Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Esxibb3nDGTSvfNu_x_dfDnBdOo.roa
File: Esxibb3nDGTSvfNu_x_dfDnBdOo.roa (raw, json)
Hash identifier: Yoq+ouPtUbF5m4V0WXqMELPoHsdWCJIUPvcwQBNcSEk=
Subject key identifier: 12:CC:62:6D:BD:E7:0C:64:D2:BD:F3:6E:FF:1F:DD:7C:39:C1:74:EA
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Esxibb3nDGTSvfNu_x_dfDnBdOo.roa
Signing time: Thu 15 Sep 2022 02:47:05 +0000
ROA not before: Thu 15 Sep 2022 02:47:05 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131611
IP address blocks: 60.198.160.0/19 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:47:05 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=12CC626DBDE70C64D2BDF36EFF1FDD7C39C174EA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:8a:88:19:78:d5:02:ad:56:70:9a:38:02:d7:
8f:18:14:84:a2:0f:0e:de:db:36:d5:0d:11:74:e3:
5f:cf:29:e6:81:7d:f9:c2:5b:1c:47:94:0f:d5:d0:
1a:b6:05:2e:fe:53:7b:21:67:d7:5a:8f:41:11:7b:
9a:86:57:81:dd:20:1a:fa:f7:52:ff:e6:13:05:56:
0d:dc:40:cf:21:88:ee:91:45:80:2d:24:25:74:e4:
e1:b8:18:96:bb:7f:1a:f5:a8:7d:7c:32:d3:5c:8c:
da:34:85:07:91:3a:5b:3d:d9:b7:db:03:ea:ff:fc:
e5:41:7b:2f:a9:d9:43:b7:49:c1:7a:d8:75:11:20:
b6:0d:0c:82:be:7f:ef:91:aa:09:3a:12:16:bc:ac:
4c:fa:3b:df:e6:a5:78:4d:09:13:b5:3f:cf:b3:23:
87:97:4a:b5:58:4e:11:dc:85:e2:a1:96:da:0a:0a:
37:5e:8a:43:80:02:31:85:6c:4b:43:1c:f9:e1:8e:
76:d0:0a:b8:cc:b9:8e:b1:d6:ef:38:32:ba:2e:c9:
c0:dd:46:44:cc:59:5b:50:3e:15:cb:86:72:88:a4:
80:0e:b6:28:b4:f4:f9:c9:ef:4a:c2:22:22:86:c0:
a4:54:72:54:fc:0a:65:7e:ca:5a:21:16:6b:d1:f0:
96:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:CC:62:6D:BD:E7:0C:64:D2:BD:F3:6E:FF:1F:DD:7C:39:C1:74:EA
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Esxibb3nDGTSvfNu_x_dfDnBdOo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.198.160.0/19
Signature Algorithm: sha256WithRSAEncryption
34:49:b0:df:f6:69:f4:37:79:22:6d:0a:38:98:09:50:37:73:
17:7f:07:9c:cd:6a:0a:32:97:42:f3:b3:49:b1:2c:60:91:64:
7a:a8:17:86:50:6e:c4:aa:73:27:03:71:89:96:f2:d4:d8:7c:
0d:54:08:26:3c:19:29:8b:8f:88:81:93:99:98:90:fa:7d:c2:
29:25:a7:e7:0c:00:3c:20:ae:2c:e4:a5:45:dd:5c:de:cb:a0:
75:c0:55:f8:9a:db:ff:84:eb:e8:56:b6:e9:bc:09:59:70:69:
c0:dc:d4:f1:5f:fe:d4:20:0c:b2:23:07:e3:5f:81:aa:a9:33:
e7:ed:53:d0:0b:b1:85:ba:72:39:2d:42:e2:08:18:8b:60:d8:
27:cd:b9:71:3e:25:46:75:ed:7e:b7:97:6d:dc:80:af:94:52:
5e:2c:23:b4:c9:57:9c:fc:a0:49:ca:2d:41:95:e1:5a:fe:6d:
36:a9:27:7d:60:6d:37:eb:44:31:f2:73:85:8f:4e:75:db:48:
32:ef:12:57:1b:20:6f:b0:24:50:a9:2a:08:99:34:3e:97:39:
8d:ab:f3:f1:3a:da:19:14:e3:ae:bf:d7:24:86:0f:82:72:1e:
a1:16:42:fa:88:85:65:fc:27:31:e3:14:e1:03:27:5a:57:ae:
90:78:81:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:18:39 2023 by rpki-client on console-fra.rpki-client.org