Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/VFXiI5-uT0HtnfrSHYmipNT4IM4.roa
File: VFXiI5-uT0HtnfrSHYmipNT4IM4.roa (raw, json)
Hash identifier: pHNS71Ji+eOmhONSkn9dCCNt8fRQBAcidHPg5cRmIM8=
Subject key identifier: 54:55:E2:23:9F:AE:4F:41:ED:9D:FA:D2:1D:89:A2:A4:D4:F8:20:CE
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/VFXiI5-uT0HtnfrSHYmipNT4IM4.roa
Signing time: Thu 15 Sep 2022 02:46:58 +0000
ROA not before: Thu 15 Sep 2022 02:46:58 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131597
IP address blocks: 175.98.200.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:46:58 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=5455E2239FAE4F41ED9DFAD21D89A2A4D4F820CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:9c:f8:60:9e:a6:48:60:2b:94:29:8a:9a:f6:
ba:39:56:99:93:0e:db:78:c0:e5:7d:50:3c:21:ce:
5e:8a:68:a1:1c:6f:b1:c9:47:74:d5:a2:eb:05:d5:
38:1c:7f:7f:74:6e:9c:bd:1f:f7:a0:89:5f:47:0f:
11:7e:bc:27:ef:3e:26:9e:21:e0:03:3b:07:fd:9a:
50:20:a4:13:a5:82:5f:3e:22:bd:f6:1b:62:aa:5e:
38:a2:6c:05:08:9b:d0:f3:2b:89:18:70:fe:e9:d6:
0c:46:60:2b:bb:06:50:1c:27:3c:85:18:43:05:9a:
6d:17:68:4e:6a:1f:c3:1c:f9:67:f1:1c:03:a0:3f:
11:a1:03:15:99:c1:63:f3:29:0c:9e:04:a4:be:1f:
53:6a:50:7b:cd:ad:d9:17:62:a8:e0:db:ab:94:25:
ad:45:2e:38:b5:81:c1:68:34:11:dd:88:c5:50:9a:
a6:8a:86:f4:93:94:3c:f6:0a:36:90:8a:73:f7:c0:
01:35:94:c2:db:a3:cd:6e:58:b3:b5:62:ce:74:6d:
e7:db:f1:ba:85:f5:be:97:a5:04:02:24:55:8d:6d:
ef:aa:0d:f1:c0:3f:82:0b:a9:fd:8d:12:5c:84:f4:
9d:26:68:aa:bb:64:8e:fb:ff:93:e4:74:25:b5:fe:
fa:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:55:E2:23:9F:AE:4F:41:ED:9D:FA:D2:1D:89:A2:A4:D4:F8:20:CE
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/VFXiI5-uT0HtnfrSHYmipNT4IM4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.98.200.0/21
Signature Algorithm: sha256WithRSAEncryption
61:0b:73:97:eb:90:b7:3d:15:83:f8:67:c2:a5:47:82:87:4c:
c6:d0:82:79:8f:fb:b0:0f:31:c8:45:b8:e7:36:14:07:b5:bc:
07:02:ed:eb:97:b5:e7:44:9e:1e:86:ff:e0:1f:03:10:ee:fb:
87:22:33:c3:fb:88:6f:f5:6e:c5:22:0d:15:ec:dc:e4:96:3c:
04:67:44:c6:1b:f5:cc:01:59:b7:0d:65:58:e3:e9:a9:24:bd:
8c:45:83:23:7d:8b:eb:c9:fe:56:04:28:be:4f:c3:c2:7c:81:
20:05:1c:cc:21:cf:ce:f2:a9:3d:35:ee:5a:36:d3:0c:ac:16:
dd:e7:d4:49:36:fa:89:5d:55:15:9e:58:d0:d8:7f:a0:dd:d4:
08:47:88:ac:4a:9c:9e:50:18:eb:7b:c8:e5:fd:22:1f:22:b6:
b7:21:ff:83:1e:2e:d3:d5:3e:c4:88:46:4a:6a:23:75:bf:2a:
92:53:f2:fd:6c:2c:37:ff:c3:24:b5:e2:d1:d7:d2:cf:4c:1d:
9f:ad:e9:56:31:2c:7c:5f:b5:2b:e7:9c:20:7b:39:c2:a1:3a:
e3:59:38:6e:82:9d:63:c3:74:52:b5:57:9a:af:05:71:60:c3:
5b:bf:e2:e2:95:a7:f3:ec:bb:8f:05:0c:41:9a:c3:d3:5c:da:
96:2e:bd:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:21:50 2023 by rpki-client on console-ams.rpki-client.org