Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/H1xNvyE2M7H5si_PLnJ16SBrtfA.roa
File: H1xNvyE2M7H5si_PLnJ16SBrtfA.roa (raw, json)
Hash identifier: 4oD46Baa6NvelliYPgg5zlaHz4p9YZ3gUY/bBwkt2fE=
Subject key identifier: 1F:5C:4D:BF:21:36:33:B1:F9:B2:2F:CF:2E:72:75:E9:20:6B:B5:F0
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/H1xNvyE2M7H5si_PLnJ16SBrtfA.roa
Signing time: Thu 15 Sep 2022 02:47:04 +0000
ROA not before: Thu 15 Sep 2022 02:47:04 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9924
IP address blocks: 60.199.168.0/24 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:47:04 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=1F5C4DBF213633B1F9B22FCF2E7275E9206BB5F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:20:d3:bb:8d:18:58:3a:88:36:7d:e2:f5:b3:
f4:fb:18:aa:03:f6:ee:75:b7:b2:c6:40:46:ce:26:
c7:50:7f:d4:93:3d:b3:29:ed:57:88:f3:4c:11:95:
f8:e0:d1:47:55:e2:b8:5c:f3:47:f1:a3:36:fe:bc:
c1:95:a1:d0:a0:06:ed:d0:0e:fa:ef:58:94:1c:57:
e1:df:dc:73:8f:2a:85:ba:60:c1:14:82:d3:90:09:
9e:63:4e:c6:bd:9c:fe:82:58:fa:36:26:ef:b8:08:
b0:2b:3c:5f:e8:be:17:73:8b:b3:ef:8e:76:96:cf:
6a:3b:6c:ab:2b:b8:c3:07:c3:ee:11:46:e9:02:1b:
e6:99:18:a3:78:95:e0:62:9b:a1:77:ec:85:73:b3:
d1:d3:4c:ab:cb:e2:8f:d2:2a:24:d2:49:93:46:9f:
9d:69:75:22:d6:f5:9f:ae:d1:e0:87:df:e7:a6:41:
c6:4a:c9:ce:55:03:4e:03:e3:77:60:e6:9a:61:f8:
a8:f2:81:7c:19:99:d9:be:08:2d:6b:91:37:5a:db:
be:df:62:0e:d3:a3:c2:ac:5b:a7:59:9f:a9:e3:27:
49:17:5a:58:f8:40:eb:71:66:0c:03:26:af:90:5e:
43:78:15:07:06:23:8b:45:84:9f:55:fb:5c:bd:a8:
f8:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:5C:4D:BF:21:36:33:B1:F9:B2:2F:CF:2E:72:75:E9:20:6B:B5:F0
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/H1xNvyE2M7H5si_PLnJ16SBrtfA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.199.168.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:ea:c6:a1:38:6f:c1:66:0c:4b:08:30:b6:1d:9e:ef:2c:02:
f6:10:21:10:0e:2a:75:4e:09:c8:3f:97:21:d1:83:ba:aa:f7:
73:3d:2e:c9:15:bc:33:36:d3:e7:80:0d:bb:a2:41:3d:f3:fc:
65:0f:ec:38:45:e1:8d:b7:38:79:fa:bd:68:38:86:22:c4:9b:
e2:96:94:f2:6c:54:f3:6c:1a:dd:c0:b0:c9:da:f3:4e:f5:fd:
9b:9a:1c:68:05:30:03:27:d4:1e:e4:7f:a3:82:72:ad:81:ee:
b5:52:e0:69:7a:ba:5d:cd:65:33:92:bb:ee:07:89:84:3e:59:
d2:03:c4:4c:ff:f9:9e:9d:d9:be:bd:82:9f:1b:30:38:bc:8b:
46:e9:85:d9:0c:15:12:39:b2:bf:92:d5:97:bd:27:17:d9:62:
60:c9:d1:66:24:4f:3a:25:b2:d9:c4:66:5a:0c:86:d9:47:4f:
57:ed:88:fd:ec:17:19:ab:c8:59:d9:6a:e2:82:b4:ae:8c:89:
e9:ee:43:6f:82:21:d1:1a:e9:f1:f9:62:c7:4f:22:a6:da:33:
39:db:a7:18:7f:02:b0:c8:1e:ad:f3:8d:3e:d6:27:89:81:58:
f0:18:4f:1e:8d:72:cc:8b:cd:7c:52:e2:35:13:94:1b:9e:ae:
a6:30:c7:1c
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICDckwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMjA5MTUw
MjQ3MDRaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDFGNUM0REJGMjEzNjMz
QjFGOUIyMkZDRjJFNzI3NUU5MjA2QkI1RjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCkINO7jRhYOog2feL1s/T7GKoD9u51t7LGQEbOJsdQf9STPbMp
7VeI80wRlfjg0UdV4rhc80fxozb+vMGVodCgBu3QDvrvWJQcV+Hf3HOPKoW6YMEU
gtOQCZ5jTsa9nP6CWPo2Ju+4CLArPF/ovhdzi7PvjnaWz2o7bKsruMMHw+4RRukC
G+aZGKN4leBim6F37IVzs9HTTKvL4o/SKiTSSZNGn51pdSLW9Z+u0eCH3+emQcZK
yc5VA04D43dg5pph+KjygXwZmdm+CC1rkTda277fYg7To8KsW6dZn6njJ0kXWlj4
QOtxZgwDJq+QXkN4FQcGI4tFhJ9V+1y9qPixAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUH1xNvyE2M7H5si/PLnJ16SBrtfAwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvSDF4TnZ5RTJNN0g1c2lf
UExuSjE2U0JydGZBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
ADzHqDANBgkqhkiG9w0BAQsFAAOCAQEAH+rGoThvwWYMSwgwth2e7ywC9hAhEA4q
dU4JyD+XIdGDuqr3cz0uyRW8MzbT54ANu6JBPfP8ZQ/sOEXhjbc4efq9aDiGIsSb
4paU8mxU82wa3cCwydrzTvX9m5ocaAUwAyfUHuR/o4JyrYHutVLgaXq6Xc1lM5K7
7geJhD5Z0gPETP/5np3Zvr2CnxswOLyLRumF2QwVEjmyv5LVl70nF9liYMnRZiRP
OiWy2cRmWgyG2UdPV+2I/ewXGavIWdlq4oK0royJ6e5Db4Ih0Rrp8flix08iptoz
OdunGH8CsMgerfONPtYniYFY8BhPHo1yzIvNfFLiNROUG56upjDHHA==
-----END CERTIFICATE-----
Generated at Fri Sep 1 10:18:39 2023 by rpki-client on console-fra.rpki-client.org