Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/9EfRl2ArHqJmLkPPx73Z01Y57CM.roa
File: 9EfRl2ArHqJmLkPPx73Z01Y57CM.roa (raw, json)
Hash identifier: h2Effxu//9wO/sjszHWmueZ+jWOFPi7YybNt8kIo/yk=
Subject key identifier: F4:47:D1:97:60:2B:1E:A2:66:2E:43:CF:C7:BD:D9:D3:56:39:EC:23
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0E0A
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/9EfRl2ArHqJmLkPPx73Z01Y57CM.roa
Signing time: Thu 15 Dec 2022 10:12:40 +0000
ROA not before: Thu 15 Dec 2022 10:12:40 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24163
IP address blocks: 60.198.32.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3594 (0xe0a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Dec 15 10:12:40 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=F447D197602B1EA2662E43CFC7BDD9D35639EC23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:7e:ad:80:3d:41:82:77:75:bf:10:58:4d:ba:
b7:8d:34:7f:04:4d:26:02:48:ff:2c:bc:b3:19:3b:
92:47:24:c9:48:2e:99:9a:58:e8:8b:eb:0a:ab:63:
7c:9a:d6:6a:9a:d9:8b:3c:6f:4a:a3:40:ab:b9:1b:
26:cd:41:92:b8:54:15:67:1a:5c:99:61:64:e8:5c:
79:00:bf:00:a8:b9:a3:47:3a:7c:2e:26:3b:e3:05:
f4:6a:0c:01:de:f5:3e:f7:d6:96:9a:eb:08:b8:9a:
84:bf:44:e6:21:ab:22:ae:8d:8e:cc:15:22:2c:5e:
ef:60:5f:3a:2b:cd:61:78:7d:af:6c:6a:2a:fa:2e:
41:b3:70:3a:54:14:c3:fa:4f:97:8e:73:af:d6:e6:
12:fc:5b:b5:06:ad:14:4b:32:2c:e9:98:f8:42:3d:
e9:c8:a0:1d:dd:b9:fe:b9:6d:47:0e:26:16:f2:cf:
13:1b:54:9d:59:22:86:ee:c5:72:5e:c2:d8:28:80:
08:48:7d:ee:7a:f0:cc:de:6c:7d:cb:3b:51:a4:81:
82:25:b6:23:51:5e:0a:66:00:a5:56:1a:b5:4e:be:
9e:48:df:37:84:93:ff:a4:b6:03:0a:83:13:7c:be:
63:e5:96:c5:d2:46:7e:06:95:3e:b9:f4:eb:ca:a1:
25:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:47:D1:97:60:2B:1E:A2:66:2E:43:CF:C7:BD:D9:D3:56:39:EC:23
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/9EfRl2ArHqJmLkPPx73Z01Y57CM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.198.32.0/22
Signature Algorithm: sha256WithRSAEncryption
67:de:90:0e:6f:5f:67:bf:95:1b:2b:5d:a4:e5:20:c5:56:1e:
4b:cf:2b:47:1b:09:4a:31:de:e8:d9:e3:e8:50:38:23:99:04:
e6:3b:33:9d:c9:ab:4c:17:4c:13:81:a6:6d:c0:15:41:48:4b:
14:40:63:c5:97:4a:6c:47:39:4c:d1:01:cc:59:06:76:12:27:
b0:f8:09:9a:c9:23:01:e2:2d:47:1d:ba:9d:3b:3a:8c:18:e2:
4c:d2:2d:fb:3f:6e:7d:18:28:09:4c:69:93:2f:d6:94:32:9e:
ac:3d:56:bd:eb:03:65:92:28:32:bb:e2:31:36:22:56:10:65:
7f:8e:73:af:5f:79:0e:9a:ac:ba:b6:34:c6:a0:95:3f:ad:29:
38:65:2d:c8:bc:e3:e9:48:50:53:e1:bc:43:e2:b4:bb:76:ae:
37:69:05:e0:b4:3f:09:b8:94:c0:a8:a5:00:aa:de:f3:ae:e6:
ee:42:a3:7e:fd:c7:e8:b4:ab:86:62:61:10:6e:24:dc:f7:9c:
59:cf:59:ab:86:f5:00:d5:1c:24:98:f3:50:45:f9:21:ae:3e:
85:af:c1:e2:d1:1d:a3:17:56:d5:cd:7a:8e:b6:f2:de:98:c8:
6d:4e:ee:44:12:19:f6:f2:df:0a:89:d2:e9:15:d2:e3:ab:6f:
ae:62:36:f6
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICDgowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMjEyMTUx
MDEyNDBaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEY0NDdEMTk3NjAyQjFF
QTI2NjJFNDNDRkM3QkREOUQzNTYzOUVDMjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQChfq2APUGCd3W/EFhNureNNH8ETSYCSP8svLMZO5JHJMlILpma
WOiL6wqrY3ya1mqa2Ys8b0qjQKu5GybNQZK4VBVnGlyZYWToXHkAvwCouaNHOnwu
JjvjBfRqDAHe9T731paa6wi4moS/ROYhqyKujY7MFSIsXu9gXzorzWF4fa9sair6
LkGzcDpUFMP6T5eOc6/W5hL8W7UGrRRLMizpmPhCPenIoB3duf65bUcOJhbyzxMb
VJ1ZIobuxXJewtgogAhIfe568MzebH3LO1GkgYIltiNRXgpmAKVWGrVOvp5I3zeE
k/+ktgMKgxN8vmPllsXSRn4GlT659OvKoSW5AgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQU9EfRl2ArHqJmLkPPx73Z01Y57CMwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvOUVmUmwyQXJIcUptTGtQ
UHg3M1owMVk1N0NNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
AjzGIDANBgkqhkiG9w0BAQsFAAOCAQEAZ96QDm9fZ7+VGytdpOUgxVYeS88rRxsJ
SjHe6Nnj6FA4I5kE5jszncmrTBdME4GmbcAVQUhLFEBjxZdKbEc5TNEBzFkGdhIn
sPgJmskjAeItRx26nTs6jBjiTNIt+z9ufRgoCUxpky/WlDKerD1WvesDZZIoMrvi
MTYiVhBlf45zr195DpqsurY0xqCVP60pOGUtyLzj6UhQU+G8Q+K0u3auN2kF4LQ/
CbiUwKilAKre867m7kKjfv3H6LSrhmJhEG4k3PecWc9Zq4b1ANUcJJjzUEX5Ia4+
ha/B4tEdoxdW1c16jrby3pjIbU7uRBIZ9vLfConS6RXS46tvrmI29g==
-----END CERTIFICATE-----
Generated at Fri Sep 1 10:18:39 2023 by rpki-client on console-fra.rpki-client.org