Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/STbCTeOmHW5Uk2DcGdI-AMJ2g9s.roa
File: STbCTeOmHW5Uk2DcGdI-AMJ2g9s.roa (raw, json)
Hash identifier: rGS/mbgnw9RG2cbA/WlAlQHVbqSYo6u/YHNl53eB++w=
Subject key identifier: 49:36:C2:4D:E3:A6:1D:6E:54:93:60:DC:19:D2:3E:00:C2:76:83:DB
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 123B
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/STbCTeOmHW5Uk2DcGdI-AMJ2g9s.roa
Signing time: Mon 26 Aug 2024 05:24:48 +0000
ROA not before: Mon 26 Aug 2024 05:24:48 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9924
IP address blocks: 210.17.49.0/24 maxlen: 32
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:09:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4667 (0x123b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Aug 26 05:24:48 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=4936C24DE3A61D6E549360DC19D23E00C27683DB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:f3:8d:86:4d:2b:63:c0:15:26:c9:5c:77:52:
34:0e:d1:52:97:2d:88:04:37:29:74:6c:40:f0:d0:
fc:21:c8:39:06:ce:ac:f5:44:66:71:f9:5d:3d:19:
c1:d3:ea:bc:1d:f5:b5:76:a2:4e:72:2d:b3:7f:ff:
49:45:1e:ee:d6:0f:a9:e5:d3:69:93:8d:44:98:2f:
f6:26:dc:0c:0a:b8:c2:89:4a:06:ba:47:1e:f9:70:
05:69:27:4f:42:a1:f3:05:b9:89:85:31:70:5a:91:
f1:7d:77:fb:42:c4:78:ed:95:b8:68:b9:cd:cf:cb:
4e:16:38:d4:20:59:cb:3b:ae:a8:f4:ec:f3:21:d1:
ab:62:c4:0e:88:f4:64:06:e4:a0:54:53:9c:f6:7b:
3d:16:38:c9:8c:1e:fc:44:bd:1a:6e:4d:ca:20:c4:
dc:6c:0c:95:b9:a7:41:18:76:0c:6a:d0:c9:5b:52:
bc:8b:e3:17:1c:ce:29:5e:98:46:26:e1:59:5e:ba:
18:40:39:4e:91:4a:ec:73:6d:55:4c:8f:11:28:04:
ab:b3:be:c7:e8:d4:9c:04:c1:e6:28:0f:b8:64:dd:
f2:21:8b:f9:20:8c:12:40:bf:07:38:82:0c:58:b0:
43:76:6e:7b:26:a2:84:26:75:9b:32:34:a8:c6:c3:
09:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:36:C2:4D:E3:A6:1D:6E:54:93:60:DC:19:D2:3E:00:C2:76:83:DB
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/STbCTeOmHW5Uk2DcGdI-AMJ2g9s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.49.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:de:dd:0f:1a:1d:ec:5e:11:1f:56:65:3e:65:18:de:2a:bb:
57:fc:0e:19:ce:f7:6d:c4:67:f5:0e:24:f8:68:f3:e8:5a:2a:
9f:85:80:2b:ad:05:19:48:02:5a:44:d2:b7:4c:fa:d7:ca:93:
c9:e3:59:88:55:7c:c7:c4:ee:e3:fe:d2:a2:31:35:1b:35:31:
cb:d5:f1:bc:40:d0:23:dc:5c:b3:8f:40:2d:74:17:7f:34:ba:
e3:d4:28:f0:98:6e:68:41:dd:6d:67:3f:1e:ef:13:1d:25:7c:
2b:f1:95:61:dc:e4:ba:06:0b:2d:f4:cc:9d:ae:79:05:28:57:
f3:58:21:81:b8:96:08:67:1d:bb:11:e4:62:b0:ec:2e:2c:15:
32:1c:0d:57:d0:39:3b:bb:f5:9b:95:0b:fb:ba:9b:18:e2:be:
ff:c1:72:b4:08:0a:63:bb:94:a9:c3:c9:54:cf:37:89:62:fd:
53:df:ea:fb:60:f0:2a:c4:84:3c:9b:3f:ac:9c:ad:d0:02:c3:
3d:29:60:a2:aa:21:d4:10:ec:f5:14:2c:07:65:e7:8c:56:5d:
10:bc:77:3c:72:21:f3:e9:8a:25:81:30:c9:e7:48:89:94:73:
e1:09:10:56:0a:5d:9f:a0:89:38:97:cc:11:e9:8f:54:1f:6b:
5f:7b:a8:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:10:05 2025 by rpki-client