Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/AP2F6DnDWrHv_xu8cr-Aoc-bIt4.roa
File: AP2F6DnDWrHv_xu8cr-Aoc-bIt4.roa (raw, json)
Hash identifier: LH1eowithfp0Nh5OHwlEx3jwMOeq9FdBZtmrjg7Bc74=
Subject key identifier: 00:FD:85:E8:39:C3:5A:B1:EF:FF:1B:BC:72:BF:80:A1:CF:9B:22:DE
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 11F9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/AP2F6DnDWrHv_xu8cr-Aoc-bIt4.roa
Signing time: Mon 26 Aug 2024 05:24:35 +0000
ROA not before: Mon 26 Aug 2024 05:24:35 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 17213
IP address blocks: 60.198.155.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 04 Feb 2025 06:40:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4601 (0x11f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Aug 26 05:24:35 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=00FD85E839C35AB1EFFF1BBC72BF80A1CF9B22DE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:81:39:23:81:58:01:15:0a:98:aa:6b:b6:4f:
e3:79:f1:98:23:48:e2:13:3d:8a:91:28:ba:0e:d5:
76:23:bd:2e:3b:e8:1e:af:88:fa:79:99:c9:6c:c4:
75:1b:25:1c:f7:e6:22:65:20:2c:09:af:9a:73:30:
49:3e:35:d3:7c:86:3b:8a:89:c6:c2:0e:04:cd:e6:
a5:24:8a:d1:2c:e0:de:4f:c3:ee:7e:df:43:69:d0:
67:32:59:82:65:e2:ed:b3:93:41:fd:3b:a1:df:09:
40:4d:96:f8:fe:5c:c5:a4:ab:bf:c2:43:85:66:fb:
09:89:90:1a:a8:e7:ca:4f:69:2c:88:1f:73:b2:82:
2d:91:f2:7d:ca:15:13:dc:c4:68:5c:10:3a:60:bb:
0b:d6:4f:90:22:e4:33:8e:8c:cd:94:58:68:3e:5e:
66:d4:29:3a:fc:9f:20:77:58:b1:18:68:6a:4a:de:
49:a5:d8:65:27:e8:d3:56:02:4b:bc:70:f7:7b:e7:
1d:18:3a:a6:5a:ee:a1:96:6c:fb:e6:bb:ca:fc:15:
99:6d:9f:03:c5:0c:47:c9:8d:e4:99:4b:d5:f8:92:
fd:ac:da:ec:98:03:8c:24:7b:d7:4a:ec:f7:e9:58:
df:3f:30:a5:e5:67:3e:a0:ee:7f:61:05:d2:d1:00:
14:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:FD:85:E8:39:C3:5A:B1:EF:FF:1B:BC:72:BF:80:A1:CF:9B:22:DE
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/AP2F6DnDWrHv_xu8cr-Aoc-bIt4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.198.155.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:c7:a8:f1:cb:f1:26:28:44:0e:22:7c:1e:2e:fb:9f:d7:f4:
bf:49:19:31:77:3b:87:c5:70:4b:46:3d:ee:4f:74:61:6f:bb:
da:20:0f:67:62:a0:13:fd:84:d7:ed:cb:97:73:15:52:b9:8a:
18:66:8c:9f:8b:80:ed:c5:8f:1e:2a:04:67:99:7a:41:4d:1f:
be:49:15:c9:33:a7:c1:5e:59:2e:6d:c4:aa:d4:4c:c9:ac:eb:
f6:5f:0a:0f:4b:5c:15:09:1b:33:c8:4d:89:7b:9a:71:51:5d:
ab:ba:2d:55:4f:ef:dc:62:33:19:1c:86:ae:fc:03:0d:0f:3b:
fb:09:91:5d:06:2f:1a:1b:7a:26:01:64:99:dc:63:e9:eb:db:
92:df:13:0f:ee:17:02:46:12:2a:51:20:60:45:24:96:1b:8c:
17:6e:ef:2a:d4:5c:ed:7b:4e:3f:75:1b:c7:70:33:f5:d4:1c:
ac:d1:22:bf:77:cd:10:39:80:4e:0a:ec:1e:93:a4:6b:05:10:
35:27:41:80:a1:ae:4f:f4:fd:2d:70:6a:b3:95:5f:72:19:97:
32:4f:4b:f0:ae:6f:7e:b5:56:58:d4:7a:2e:56:64:62:cc:84:
fd:df:e1:6c:44:04:4f:90:40:aa:81:0c:3f:53:e0:20:ab:d8:
22:10:e2:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:34:09 2025 by rpki-client