Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/b41CiIfDydoqyr9SiHAKjyTSqZw.roa
File: b41CiIfDydoqyr9SiHAKjyTSqZw.roa (raw, json)
Hash identifier: 3Na0kaozauo+uyixzITDl8l6cm2up4+2aIGRLmB+lUc=
Subject key identifier: 6F:8D:42:88:87:C3:C9:DA:2A:CA:BF:52:88:70:0A:8F:24:D2:A9:9C
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/b41CiIfDydoqyr9SiHAKjyTSqZw.roa
Signing time: Thu 15 Sep 2022 02:47:01 +0000
ROA not before: Thu 15 Sep 2022 02:47:01 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9924
IP address blocks: 60.199.162.0/24 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:47:01 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=6F8D428887C3C9DA2ACABF5288700A8F24D2A99C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:a4:1c:c6:ce:c2:14:21:0d:5f:9b:99:a4:bf:
90:6c:cd:35:fb:23:fb:21:7a:53:01:b1:e2:79:2e:
33:ca:84:57:95:98:26:f7:e8:b0:4b:37:1c:28:8e:
02:cd:8b:8b:35:b1:45:94:fe:14:78:74:58:cd:6c:
ea:8b:f5:89:9f:ac:3b:1b:2d:e3:27:b4:ac:9e:ab:
ae:0d:ad:01:67:62:63:94:b9:b4:01:e0:1b:6d:e4:
79:6e:dd:25:00:b1:23:4c:27:55:0c:17:cb:d0:78:
7c:17:71:8a:09:79:c7:d8:16:20:11:67:48:04:fb:
62:26:4e:f4:5b:57:a2:1e:21:c4:2f:c9:ed:29:eb:
25:22:f4:58:50:ae:5b:39:13:14:b4:d3:1d:77:6a:
b2:8b:8c:87:98:97:e9:56:3e:ae:29:a4:36:88:3c:
a7:78:a6:5a:db:62:49:6a:27:8e:17:77:15:39:7f:
09:df:ac:e2:e9:97:9c:c4:5c:d7:5f:bb:9c:3e:fa:
4e:80:51:68:36:54:cb:42:57:70:d9:a7:0a:e5:64:
d1:e5:f9:32:e3:fb:91:1b:c2:a3:29:bb:d4:0d:0e:
ed:66:f4:ac:b9:21:c7:07:fa:44:bc:ec:5b:d5:0b:
9d:8b:9f:72:33:c8:92:00:3b:3c:d0:3e:48:51:4c:
42:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:8D:42:88:87:C3:C9:DA:2A:CA:BF:52:88:70:0A:8F:24:D2:A9:9C
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/b41CiIfDydoqyr9SiHAKjyTSqZw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.199.162.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:31:92:ef:be:c6:a2:e7:27:c9:94:a0:34:72:67:09:a8:a5:
92:62:9d:15:2c:d5:d9:59:1a:1a:d4:88:f2:60:56:6c:a7:9c:
b1:77:ad:ac:bb:79:b9:80:ab:6e:c4:ae:9a:62:d4:4c:a6:c7:
36:6f:8e:b9:93:00:5f:d0:93:2a:a6:77:3d:aa:71:61:2b:1a:
7f:01:b9:1b:f0:98:71:a6:47:8f:9e:c5:e5:e8:ce:f5:d7:99:
39:21:e2:10:ad:eb:c9:15:eb:18:3d:d2:6f:0a:81:3d:c3:29:
e8:e8:9c:48:15:bb:f3:2a:35:e3:e8:c1:42:c6:f1:b1:c4:a3:
5b:a6:ee:ab:92:42:0b:d6:a5:ec:1f:51:49:be:3c:a8:4d:3a:
f6:99:2f:26:31:19:e2:44:30:29:83:07:4b:06:6e:cc:c7:31:
df:a0:b2:de:26:24:54:5c:1d:8b:64:cf:f9:51:de:49:a7:c7:
71:97:1b:47:63:e3:f8:19:26:bb:40:f7:05:b1:30:fc:c8:30:
7e:71:50:1c:ad:31:9a:1e:86:5f:fd:3d:7a:33:99:48:f9:cd:
bc:b6:e9:47:d0:0c:8c:0b:59:f5:72:59:73:be:25:3f:d4:a4:
da:be:fe:15:2d:6c:63:eb:2a:2d:e4:09:73:a8:90:ba:bb:b5:
14:d3:54:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:21:50 2023 by rpki-client on console-ams.rpki-client.org