Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Droqdob2zFAOPmLz4YGfvVsYeiI.roa
File: Droqdob2zFAOPmLz4YGfvVsYeiI.roa (raw, json)
Hash identifier: McPrHHPZR6DFUjS6F6jmrbsblKr/htleVxGHTh2JF3E=
Subject key identifier: 0E:BA:2A:76:86:F6:CC:50:0E:3E:62:F3:E1:81:9F:BD:5B:18:7A:22
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 1213
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Droqdob2zFAOPmLz4YGfvVsYeiI.roa
Signing time: Mon 26 Aug 2024 05:24:40 +0000
ROA not before: Mon 26 Aug 2024 05:24:40 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9924
IP address blocks: 210.208.192.0/18 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:09:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4627 (0x1213)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Aug 26 05:24:40 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=0EBA2A7686F6CC500E3E62F3E1819FBD5B187A22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:51:be:1e:e0:09:32:f7:b4:9b:ff:cc:4f:7c:
cd:41:6a:20:88:43:c3:39:3d:58:70:b3:d2:67:7a:
7b:f8:9e:57:27:ac:3d:1f:40:a2:c0:a8:23:c8:63:
00:58:03:b0:22:66:9b:a4:e3:9f:a5:54:ce:bb:83:
17:f1:58:d6:5e:df:ff:e8:7a:dc:93:f2:96:4c:d6:
27:39:79:d3:52:d1:fb:95:64:ec:6f:e2:74:4c:98:
59:88:65:fb:e2:8e:92:eb:8d:45:3e:31:52:0c:f1:
6a:b6:aa:d6:b1:e7:4d:92:14:c9:3c:12:0e:af:ae:
6c:61:82:ed:48:c7:7c:aa:ee:34:f9:e8:60:66:35:
36:fc:88:0e:9a:9d:51:28:3c:b8:85:41:40:1a:29:
ac:ee:34:55:b7:c6:08:ef:d2:d0:af:63:01:6a:af:
09:da:a8:6d:b6:34:b8:55:8e:cd:4e:7e:b9:3e:62:
e1:35:c4:3f:ee:db:0e:91:1e:2e:ce:08:11:b4:5f:
fb:1a:b2:bd:f9:be:a7:e3:bf:05:c0:f7:06:5d:9b:
46:28:a1:01:0a:22:6d:d1:25:2f:bb:73:52:80:8d:
65:d3:56:f5:6f:44:c3:a5:b3:fc:fc:ad:c5:1e:e1:
6f:d4:3d:e7:d3:2e:3c:eb:39:2f:70:3b:9a:fb:37:
01:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:BA:2A:76:86:F6:CC:50:0E:3E:62:F3:E1:81:9F:BD:5B:18:7A:22
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Droqdob2zFAOPmLz4YGfvVsYeiI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.208.192.0/18
Signature Algorithm: sha256WithRSAEncryption
75:46:1f:cd:b0:66:06:97:24:db:3c:05:16:e1:56:0e:a6:f1:
cf:be:01:49:d6:0b:ff:8e:80:06:ee:8d:e1:a8:c0:5c:8d:02:
b9:2b:f6:72:5e:bc:74:e4:cf:14:c2:54:ee:42:67:18:5a:0a:
f6:db:0f:ed:1f:9a:cf:98:cf:ce:d6:44:d1:c8:f6:ff:49:5c:
62:68:d3:fb:47:bd:61:3d:78:2b:d4:24:44:be:18:e9:9d:98:
ca:91:67:18:67:36:35:b2:b4:b5:31:3c:7b:da:6c:72:98:5c:
39:54:d2:12:fe:7c:af:65:0a:6d:4f:9c:00:62:df:35:7a:92:
b1:55:e6:9f:9d:64:fe:95:02:0c:b1:6b:c1:02:d1:4b:66:aa:
64:d0:e0:d0:db:74:95:e9:89:89:aa:84:a6:67:c7:24:82:0e:
c5:aa:3f:9b:ba:6d:1c:ab:d3:2c:d1:d0:d8:bd:09:3f:12:4e:
9d:27:f7:52:51:6b:93:9c:ca:23:3f:b8:0d:18:d1:84:da:f3:
5f:b8:ba:1d:17:3a:5f:e6:dd:ac:b0:9d:f5:a8:e2:ab:46:58:
b0:41:e6:bd:00:98:fa:4a:57:6f:3b:bf:3f:d1:a0:61:93:e7:
a9:d4:11:30:18:1b:e2:c4:ae:07:bf:9d:3a:20:4e:03:a0:48:
87:aa:b2:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:37:27 2025 by rpki-client