Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/IG5BgGAxJ8Nli3hNwI9m9XNDtOw.roa
File: IG5BgGAxJ8Nli3hNwI9m9XNDtOw.roa (raw, json)
Hash identifier: MYq0Ynze0gaJJGLzHI4q8QHXzKbw1IaxrP99zTAkwPI=
Subject key identifier: 20:6E:41:80:60:31:27:C3:65:8B:78:4D:C0:8F:66:F5:73:43:B4:EC
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 11DD
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/IG5BgGAxJ8Nli3hNwI9m9XNDtOw.roa
Signing time: Mon 26 Aug 2024 05:24:28 +0000
ROA not before: Mon 26 Aug 2024 05:24:28 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9924
IP address blocks: 60.199.176.0/24 maxlen: 32
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:08:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4573 (0x11dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Aug 26 05:24:28 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=206E4180603127C3658B784DC08F66F57343B4EC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b4:d8:82:92:25:f0:f4:61:93:f0:b4:eb:e1:
dc:bd:8f:be:05:cc:82:03:c5:0a:e0:db:7c:17:0a:
fe:8e:34:22:0a:5c:43:ff:d1:b1:90:46:2e:b7:32:
d9:35:a2:27:13:d7:87:9e:3e:ad:ee:72:8b:91:c5:
f8:bb:86:ca:77:45:55:fc:d2:41:42:e5:11:9f:26:
d6:d5:97:38:5a:4a:44:5d:ee:03:16:d9:13:73:72:
3e:e5:dd:b1:d9:79:03:f0:70:bd:61:ae:5c:5e:3a:
8e:65:b4:0e:b4:02:8d:67:79:38:56:e2:4b:76:bb:
37:28:72:c7:c3:69:60:35:bf:be:ba:73:4c:a9:47:
b5:00:0c:bc:75:f4:36:c5:57:9d:50:2d:42:65:7e:
94:b5:be:ba:bf:4b:1d:b5:12:08:69:fd:57:47:9b:
d9:b4:d7:45:bd:46:96:cd:ef:71:d5:2e:7a:71:35:
df:db:26:f9:d2:b6:a7:e2:15:8e:c0:d2:f7:97:81:
52:29:c5:0e:8d:ae:53:72:54:56:1f:a8:be:8e:21:
6f:cf:b9:a3:4a:93:4c:83:c5:cb:2b:64:c7:75:28:
67:73:94:44:99:8f:77:0d:6c:f1:d1:3e:45:a1:c6:
c9:54:01:e5:d0:9b:d2:2c:92:34:84:30:29:74:fe:
1a:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:6E:41:80:60:31:27:C3:65:8B:78:4D:C0:8F:66:F5:73:43:B4:EC
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/IG5BgGAxJ8Nli3hNwI9m9XNDtOw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.199.176.0/24
Signature Algorithm: sha256WithRSAEncryption
73:56:4a:5f:f9:91:a1:54:28:6d:d4:66:ad:38:54:55:4f:f7:
0c:82:4f:00:e1:f5:af:83:ff:02:cc:f7:c5:bf:fe:23:48:18:
af:0a:d5:06:d0:61:63:8d:b1:da:c4:40:37:ca:98:ec:b0:4b:
fe:a4:05:0b:78:0f:c3:a2:73:41:b7:b0:4f:ab:e3:bc:0f:30:
8f:be:16:17:49:74:00:79:81:49:e7:57:ae:c1:2e:fc:76:87:
f4:7e:c0:4e:7b:81:c2:a4:69:d9:54:66:28:ea:60:ce:a9:77:
94:7b:8a:dd:cb:a8:7b:6c:32:c7:16:3b:2f:48:dd:4d:65:a0:
8b:c1:ec:df:db:8e:f4:a1:21:ff:23:04:b9:60:dd:40:62:3f:
e6:28:6d:09:2a:e8:f3:4a:03:5e:07:7a:3c:30:f7:a1:da:9b:
a6:1c:bf:50:72:dd:5a:d0:fc:84:53:ef:57:dd:54:05:78:fb:
2b:c5:df:2e:29:d5:7d:12:6d:40:71:d2:c1:cc:2f:7f:00:35:
21:e9:7f:bc:d1:1c:32:b1:87:73:b7:74:47:b0:97:1b:a5:c3:
ed:c7:ca:44:58:57:31:43:87:3a:5e:6a:69:bb:88:58:73:8e:
38:28:c7:30:4d:8c:58:63:bc:e5:c0:f3:72:81:d0:49:56:5c:
a5:36:4c:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 12:33:02 2025 by rpki-client