Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Tbq1MiEnZbRG0_CgnfIgvqrIoUM.roa
File: Tbq1MiEnZbRG0_CgnfIgvqrIoUM.roa (raw, json)
Hash identifier: i4amWJOjnE4M6+havZWxGktHG8do/+2PlslINsM1MWg=
Subject key identifier: 4D:BA:B5:32:21:27:65:B4:46:D3:F0:A0:9D:F2:20:BE:AA:C8:A1:43
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Tbq1MiEnZbRG0_CgnfIgvqrIoUM.roa
Signing time: Thu 15 Sep 2022 02:47:00 +0000
ROA not before: Thu 15 Sep 2022 02:47:00 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24158
IP address blocks: 175.97.0.0/16 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:47:00 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=4DBAB532212765B446D3F0A09DF220BEAAC8A143
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:9d:52:41:df:11:a2:fb:f0:d6:58:67:7c:37:
1a:62:c3:bc:c3:eb:20:d6:12:d5:04:6b:b1:13:41:
7f:cd:bc:b5:c4:ed:e7:81:76:8c:8d:28:14:c9:aa:
eb:d5:10:a0:f6:e9:54:78:e2:0c:e0:e8:e7:99:fe:
45:53:ef:dc:af:81:0a:9e:d2:fb:db:1d:6f:df:22:
82:b9:fd:cf:b0:17:88:1f:07:4b:07:a8:20:a6:28:
14:eb:d6:3f:be:d8:ea:a7:57:5f:82:da:7c:7b:29:
38:d7:dd:ea:1e:1d:d3:56:e7:b5:63:c8:ac:b6:f3:
f2:65:61:28:61:8d:11:a2:ff:32:20:1f:d7:5d:75:
6b:f0:ed:b1:ef:06:f1:2b:46:8b:bd:30:06:e0:1d:
3e:cf:8c:da:ef:4a:92:fd:fc:2b:b2:36:99:42:8e:
d4:e1:d9:01:f1:54:70:fc:30:ac:09:bc:a1:91:f9:
79:26:d2:2f:b9:05:41:35:60:11:dc:ff:1c:0b:3d:
ff:5d:c0:77:a4:1b:b5:28:56:b6:6a:0a:d1:99:2e:
4b:d2:83:02:95:a2:e8:1a:de:15:f0:85:15:3b:cb:
61:99:d7:87:a5:9e:0b:bd:2d:ab:ab:f6:58:6c:b2:
20:72:2a:8f:c6:a3:4d:06:70:e1:ce:bf:1e:00:84:
25:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:BA:B5:32:21:27:65:B4:46:D3:F0:A0:9D:F2:20:BE:AA:C8:A1:43
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/Tbq1MiEnZbRG0_CgnfIgvqrIoUM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.97.0.0/16
Signature Algorithm: sha256WithRSAEncryption
96:2f:b6:17:50:9a:37:45:4e:f6:a4:7d:9e:58:5d:a8:22:dc:
75:60:1a:bb:76:e9:20:53:c8:9c:3b:f3:0a:d8:43:e3:0c:9d:
db:8c:e3:51:19:84:6a:26:c4:91:2b:f6:5e:81:25:14:0b:ae:
c0:c6:b9:23:ae:a5:99:3f:2a:53:b0:13:6e:29:b5:3f:17:e7:
ea:7e:ff:10:f2:db:36:7c:df:e1:1f:67:be:f5:56:8a:2d:ad:
59:3d:9b:07:92:2a:00:57:26:28:3d:e4:61:58:90:87:a9:4b:
90:de:33:62:a2:c8:4c:d1:f5:48:1d:ee:c0:d5:04:c0:c2:4c:
22:d5:ca:7f:f9:c1:73:0f:0f:b0:da:7e:60:ef:12:b9:1f:1e:
2c:28:b7:63:7f:56:1b:ce:73:f2:69:ab:a8:cf:a0:d8:94:f9:
d3:d5:bd:54:54:a6:1d:a0:13:1a:68:03:f9:70:da:b8:22:26:
b8:17:65:eb:c2:57:a5:c5:eb:4f:b5:fe:3d:ac:cf:05:dc:8f:
b9:49:7c:7c:d1:88:ac:f3:04:8b:9e:fd:48:a7:05:52:5e:fb:
76:5f:1c:9e:79:2d:41:e5:01:b6:66:45:10:a7:3a:46:0a:99:
5f:af:1b:1a:c8:17:40:c2:45:a9:c4:7d:a2:b4:41:02:e8:21:
81:6b:80:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:18:39 2023 by rpki-client on console-fra.rpki-client.org