Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/9lmykk0ZKt01gpykcEtD--0ivdE.roa
File: 9lmykk0ZKt01gpykcEtD--0ivdE.roa (raw, json)
Hash identifier: /sbGUa5peoKXo/cJcgSc4koHAuDcJWF0SIvWPb0Av8E=
Subject key identifier: F6:59:B2:92:4D:19:2A:DD:35:82:9C:A4:70:4B:43:FB:ED:22:BD:D1
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 11B7
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/9lmykk0ZKt01gpykcEtD--0ivdE.roa
Signing time: Mon 26 Aug 2024 05:24:18 +0000
ROA not before: Mon 26 Aug 2024 05:24:18 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9924
IP address blocks: 211.79.0.0/19 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:08:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4535 (0x11b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Aug 26 05:24:18 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F659B2924D192ADD35829CA4704B43FBED22BDD1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:3c:81:b5:09:42:8c:7e:d1:fd:98:43:3f:e2:
86:29:5a:91:e2:88:cb:76:68:4a:c0:fd:e5:bc:9c:
99:c6:c8:67:16:ef:47:ee:fc:5b:fc:5d:69:ef:0b:
bf:71:85:db:fb:de:3d:2e:2c:bd:17:52:bf:9b:f7:
ef:f2:55:35:67:e7:c4:bb:57:e1:17:2a:2a:c2:88:
24:43:4f:c2:5d:f3:97:77:2b:5f:a3:19:c4:61:e6:
df:e4:63:9e:72:0d:c3:51:7f:d2:01:2b:84:bd:ec:
75:85:96:e0:09:dc:6c:7a:80:91:13:8e:fe:57:97:
45:b5:bf:9a:02:f4:9e:d7:ba:8d:e7:85:2e:1b:5f:
e8:e2:cb:f2:a4:1b:af:81:1d:f8:b5:ac:e9:a3:7a:
96:2d:13:2d:dd:85:b5:6a:21:2d:6b:3e:85:53:c5:
a9:93:a8:b3:c2:01:b4:29:b4:00:3a:6c:42:5e:23:
3f:b7:72:1f:d4:c1:c6:21:43:b1:4c:80:fe:30:d8:
3d:5f:b3:c2:3e:82:41:cb:50:bc:93:3a:d8:ba:b2:
8b:8c:a6:5e:5e:3d:f6:c4:26:4e:0a:ed:ec:e2:36:
03:1a:04:01:74:47:f4:1e:f2:ce:6b:61:40:8c:38:
f9:9e:f9:50:41:89:6d:4f:8a:30:f0:f1:55:4c:79:
94:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:59:B2:92:4D:19:2A:DD:35:82:9C:A4:70:4B:43:FB:ED:22:BD:D1
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/9lmykk0ZKt01gpykcEtD--0ivdE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.79.0.0/19
Signature Algorithm: sha256WithRSAEncryption
6d:36:15:6e:2b:d6:8a:b5:47:e3:ce:82:52:bc:bb:4a:09:dd:
e4:3d:6b:0c:30:f2:cd:7c:2e:c9:f6:99:43:06:3d:0f:c7:5e:
08:67:d7:9b:2e:b3:34:03:d5:e7:60:8f:77:5d:d5:19:75:22:
fc:78:6d:c1:e7:9f:4b:1a:40:67:38:6e:8e:44:c5:d1:16:67:
91:7a:a2:40:f1:9d:47:f9:53:c1:80:05:a9:78:60:47:5e:52:
72:06:00:32:bd:d6:61:b1:64:72:66:66:3b:32:ca:f4:d8:c0:
01:24:75:bc:c6:d9:fc:da:71:e1:35:8d:fe:50:72:1b:cc:00:
bd:b6:12:3c:1a:c8:e2:61:e5:23:71:93:47:8d:e9:00:95:f3:
90:fb:a4:6b:df:1e:80:9e:57:6d:58:fe:ae:38:6f:c1:48:83:
c4:45:e4:77:6b:8f:03:eb:b7:a7:83:47:dd:bf:07:84:9d:67:
6a:39:5e:86:f4:9b:e3:60:91:0a:3c:dd:40:3d:6f:43:94:10:
76:d1:46:1d:3f:a5:12:72:c1:a7:e6:42:8f:48:69:4d:77:a3:
ae:d7:e4:0a:06:2b:ed:19:f0:82:06:b7:94:fa:56:45:21:6c:
13:52:59:d3:25:82:93:d9:b3:69:82:7f:e5:4e:db:66:a6:e5:
cd:c5:a4:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:13:58 2025 by rpki-client