Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/8wVrSfe2GBFEGbCJp1qDIzJYxkQ.roa
File: 8wVrSfe2GBFEGbCJp1qDIzJYxkQ.roa (raw, json)
Hash identifier: fDWU89w5i5RqnvqLx2JGKP/VH3jH9/3Xm+jEDgbTUeM=
Subject key identifier: F3:05:6B:49:F7:B6:18:11:44:19:B0:89:A7:5A:83:23:32:58:C6:44
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/8wVrSfe2GBFEGbCJp1qDIzJYxkQ.roa
Signing time: Thu 15 Sep 2022 02:47:18 +0000
ROA not before: Thu 15 Sep 2022 02:47:18 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 203.77.80.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:47:18 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=F3056B49F7B618114419B089A75A83233258C644
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:d8:d7:2d:34:67:66:ae:0c:a1:6c:33:5d:33:
1f:a4:52:f1:97:a0:a2:fa:34:7b:d7:f9:25:22:3c:
b1:b6:71:56:f9:c8:80:19:90:a6:4b:19:09:c7:49:
ab:5b:02:18:26:88:cf:1b:59:02:0f:98:d1:34:97:
33:74:21:e8:56:08:1b:61:e1:fb:71:e5:03:e0:39:
f7:c0:43:ed:d3:96:69:57:0d:df:83:a1:50:0d:d1:
55:68:55:64:83:40:3c:aa:54:70:d8:66:c6:84:ea:
19:d6:f4:17:6c:2a:6d:1e:4b:db:4f:64:36:94:fb:
1e:61:cf:c5:c6:38:a1:47:d4:23:d9:f0:a3:e0:0c:
a2:f7:ba:7c:0b:ae:54:da:22:39:2b:91:41:a1:d0:
b5:b9:0d:89:a6:67:85:70:b8:f1:ea:da:5b:ed:47:
9f:f0:ab:11:5a:a0:3f:04:80:57:33:3e:a7:c3:a2:
4b:8d:ec:3e:84:79:c2:a6:78:4b:95:a9:58:73:60:
88:aa:01:96:dd:6b:ec:3f:c6:d2:22:25:f7:6c:92:
e3:25:56:82:ae:82:93:b9:19:6e:2b:9f:0e:e1:15:
69:1a:fa:bc:d2:d1:ec:5e:91:a2:e7:40:66:ec:69:
53:c4:da:5a:e6:b7:61:87:68:d8:25:c7:f1:81:37:
a3:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:05:6B:49:F7:B6:18:11:44:19:B0:89:A7:5A:83:23:32:58:C6:44
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/8wVrSfe2GBFEGbCJp1qDIzJYxkQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.77.80.0/23
Signature Algorithm: sha256WithRSAEncryption
69:b4:b8:a6:ff:0f:13:14:e1:cf:b0:24:db:ca:d2:e9:e2:f9:
33:99:4d:8b:e2:bc:f6:c9:2e:f6:4a:d9:0a:c0:e3:31:22:74:
15:d6:b5:6d:55:b4:8f:8e:fd:82:c4:68:57:b7:72:a1:67:41:
2b:73:1c:59:33:81:7b:9e:70:22:84:8e:ed:72:da:27:85:1b:
0d:7d:05:73:7d:74:20:23:2e:a3:81:91:d9:13:9f:b5:01:56:
84:fe:09:4a:14:eb:06:52:14:1b:fb:bf:5f:c6:e7:ee:7f:d9:
09:e3:e3:c5:08:f7:48:a3:4e:8e:26:21:81:51:50:12:cc:c1:
97:b4:32:4d:38:ad:85:ce:4f:42:bb:2b:e8:9c:2a:e3:13:ea:
f5:b2:44:14:24:58:0b:38:7a:6f:e5:06:3b:65:b4:e1:cf:30:
d8:7d:42:95:5e:7e:ea:aa:81:88:c0:1f:4f:0e:3f:11:bc:0d:
7d:9c:2e:69:93:49:83:87:b7:0d:1c:47:65:6a:99:12:af:36:
4b:a8:da:80:b0:66:72:4d:af:2c:66:30:0c:1a:3a:26:93:5b:
df:d9:fe:e2:55:bf:de:a6:ca:7f:77:6f:70:c8:74:5d:8a:d1:
d9:bd:95:88:ca:70:34:0d:cd:8b:52:8f:a4:7d:89:f9:d1:0c:
91:fe:33:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:21:49 2023 by rpki-client on console-ams.rpki-client.org