Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/KzZV73f-PuHYct3O5HxVH0Q125w.roa
File: KzZV73f-PuHYct3O5HxVH0Q125w.roa (raw, json)
Hash identifier: rBSsEVaMTMYxjDixvfSi60/viMG3t1k2xPFCsrQ+UA8=
Subject key identifier: 2B:36:55:EF:77:FE:3E:E1:D8:72:DD:CE:E4:7C:55:1F:44:35:DB:9C
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 1212
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/KzZV73f-PuHYct3O5HxVH0Q125w.roa
Signing time: Mon 26 Aug 2024 05:24:40 +0000
ROA not before: Mon 26 Aug 2024 05:24:40 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9924
IP address blocks: 219.86.0.0/15 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:09:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4626 (0x1212)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Aug 26 05:24:40 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=2B3655EF77FE3EE1D872DDCEE47C551F4435DB9C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:4c:3f:b5:d2:eb:33:9e:6d:ea:9c:d4:93:b6:
54:1a:4d:21:63:f9:9a:e4:fe:45:2d:3b:35:08:26:
dc:8b:cd:b9:ed:05:ec:64:9f:44:63:a5:51:64:b8:
20:17:18:6d:c6:88:02:20:ea:c4:0a:76:6e:24:09:
72:dd:07:15:8f:1d:d1:ba:e9:3d:a8:e5:23:7f:d7:
09:4c:16:1a:28:a7:80:24:df:7b:9b:73:b9:01:ea:
87:4e:6c:90:5e:7a:1f:cd:c2:d3:40:07:a0:78:a4:
ca:70:7d:7e:db:4a:fc:61:ea:3e:7b:59:4f:1d:6f:
8c:33:a4:29:48:a2:c4:d4:15:f8:03:08:10:68:d8:
12:6f:a4:e1:28:e7:8a:b3:1f:2f:a3:12:7b:5b:c9:
5e:3e:2e:51:d3:7f:55:c1:f5:ed:aa:15:37:11:53:
1b:16:6e:f5:ce:14:b1:72:82:5c:b0:ef:df:47:75:
95:7b:9d:eb:ec:a3:89:77:5d:0d:93:b8:25:3a:ab:
d0:29:42:43:2e:5e:94:d3:aa:4e:51:89:2a:69:4d:
9e:f2:67:50:27:d6:68:0c:ac:76:0a:8b:20:97:c2:
af:9a:0e:c3:b7:bb:57:14:b0:2a:1d:f6:2c:51:8c:
e0:e0:f6:f5:38:92:af:6d:1e:ae:24:97:30:0c:cf:
3e:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:36:55:EF:77:FE:3E:E1:D8:72:DD:CE:E4:7C:55:1F:44:35:DB:9C
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/KzZV73f-PuHYct3O5HxVH0Q125w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.86.0.0/15
Signature Algorithm: sha256WithRSAEncryption
7f:6e:16:89:5f:d2:61:f3:e4:74:64:8d:84:c9:8f:43:e3:7e:
f0:c7:6b:0f:2c:4d:02:7d:ab:35:77:5e:ca:93:91:12:0a:d2:
db:dd:a7:ad:2b:9b:54:a4:91:ae:81:ba:f4:87:31:ad:1d:47:
7e:e3:6d:44:0e:68:25:25:2e:87:6e:b1:a9:33:68:32:51:c0:
03:32:3d:51:03:4d:f5:16:d3:25:2e:b4:57:39:4a:9c:cd:1d:
c3:92:0c:f2:bc:c4:2d:1c:93:a0:8d:ca:08:73:f6:a7:c1:cc:
52:36:db:0c:92:91:31:d9:e5:b0:dc:b4:fb:e5:ce:8f:78:2d:
c3:9b:7c:06:70:f8:2c:b4:98:1f:20:6e:b8:2f:4f:84:01:c6:
a6:71:6d:6f:c6:a1:f6:92:e8:bd:62:a7:2d:3e:59:1b:49:ee:
83:3c:76:e4:44:4c:d8:c2:9d:d8:2b:6e:72:4e:51:b8:05:d6:
cc:d6:2b:f2:66:fa:3b:c8:63:ec:23:30:40:07:78:f3:a0:27:
6d:2c:21:39:ad:28:7f:e1:db:3e:8e:5d:b0:12:77:7b:b2:0c:
a7:7c:94:a4:01:f3:e5:e3:74:9c:05:95:f6:21:d7:c9:03:55:
a1:78:2b:b3:f9:f1:c9:2d:4b:7c:11:5e:1e:73:4c:1c:27:1c:
dd:37:e4:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:19:01 2025 by rpki-client