Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/aJ7mp8RhFXYY_IEeSZelp_ZUcVs.roa
File: aJ7mp8RhFXYY_IEeSZelp_ZUcVs.roa (raw, json)
Hash identifier: C3NJCFO1i/nHGvtuen99Ve4rznifYLJyJXsX1Nsq/Mg=
Subject key identifier: 68:9E:E6:A7:C4:61:15:76:18:FC:81:1E:49:97:A5:A7:F6:54:71:5B
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/aJ7mp8RhFXYY_IEeSZelp_ZUcVs.roa
Signing time: Thu 15 Sep 2022 02:46:53 +0000
ROA not before: Thu 15 Sep 2022 02:46:53 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24164
IP address blocks: 203.77.48.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:46:53 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=689EE6A7C461157618FC811E4997A5A7F654715B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:59:c3:69:ce:70:c7:49:6f:e2:49:5a:a6:e5:
ca:87:ad:c4:a6:a0:98:26:85:99:4a:5c:dc:4e:28:
92:c7:1d:be:ab:b2:fa:cb:66:05:e5:8e:53:5f:6f:
91:66:26:9c:03:f8:02:cb:38:ed:c2:21:2f:f6:07:
2b:f5:81:0b:fa:13:74:c3:fa:b7:9f:c6:5f:3b:ec:
b5:53:96:37:0c:0d:40:13:90:b5:57:6b:5d:b5:41:
28:63:1c:84:56:a0:ce:3e:8a:07:fd:c9:60:01:34:
91:72:45:78:f9:4a:46:47:e1:7d:23:2a:91:74:82:
49:92:93:6f:85:88:a1:22:b8:79:f6:36:3b:6b:69:
b3:a6:d4:d0:c1:51:1c:d0:cf:c6:d7:11:d4:82:a6:
ff:5e:1c:72:da:98:df:ee:b0:82:51:5e:2d:08:68:
cb:15:d1:03:c5:37:65:68:ee:23:af:cb:ba:58:61:
c0:a3:00:dc:c1:12:e5:f4:c6:24:90:4d:b4:9c:32:
f0:06:5c:09:7f:4f:89:6d:23:bc:84:3c:0f:5c:25:
2f:90:48:e8:30:99:e9:da:83:df:a3:c1:87:cc:46:
29:47:e9:fb:16:d6:5b:b0:b3:b9:87:85:a9:98:a0:
c9:14:66:d7:0d:57:7c:bd:f2:1d:53:65:03:47:14:
ab:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:9E:E6:A7:C4:61:15:76:18:FC:81:1E:49:97:A5:A7:F6:54:71:5B
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/aJ7mp8RhFXYY_IEeSZelp_ZUcVs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.77.48.0/23
Signature Algorithm: sha256WithRSAEncryption
77:03:b4:45:8f:38:ec:4a:4b:f8:55:a4:59:ea:f9:00:98:d4:
d2:28:d7:df:7e:57:d7:d9:6c:9a:55:87:2f:d4:e7:f4:1d:6f:
21:5d:35:95:33:8d:fd:3d:8a:60:b8:95:84:72:1b:3e:e8:f2:
79:d8:bc:95:2a:33:1a:9b:ff:f2:be:a0:fc:80:eb:b7:78:66:
3a:d0:ae:9c:3e:ba:cd:a0:64:69:b8:fa:b5:4f:a5:07:93:4c:
6a:54:ac:2d:52:0d:9c:a3:0e:09:b5:ab:02:60:d0:2b:82:cb:
f8:4f:8c:38:d3:9c:c3:3e:5b:a0:aa:9e:ba:61:00:a7:7f:ce:
05:7a:d6:92:a3:3f:5a:ac:cc:31:5c:41:3d:16:6d:35:64:a8:
27:d8:42:9f:1b:d5:df:d5:68:f3:65:0e:70:16:71:56:61:18:
da:bf:1d:84:fa:89:2a:ec:67:8f:cf:dc:2c:7c:ba:a3:c7:52:
55:74:c5:b4:64:51:6e:76:d4:da:ce:0e:a1:8f:80:56:f6:bf:
0c:bd:53:5c:53:83:e4:69:dd:c6:4e:42:7c:07:0d:c5:1d:48:
46:57:4a:22:8a:76:76:32:7f:23:c9:65:e0:67:ac:9b:69:1b:
ee:ac:ab:be:36:13:a7:f2:c6:26:7b:be:e3:f8:86:da:fb:7e:
94:56:bc:8b
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICDckwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMjA5MTUw
MjQ2NTNaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDY4OUVFNkE3QzQ2MTE1
NzYxOEZDODExRTQ5OTdBNUE3RjY1NDcxNUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDLWcNpznDHSW/iSVqm5cqHrcSmoJgmhZlKXNxOKJLHHb6rsvrL
ZgXljlNfb5FmJpwD+ALLOO3CIS/2Byv1gQv6E3TD+refxl877LVTljcMDUATkLVX
a121QShjHIRWoM4+igf9yWABNJFyRXj5SkZH4X0jKpF0gkmSk2+FiKEiuHn2Njtr
abOm1NDBURzQz8bXEdSCpv9eHHLamN/usIJRXi0IaMsV0QPFN2Vo7iOvy7pYYcCj
ANzBEuX0xiSQTbScMvAGXAl/T4ltI7yEPA9cJS+QSOgwmenag9+jwYfMRilH6fsW
1luws7mHhamYoMkUZtcNV3y98h1TZQNHFKsPAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUaJ7mp8RhFXYY/IEeSZelp/ZUcVswHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvYUo3bXA4UmhGWFlZX0lF
ZVNaZWxwX1pVY1ZzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
ActNMDANBgkqhkiG9w0BAQsFAAOCAQEAdwO0RY847EpL+FWkWer5AJjU0ijX335X
19lsmlWHL9Tn9B1vIV01lTON/T2KYLiVhHIbPujyedi8lSozGpv/8r6g/IDrt3hm
OtCunD66zaBkabj6tU+lB5NMalSsLVINnKMOCbWrAmDQK4LL+E+MONOcwz5boKqe
umEAp3/OBXrWkqM/WqzMMVxBPRZtNWSoJ9hCnxvV39Vo82UOcBZxVmEY2r8dhPqJ
Kuxnj8/cLHy6o8dSVXTFtGRRbnbU2s4OoY+AVva/DL1TXFOD5Gndxk5CfAcNxR1I
RldKIop2djJ/I8ll4Gesm2kb7qyrvjYTp/LGJnu+4/iG2vt+lFa8iw==
-----END CERTIFICATE-----
Generated at Fri Sep 1 10:18:40 2023 by rpki-client on console-fra.rpki-client.org