Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/BsMfmaVaKNLZKkCW5ffTvc6CGmY.roa
File: BsMfmaVaKNLZKkCW5ffTvc6CGmY.roa (raw, json)
Hash identifier: AF5JUN8IRNC59ziMJwFDsv8sQ7VRvLfEon9XN8KJr14=
Subject key identifier: 06:C3:1F:99:A5:5A:28:D2:D9:2A:40:96:E5:F7:D3:BD:CE:82:1A:66
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 120A
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/BsMfmaVaKNLZKkCW5ffTvc6CGmY.roa
Signing time: Mon 26 Aug 2024 05:24:38 +0000
ROA not before: Mon 26 Aug 2024 05:24:38 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24158
IP address blocks: 2001:4546:1000:da00::/56 maxlen: 64
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:09:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4618 (0x120a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Aug 26 05:24:38 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=06C31F99A55A28D2D92A4096E5F7D3BDCE821A66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:99:b9:9a:c7:53:87:41:94:be:06:20:86:85:
58:74:85:8e:51:00:8b:2e:c4:32:b2:22:71:5a:0f:
88:69:9d:3e:e6:98:9d:da:6b:df:50:30:c3:e0:ab:
42:4f:61:d0:51:b3:98:47:88:38:b1:48:df:8b:59:
e9:9d:5c:74:ef:16:63:55:4c:cb:ba:bc:a3:44:70:
91:ac:87:34:54:fb:fd:be:eb:d3:a5:6b:ec:c6:e9:
30:16:2c:b6:31:23:41:f8:21:fb:22:93:af:5b:5c:
f6:f9:6d:11:1e:d1:45:a3:40:e3:5d:bc:96:50:43:
d8:61:bb:85:5d:17:d2:40:df:f3:f2:31:94:88:40:
86:fe:00:3f:99:fa:57:a7:ca:57:39:13:e5:a1:1b:
c7:dd:29:b8:c1:a5:5b:4d:36:20:d2:58:73:f5:a2:
bb:52:1e:b4:e3:17:e7:b6:58:cb:db:a7:74:aa:0d:
25:cc:82:23:f2:fc:20:13:4f:05:e4:f6:38:48:b6:
dd:14:dc:54:87:fa:a3:15:40:40:76:da:e9:4e:67:
32:fb:7c:64:8e:2f:ef:e8:81:2e:07:a0:1a:7b:7f:
35:bd:a2:9f:bd:ff:8e:87:01:a7:03:b4:57:74:71:
b0:60:11:3f:c0:ad:ec:b5:86:c7:20:12:1b:0b:9a:
79:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:C3:1F:99:A5:5A:28:D2:D9:2A:40:96:E5:F7:D3:BD:CE:82:1A:66
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/BsMfmaVaKNLZKkCW5ffTvc6CGmY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:4546:1000:da00::/56
Signature Algorithm: sha256WithRSAEncryption
2f:fe:84:7a:ed:30:bc:e1:ca:65:f5:b2:7d:7e:a4:5e:76:6e:
a5:b4:5f:c5:51:ef:5c:d7:de:10:d8:48:07:ce:2c:1a:6e:bc:
64:04:8f:43:50:be:32:d6:47:2f:a0:07:17:ec:5e:a6:c5:2a:
e2:39:3a:ac:73:df:18:6d:36:dd:f8:7e:4c:b5:04:ec:bd:91:
0d:cf:ed:04:87:1e:4e:65:02:27:8d:22:1d:c1:08:15:19:4b:
6c:c4:f4:20:2b:07:58:ba:23:20:6f:d8:6b:07:57:51:0a:3d:
39:f7:ee:50:00:b1:31:df:09:2a:7c:6b:7e:85:44:d9:cc:0b:
1e:5c:c2:e7:3d:eb:47:89:17:e7:c4:8a:3e:32:03:a0:1a:b3:
7a:14:40:38:29:c0:c2:fa:89:c0:6a:be:76:56:71:9b:7f:d0:
49:db:a4:20:16:43:f1:85:29:86:66:fa:08:7d:da:a8:1f:f2:
73:cc:74:02:76:23:af:79:54:06:97:ef:90:55:f0:20:58:6b:
e3:88:e6:d9:d9:36:36:76:8c:46:24:61:fa:9c:b2:d9:18:9a:
74:2b:ab:da:87:5d:90:35:a5:75:0a:e5:e7:5c:44:9e:65:e1:
9e:6e:a0:c0:dd:f7:e1:21:e2:d0:19:c4:87:02:8f:51:7f:49:
15:55:16:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:20:59 2025 by rpki-client