50:86:1c:d4:51:b2:1a:b6:a5:dc:9f:33:d9:8d:3f:
75:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:17:3F:AC:5C:11:41:B1:01:9E:4D:C9:B2:C2:87:B5:B1:71:29:B7
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/8hc_rFwRQbEBnk3JssKHtbFxKbc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.112.0/20
Signature Algorithm: sha256WithRSAEncryption
4b:16:6b:36:17:6e:86:39:50:ae:7c:29:92:e3:32:63:c8:43:
88:75:3a:a5:14:f8:bb:58:ad:f3:db:23:ff:eb:f3:66:d3:8c:
da:46:30:1d:5b:32:28:73:4d:b6:62:e5:c9:33:f3:8e:93:62:
0f:ee:c2:87:53:50:dd:27:0e:37:61:46:b2:e6:55:7e:98:04:
62:fb:99:03:b7:c8:aa:14:1d:cc:42:a2:c6:bb:1f:1b:97:80:
0b:2c:60:9b:0a:db:83:ee:c8:94:dc:95:a2:2d:79:ec:e6:9e:
1b:7c:b4:77:8a:78:fc:d7:58:68:66:b0:43:2b:fa:50:35:bd:
d7:a5:7a:93:49:66:78:20:c9:13:56:79:2f:f3:c4:84:27:fa:
d1:b9:a0:58:7b:e3:21:69:a3:56:6e:5a:6f:c1:cf:fb:49:0e:
33:dc:b6:47:27:8d:04:38:29:ee:2f:d4:10:84:f5:54:6f:65:
b5:23:d7:df:8f:62:b5:22:c2:94:12:d8:d3:7d:ea:a1:8e:4c:
73:37:d1:12:37:89:8f:af:dc:d8:99:d6:ed:28:28:5a:e4:d8:
d0:8e:ad:8c:d9:e5:61:66:71:f5:11:fa:37:98:77:2e:eb:e1:
d0:e6:03:ef:1d:83:bc:66:31:e5:0f:0e:97:fb:41:ef:7e:de:
18:60:04:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 11:48:56 2025 by rpki-client