Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/b7JLnh0XTfvACtA9dTKutaV1fO8.roa
File: b7JLnh0XTfvACtA9dTKutaV1fO8.roa (raw, json)
Hash identifier: t1NcNaUWL7fDfkp47lZjdt6guAqGbTfgqDpw9cTsteA=
Subject key identifier: 6F:B2:4B:9E:1D:17:4D:FB:C0:0A:D0:3D:75:32:AE:B5:A5:75:7C:EF
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/b7JLnh0XTfvACtA9dTKutaV1fO8.roa
Signing time: Thu 15 Sep 2022 02:47:08 +0000
ROA not before: Thu 15 Sep 2022 02:47:08 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9924
IP address blocks: 210.62.192.0/19 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:47:08 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=6FB24B9E1D174DFBC00AD03D7532AEB5A5757CEF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:51:be:b7:bb:08:c4:5d:48:dc:d2:88:8f:3e:
ad:9c:71:4c:85:f4:24:32:32:c9:19:ee:40:6f:7c:
4e:25:3f:a2:d6:37:96:74:af:57:84:a8:5a:4d:e5:
b4:56:08:a1:4b:1c:fc:34:6e:fa:e2:7d:56:fc:5c:
2d:fa:e9:ee:d4:1d:19:74:12:5a:ad:fc:37:ab:92:
87:f4:93:cf:c7:0a:d8:fa:8f:ac:16:70:4e:ed:a9:
69:09:b5:99:d6:c0:c4:51:18:52:84:47:ba:80:31:
a7:ed:1d:c6:17:8e:31:3d:2b:3d:a1:80:f5:11:b0:
99:71:d7:31:68:c5:13:d0:97:9c:5e:c7:12:8b:5f:
a4:25:38:d1:75:9f:3f:ef:27:57:7e:f1:fe:a0:1f:
19:94:ac:3b:09:16:42:6c:74:d0:45:5b:64:57:96:
62:bb:20:41:b5:a3:92:87:ac:4f:19:95:5e:a6:f0:
dd:1a:90:ab:83:ae:38:70:25:25:e3:4b:a1:67:c5:
53:8e:01:54:d4:35:8d:e7:df:cf:11:16:95:9d:36:
f2:66:b6:3f:c9:f5:49:36:64:fd:04:88:f5:8a:99:
db:d5:85:23:54:24:b0:82:ae:f3:4d:70:ee:03:42:
d4:b9:70:8d:da:98:1a:13:9d:9b:f8:f0:85:16:bc:
a4:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:B2:4B:9E:1D:17:4D:FB:C0:0A:D0:3D:75:32:AE:B5:A5:75:7C:EF
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/b7JLnh0XTfvACtA9dTKutaV1fO8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.62.192.0/19
Signature Algorithm: sha256WithRSAEncryption
02:ad:cf:99:59:25:3e:04:a4:6e:8b:be:51:82:4c:2e:47:85:
09:3e:9c:a6:2b:21:91:4b:d1:90:44:7d:72:88:6e:40:f5:5f:
7d:a9:ad:41:c7:d2:16:2d:a6:c7:af:21:fe:6f:8c:b8:8c:5f:
3b:4b:98:64:8e:80:40:45:8a:7c:d4:40:e6:55:b4:3f:db:85:
d7:54:95:31:79:1a:82:ca:db:36:57:a4:ac:b2:c8:28:c8:23:
db:ec:10:81:f5:c2:07:5d:10:5a:1f:16:4b:07:89:e6:49:40:
6a:72:a6:52:68:61:75:df:42:51:2b:3b:87:a2:44:4a:1a:49:
a1:78:58:22:90:7a:d4:1e:8c:51:fd:c6:94:76:ca:7f:4e:e9:
46:88:22:d3:1e:bf:82:6c:78:65:13:b9:41:09:fa:6f:61:1d:
11:76:01:e7:74:5b:58:b3:63:42:bc:0a:11:73:f2:37:4c:08:
8c:3f:d1:1c:d2:7e:5e:85:a2:cd:07:a7:2d:6c:14:a2:39:bf:
e9:fb:32:c3:9c:4f:47:eb:45:4f:02:88:82:15:df:69:1a:cc:
c1:d0:83:2e:f3:7b:27:e9:b0:b2:8e:3e:d2:ff:01:a2:e9:f3:
6b:54:a7:ee:59:f7:00:8c:b1:d4:53:30:49:67:49:7a:2a:c4:
58:dd:41:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:18:40 2023 by rpki-client on console-fra.rpki-client.org