Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/dka8nfiuB_SGc-iLKfP0bz-FbSk.roa
File: dka8nfiuB_SGc-iLKfP0bz-FbSk.roa (raw, json)
Hash identifier: k2V6ITH+8i+KYfnkqcGqlU6X2ibdtsWPyjiVuAD4wPc=
Subject key identifier: 76:46:BC:9D:F8:AE:07:F4:86:73:E8:8B:29:F3:F4:6F:3F:85:6D:29
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 122E
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/dka8nfiuB_SGc-iLKfP0bz-FbSk.roa
Signing time: Mon 26 Aug 2024 05:24:46 +0000
ROA not before: Mon 26 Aug 2024 05:24:46 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 13335
IP address blocks: 210.17.44.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:09:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4654 (0x122e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Aug 26 05:24:46 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=7646BC9DF8AE07F48673E88B29F3F46F3F856D29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:2b:e4:5c:9f:41:e4:2a:d8:9e:eb:2d:7b:30:
d6:8c:72:e9:88:08:ed:93:f5:df:3d:86:6a:e2:a4:
09:31:3e:9c:22:21:28:98:a9:ba:80:f6:b1:ac:66:
64:ae:7e:2c:d7:ec:1e:fa:81:5e:5e:c1:3e:2c:b3:
aa:06:05:48:5c:2d:e6:ac:b1:95:73:c6:4a:a8:2b:
a9:46:8a:3a:4a:c1:8a:6d:a0:fc:e0:18:9f:0e:29:
c2:cb:b7:55:0f:e9:68:06:6f:89:29:b2:a2:32:a7:
96:15:b3:94:f5:5b:fb:29:0f:4b:44:24:5f:07:b3:
e7:5d:4f:d7:87:15:b0:f6:84:b0:c1:14:b2:93:b0:
c5:69:1b:d6:d0:1e:8b:f3:8f:d4:db:8e:42:77:82:
e4:b2:e9:95:f5:5c:98:36:5c:d4:6c:42:a4:0e:fb:
60:e6:f6:6c:f7:80:60:aa:b4:6d:df:cc:2d:c4:d9:
57:0e:a3:17:e6:de:20:3d:60:fb:43:7e:df:7e:1e:
db:bf:15:33:e9:2e:25:8e:61:54:16:76:23:51:a1:
82:91:c3:91:5d:b3:23:17:01:a6:37:cd:64:f7:5c:
41:e6:30:81:8c:7f:34:f2:08:4c:a9:62:4e:51:66:
fa:9f:dc:1e:ea:38:84:45:d5:8f:8a:2c:15:7c:f5:
6b:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:46:BC:9D:F8:AE:07:F4:86:73:E8:8B:29:F3:F4:6F:3F:85:6D:29
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/dka8nfiuB_SGc-iLKfP0bz-FbSk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.44.0/24
Signature Algorithm: sha256WithRSAEncryption
41:27:c6:2a:3f:bd:ca:49:9c:f3:7f:8b:2c:07:68:30:e0:3e:
01:cb:10:c6:be:f3:0e:6b:09:32:7a:1b:c3:6b:1d:cb:45:b3:
a5:80:f5:8f:53:74:cc:2d:ef:bf:ab:dc:55:dc:56:80:9a:8a:
de:a8:bf:28:b1:f6:c6:6c:fa:6f:b1:6b:1b:e3:fa:42:31:8b:
08:57:2f:49:0d:e1:09:02:32:b2:85:11:22:b5:22:13:e6:59:
08:5f:ae:50:20:bf:56:d9:7c:8a:54:24:ac:b6:77:3b:f0:23:
0b:22:a3:1c:21:da:86:c9:da:b8:db:8e:9f:40:f6:36:92:0d:
91:ee:2d:89:93:37:39:40:c2:1f:44:4b:45:cb:88:ad:f7:5e:
c0:09:80:89:b2:ca:1f:c7:d2:ba:14:2f:f8:76:7e:60:f8:d6:
a6:94:a2:27:c4:7b:ee:2b:02:2f:55:8c:d7:28:15:69:39:3f:
a8:ae:de:9d:7e:4e:3b:d9:0f:ce:cf:07:7c:ad:7b:90:fc:16:
e1:da:90:2a:bb:9d:0c:c7:8d:a3:48:49:9e:87:09:d2:c4:e7:
40:cc:b1:17:fa:b2:3a:d8:df:55:1a:8d:fc:3a:05:fa:4c:71:
17:ed:8c:7c:59:5c:f9:ef:04:26:73:cc:48:0b:e5:c6:d2:5f:
d1:b0:c6:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 11:51:35 2025 by rpki-client