Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/9Y9JOWvthOy3jqBaeU4TGoaCe8o.roa
File: 9Y9JOWvthOy3jqBaeU4TGoaCe8o.roa (raw, json)
Hash identifier: 6vP0uS2XR0A7xcsKuQBiB5wUjQYBMGUqi2xgmAMYXqI=
Subject key identifier: F5:8F:49:39:6B:ED:84:EC:B7:8E:A0:5A:79:4E:13:1A:86:82:7B:CA
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0FA7
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/9Y9JOWvthOy3jqBaeU4TGoaCe8o.roa
Signing time: Fri 01 Sep 2023 09:37:06 +0000
ROA not before: Fri 01 Sep 2023 09:37:06 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131597
IP address blocks: 219.86.80.0/21 maxlen: 24
Validation: Failed, certificate revoked on Fri 05 Jul 2024 10:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4007 (0xfa7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 1 09:37:06 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=F58F49396BED84ECB78EA05A794E131A86827BCA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:f1:8c:6a:b7:f2:99:16:5f:e4:4b:84:3e:e1:
b9:96:4c:17:08:8c:2c:49:b2:e5:a6:27:fe:03:69:
45:59:ee:83:3f:64:e0:d5:d1:66:3a:0d:28:27:6f:
54:06:f7:5a:97:c3:b5:12:67:42:81:4f:81:ce:55:
f5:3b:d4:80:7f:3b:eb:8b:65:92:1c:59:69:f4:8d:
6a:b7:ee:4a:dc:93:c5:f4:bf:59:95:df:6a:f6:99:
18:85:a4:a8:6c:30:b5:81:23:d8:06:0a:f9:6a:31:
24:ee:ee:c7:8e:35:0f:70:8f:41:a4:31:ee:40:ad:
c9:dd:83:a5:4b:12:64:74:8d:d6:5b:ad:a9:8c:1e:
0f:ce:61:da:fe:2e:69:7f:62:6e:08:cb:69:35:d8:
a0:c5:e6:f1:15:cd:3b:3b:ab:89:b3:05:9f:5a:84:
00:d6:d5:16:07:0d:00:6c:fe:0a:43:7e:fb:9d:1e:
29:87:02:bb:30:8b:9d:ef:57:6a:6b:d5:18:12:23:
da:12:b4:f6:ed:43:73:ec:15:91:ae:91:ef:c5:16:
75:d1:8d:5e:15:0d:18:00:fc:40:9c:6d:2d:57:fd:
56:75:c4:79:be:c3:48:85:ac:12:96:ec:79:42:36:
6e:ba:b3:48:3c:a6:0d:a4:fb:b5:ee:04:e4:c0:d1:
fe:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:8F:49:39:6B:ED:84:EC:B7:8E:A0:5A:79:4E:13:1A:86:82:7B:CA
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/9Y9JOWvthOy3jqBaeU4TGoaCe8o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.86.80.0/21
Signature Algorithm: sha256WithRSAEncryption
41:96:e3:11:e4:3d:1c:e8:f6:ec:d1:0d:07:f4:96:94:c1:80:
45:e4:8c:d9:1b:e4:86:15:4a:5a:22:6e:16:89:26:5b:67:a7:
ef:9e:88:68:1e:f7:f8:ab:2e:28:9b:89:30:9a:89:08:a1:b3:
8b:10:f7:1a:f3:eb:b5:83:d5:59:d2:3f:d9:ca:b2:e1:87:1a:
ee:ef:22:30:9b:2a:96:1e:7c:ad:69:fd:0b:cd:cc:62:a1:f8:
39:0a:03:31:0e:89:bf:d1:99:d4:07:86:ea:24:19:1d:de:d1:
a8:0f:dd:5c:15:cb:a1:e0:d5:d1:e7:b7:db:f0:de:da:71:61:
28:ac:a8:5e:bd:25:a3:87:99:85:1d:0c:9e:a9:2b:e2:d4:15:
5c:d2:fe:e1:19:f6:9c:a8:e5:2e:4e:0e:61:57:66:00:f4:90:
ff:06:e0:74:79:18:f6:cc:58:05:79:39:1b:59:aa:ae:20:83:
58:24:97:62:56:a1:b8:1b:ca:93:56:03:52:bd:ef:5f:74:15:
89:f4:f1:50:e0:d0:39:77:92:88:75:c4:82:86:a2:43:0a:d5:
3b:38:ce:dd:53:09:9b:14:dd:2f:79:35:e7:85:7e:01:5a:c7:
68:c5:14:39:77:18:0f:df:ad:97:fa:80:c2:4c:6a:0a:a2:43:
32:76:36:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 5 11:54:21 2024 by rpki-client on console-fra.rpki-client.org