Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/T2t2uZ_zJ9uAzB9Ew5JXeMyQmjk.roa
File: T2t2uZ_zJ9uAzB9Ew5JXeMyQmjk.roa (raw, json)
Hash identifier: mgm3wi5YmxJJF3lCHnUusPeYr20DUzoU6dF6ubLdBwQ=
Subject key identifier: 4F:6B:76:B9:9F:F3:27:DB:80:CC:1F:44:C3:92:57:78:CC:90:9A:39
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/T2t2uZ_zJ9uAzB9Ew5JXeMyQmjk.roa
Signing time: Thu 15 Sep 2022 02:46:49 +0000
ROA not before: Thu 15 Sep 2022 02:46:49 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9924
IP address blocks: 210.67.160.0/19 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:46:49 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=4F6B76B99FF327DB80CC1F44C3925778CC909A39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:5f:86:4a:1f:b1:43:23:ea:6e:a6:ec:d9:ee:
78:eb:91:5b:09:92:fd:e9:8f:c3:4b:34:80:fc:95:
fe:a4:bc:1b:ae:a2:8a:0b:e3:13:08:d1:fd:58:0f:
8e:ba:ab:7e:a4:a7:7e:a9:9a:d0:16:12:fe:22:16:
af:6d:3f:ac:ee:de:0d:f5:76:57:87:ce:85:86:94:
e2:8e:98:04:1f:53:4a:45:36:66:b7:cc:ad:3f:f9:
b9:38:e2:25:d4:f8:19:13:ba:ce:c7:b8:d3:f5:22:
5a:00:f1:30:07:c4:c4:b1:e3:0e:c3:b1:00:af:e3:
4b:26:f8:e8:0a:0f:9a:f4:3d:b5:65:8b:e5:56:ff:
2f:4f:a5:a2:8b:7b:4e:d6:5e:76:18:c8:f4:f1:82:
65:42:f5:c3:cc:c3:36:d2:13:cb:94:22:2b:35:02:
86:d3:a4:4e:4b:9b:3d:1c:d9:3f:9e:31:fc:1b:5c:
13:2a:83:d4:32:c4:fd:5b:2a:2b:67:03:d0:f8:29:
6e:97:e7:f7:d3:7b:0c:80:57:3d:e7:23:a1:5c:e3:
11:c2:a1:56:e8:dd:a1:60:4a:f1:13:6e:ba:48:c8:
d6:de:ce:08:d8:ff:b9:3d:dc:38:be:de:25:ff:43:
6c:a3:c5:0a:88:1e:01:60:2b:6c:0d:be:2d:36:6b:
55:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:6B:76:B9:9F:F3:27:DB:80:CC:1F:44:C3:92:57:78:CC:90:9A:39
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/T2t2uZ_zJ9uAzB9Ew5JXeMyQmjk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.67.160.0/19
Signature Algorithm: sha256WithRSAEncryption
51:12:a2:16:7f:b3:6f:4b:0f:e1:33:ac:89:82:78:67:7c:c5:
19:b6:8a:88:28:53:4b:47:89:62:1d:34:42:8b:c6:bb:70:fd:
ed:f2:6f:cd:5d:70:5e:9e:3f:2e:7a:6a:80:b8:63:2b:d2:61:
c4:eb:e7:04:97:39:f9:20:77:5c:0c:d8:6a:1f:4a:51:0e:d4:
18:7a:14:4b:9d:28:2d:46:8a:04:4f:0a:5a:c8:03:87:50:1e:
de:9f:56:fa:6e:d7:5a:08:02:68:eb:39:9a:78:f6:64:e0:e3:
7c:23:64:c7:a8:cb:ad:88:f5:0c:1c:dc:fa:6f:d7:94:86:37:
53:06:85:95:00:ef:8f:88:fa:5e:b2:d0:fe:60:e0:da:2f:07:
66:24:10:89:38:f1:54:ce:bd:d5:a7:02:0b:a3:60:c1:ae:83:
af:29:ee:e4:31:fc:24:03:d6:7f:a9:4f:d1:f6:cb:60:30:db:
a6:4e:a8:e0:91:46:63:04:12:e8:99:d5:c9:f0:a0:b7:b6:9f:
c5:a1:f2:5b:8f:0f:44:48:2e:fe:31:fe:21:94:45:15:b6:dd:
a7:8a:6f:4b:64:4f:d2:f3:cc:11:89:9b:0d:18:56:39:9f:90:
e9:44:76:d2:af:78:d7:7c:57:08:e1:79:17:f5:df:87:68:1e:
4d:12:3b:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:18:39 2023 by rpki-client on console-fra.rpki-client.org