Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/eX1apZLyqXE1kfqkc516ObXMklo.roa
File: eX1apZLyqXE1kfqkc516ObXMklo.roa (raw, json)
Hash identifier: zZvjWsJOlYyiP6cPuuRij6jCHkKExV5nV1w46dtDap0=
Subject key identifier: 79:7D:5A:A5:92:F2:A9:71:35:91:FA:A4:73:9D:7A:39:B5:CC:92:5A
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/eX1apZLyqXE1kfqkc516ObXMklo.roa
Signing time: Thu 15 Sep 2022 02:47:33 +0000
ROA not before: Thu 15 Sep 2022 02:47:33 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9924
IP address blocks: 210.243.64.0/19 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:47:33 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=797D5AA592F2A9713591FAA4739D7A39B5CC925A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:52:98:8d:3f:94:19:90:96:30:1a:e5:3c:a6:
3b:33:95:d2:9d:c3:c6:05:91:7f:50:31:e4:16:ad:
a7:ac:da:66:1e:24:e2:3d:ce:3b:68:7f:83:91:74:
7d:e8:ce:bf:ee:85:8b:2c:17:11:3f:b6:44:ee:4f:
a9:a2:83:48:7a:13:a4:89:2d:68:7e:61:fe:d2:7f:
dd:3d:39:a0:8b:04:86:8c:6a:5c:d3:ea:4c:9e:2b:
50:38:02:3b:47:d4:23:13:a0:1d:63:36:f9:c9:05:
bd:8a:81:90:32:01:b2:54:f5:61:7f:ca:26:ba:9c:
cf:a3:4b:88:e1:ec:79:63:03:51:2c:2f:78:fa:9b:
4f:a9:3c:a8:17:8a:17:fb:a6:a6:5c:06:72:d4:9b:
2c:d0:3e:fa:c4:3a:5f:40:25:01:3b:7f:6e:a1:d7:
da:8d:7b:81:ea:a8:ba:da:4e:f8:37:1b:af:c9:ea:
8c:be:39:07:08:82:70:ae:57:11:24:63:a0:67:cf:
5d:12:32:dc:b7:84:c9:c6:d1:a9:0a:93:0e:2a:9f:
21:9e:5f:ea:26:84:c2:fe:f5:1d:95:a8:41:83:1c:
f1:3b:b2:48:96:85:57:46:a8:23:fc:ed:0c:f8:be:
79:29:3a:21:de:66:70:8a:22:d3:a1:ea:2e:6b:7f:
e2:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:7D:5A:A5:92:F2:A9:71:35:91:FA:A4:73:9D:7A:39:B5:CC:92:5A
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/eX1apZLyqXE1kfqkc516ObXMklo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.243.64.0/19
Signature Algorithm: sha256WithRSAEncryption
58:bd:07:60:35:c2:59:c0:26:36:04:ad:6e:0b:02:d5:fb:ba:
a7:09:7b:c2:3b:84:f7:cf:d7:06:5e:a1:da:43:d8:5c:57:22:
99:6c:6e:ad:86:b0:f6:1c:5f:27:5b:39:56:a2:d7:f7:2d:ef:
84:06:fb:90:00:6c:3d:a4:d6:2d:9d:24:5c:8e:a5:f6:02:49:
b3:64:bf:70:8b:83:b6:26:33:c1:33:cd:c5:69:eb:71:1b:58:
fc:0b:ab:3c:ba:c3:3c:c2:35:e1:a7:9b:e7:a8:2d:8a:b5:bd:
f6:30:ab:14:86:4e:6f:a4:f3:1a:da:4c:18:9e:72:3b:20:90:
cf:25:a9:b5:13:12:67:3c:a1:19:79:18:4f:69:ff:ca:60:1d:
26:16:29:70:93:93:6a:9d:b3:01:8f:23:28:0f:88:67:f2:2c:
7f:2b:8c:b4:55:94:ff:45:90:42:2a:60:73:d6:cc:eb:4b:96:
2f:6d:4b:28:98:62:a3:0f:c3:dc:c6:3f:84:7d:74:ee:c3:25:
57:13:6b:23:f1:3b:db:2a:c6:11:99:e5:76:9d:85:a0:87:4d:
93:65:26:61:1c:ee:4b:f7:ed:83:8f:a3:fd:03:98:59:75:c2:
8e:dd:56:f4:67:1e:4e:05:5b:94:45:64:5c:34:e7:1c:c1:67:
36:24:81:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:21:50 2023 by rpki-client on console-ams.rpki-client.org