Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/L0leyRAOuEruSSWsYgOoeMatn90.roa
File: L0leyRAOuEruSSWsYgOoeMatn90.roa (raw, json)
Hash identifier: dI41CWj7228g6bB0Uu7f3ssRCIwin/b4azoIgciJYbc=
Subject key identifier: 2F:49:5E:C9:10:0E:B8:4A:EE:49:25:AC:62:03:A8:78:C6:AD:9F:DD
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 11F6
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/L0leyRAOuEruSSWsYgOoeMatn90.roa
Signing time: Mon 26 Aug 2024 05:24:34 +0000
ROA not before: Mon 26 Aug 2024 05:24:34 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9924
IP address blocks: 210.192.128.0/17 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:09:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4598 (0x11f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Aug 26 05:24:34 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=2F495EC9100EB84AEE4925AC6203A878C6AD9FDD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:1e:fa:e5:95:09:f2:ae:be:68:5b:7c:6e:b4:
01:7f:16:d3:29:27:86:7d:ed:7e:ee:b1:c4:be:46:
77:06:43:89:0e:ec:5f:af:a1:fb:9f:7d:6c:47:62:
1c:fd:18:a8:4e:12:05:2e:04:fa:75:12:90:00:98:
cc:80:1e:1c:9e:81:4a:38:1f:91:3f:02:e0:e0:99:
d3:fa:0b:ca:88:88:73:96:8e:0d:77:20:cd:b3:c6:
43:f7:39:fc:c8:59:b7:05:cb:0b:7d:11:b1:d5:7d:
3b:6a:11:31:22:06:fe:d4:88:15:b6:46:30:29:7b:
0d:bf:17:f6:4c:fb:d3:d5:1f:85:b4:24:b0:4a:ee:
61:e9:e7:bb:d9:f5:ec:92:5e:6c:e4:7f:7b:d3:ce:
62:dd:ba:fb:01:54:98:20:7c:54:ed:48:20:51:eb:
56:fc:2f:67:46:85:9e:41:bb:c2:c8:cc:36:bf:79:
83:0d:27:5e:05:15:33:d3:34:4e:5c:28:1b:71:4a:
9d:39:c4:2f:d1:59:8c:ef:d4:69:1f:66:1b:4b:1f:
2e:1e:77:1b:73:e8:b3:cf:dc:0c:d4:b3:b1:80:9f:
1f:98:c8:9b:8f:74:6b:d0:81:eb:31:78:80:a3:7f:
ea:73:38:b4:82:1b:31:28:36:80:30:84:9a:8d:19:
88:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:49:5E:C9:10:0E:B8:4A:EE:49:25:AC:62:03:A8:78:C6:AD:9F:DD
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/L0leyRAOuEruSSWsYgOoeMatn90.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.192.128.0/17
Signature Algorithm: sha256WithRSAEncryption
6c:f1:0c:5a:3f:d3:34:20:4b:ce:34:0e:67:69:79:79:80:a5:
8b:0a:ff:72:32:7d:08:06:57:e6:1d:52:da:b6:bc:85:c8:c8:
a3:68:43:f1:db:50:b1:9d:db:d7:f6:14:fc:ee:54:d0:75:60:
e0:0e:fa:d0:66:be:0f:34:01:13:45:72:fb:92:90:2d:b2:95:
45:70:28:02:27:fa:2f:9f:0c:90:fd:ad:76:e6:e2:9c:25:8c:
e1:e0:49:d4:70:e9:43:0c:08:20:e3:a7:ea:a3:d6:0d:94:64:
c6:32:26:79:e3:d6:38:38:5a:24:31:a2:03:f8:47:c4:21:4d:
12:2f:ba:a1:58:35:ed:17:4b:53:1c:3e:bf:07:51:e4:62:3d:
96:ca:60:96:e5:23:10:9c:d9:ca:a9:e2:2d:f6:a8:69:67:07:
56:b0:4e:4b:39:1e:24:e5:45:7f:23:85:96:e1:89:0d:85:69:
bd:bb:01:d8:da:64:b6:6e:0a:31:4e:eb:75:c2:68:5f:4a:01:
6f:6c:f1:12:db:9d:3a:90:07:af:56:9c:80:ca:b6:be:f8:cc:
c8:45:28:6a:f2:32:b9:b3:dc:55:2f:e6:da:1f:77:1f:1b:fc:
3c:c4:5b:56:64:36:a9:3c:27:a9:dd:79:29:d9:3f:34:c0:c8:
55:ca:50:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:23:22 2025 by rpki-client