Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/hiFzMORnSdmiVTKTsi4GKPAx9P0.roa
File: hiFzMORnSdmiVTKTsi4GKPAx9P0.roa (raw, json)
Hash identifier: 0mlC2KgCDqQIMwd3IHufUFKTVMVArw6L7Z6ZlppuG+c=
Subject key identifier: 86:21:73:30:E4:67:49:D9:A2:55:32:93:B2:2E:06:28:F0:31:F4:FD
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/hiFzMORnSdmiVTKTsi4GKPAx9P0.roa
Signing time: Thu 15 Sep 2022 02:46:58 +0000
ROA not before: Thu 15 Sep 2022 02:46:58 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131597
IP address blocks: 175.98.208.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:46:58 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=86217330E46749D9A2553293B22E0628F031F4FD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:1d:5e:57:10:d4:a1:39:b0:df:4f:2d:ec:c4:
f5:30:39:ee:99:dc:1f:5b:bd:46:60:97:08:75:47:
24:f0:e6:5f:24:6a:e7:ca:1e:dc:3d:06:1a:64:52:
68:de:46:53:76:84:d5:b6:f0:e5:57:26:c9:81:31:
c4:f0:0b:d4:7f:8f:12:47:f8:67:68:f4:cb:ca:04:
f1:e4:65:fc:d6:98:3d:f9:bd:ce:b3:ae:ef:28:b5:
97:20:c3:c5:06:a8:60:71:7e:d0:97:00:6e:be:f8:
9e:e1:8d:7f:15:77:71:c0:f2:7b:09:13:9b:57:ab:
8b:04:6a:b1:ef:04:d2:d0:66:f4:93:b1:a4:15:d0:
ce:e3:09:69:3a:40:12:7e:92:f8:86:6d:28:26:c4:
b8:c7:c5:25:c1:25:85:79:01:e1:e5:39:33:31:18:
a8:a7:1c:14:83:e3:86:ce:bd:a8:d6:3b:f0:70:d7:
c3:5c:10:b9:c5:66:7f:23:d0:85:41:80:16:66:64:
4e:0d:d4:12:3c:eb:87:f7:c2:76:05:fa:7a:75:d1:
bb:b9:e7:b7:4a:8f:8d:91:53:74:b1:bc:aa:d5:44:
48:b4:3f:66:53:d4:71:15:83:9b:a4:76:a1:5a:b3:
8b:ec:80:12:5a:a9:b9:70:b9:8e:e5:04:49:40:dc:
64:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:21:73:30:E4:67:49:D9:A2:55:32:93:B2:2E:06:28:F0:31:F4:FD
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/hiFzMORnSdmiVTKTsi4GKPAx9P0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.98.208.0/20
Signature Algorithm: sha256WithRSAEncryption
15:ec:21:12:05:6b:a2:36:7a:36:c3:18:f0:03:f3:ee:45:b0:
88:4a:43:db:a6:b1:32:90:dc:ae:c7:cc:2b:7b:cd:8b:56:a3:
b7:e8:8b:21:be:6a:f5:a1:28:61:f1:da:9d:4f:e0:6a:8f:55:
8b:22:c0:82:48:4d:a6:48:cb:99:7d:7e:cc:a7:ed:a3:6f:13:
4e:0a:74:ae:ac:b4:a3:0c:8c:bf:c4:24:ae:f8:87:17:40:a1:
85:82:0b:65:d3:68:c7:c2:3e:0a:ed:8f:ed:e1:15:f7:f1:f3:
e9:56:05:12:0a:eb:66:d1:8d:ee:b5:0b:3f:ad:56:3c:37:35:
2d:b3:e3:e7:3d:42:c9:3e:41:3b:4a:c9:83:0b:d9:b7:05:aa:
0c:94:b1:21:6b:ae:e3:a1:f6:b0:f7:29:e7:ca:e2:e4:4d:9d:
d1:b2:31:e4:5e:dc:63:89:22:67:7a:b3:2a:34:1d:a0:f0:52:
3f:77:62:c8:8a:17:82:b6:ec:2d:4a:40:66:8d:67:c9:bc:20:
18:cb:e3:59:5e:d7:8e:5b:ab:f4:5e:dd:67:eb:65:4c:8b:b0:
00:23:50:9c:13:69:c2:9d:35:ef:ba:a0:2a:d9:e5:38:2f:73:
c4:a2:fa:14:62:c1:ff:81:59:6f:4d:f1:ca:b7:9a:4d:c6:b0:
3e:3f:db:d5
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICDckwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMjA5MTUw
MjQ2NThaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDg2MjE3MzMwRTQ2NzQ5
RDlBMjU1MzI5M0IyMkUwNjI4RjAzMUY0RkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCyHV5XENShObDfTy3sxPUwOe6Z3B9bvUZglwh1RyTw5l8kaufK
Htw9BhpkUmjeRlN2hNW28OVXJsmBMcTwC9R/jxJH+Gdo9MvKBPHkZfzWmD35vc6z
ru8otZcgw8UGqGBxftCXAG6++J7hjX8Vd3HA8nsJE5tXq4sEarHvBNLQZvSTsaQV
0M7jCWk6QBJ+kviGbSgmxLjHxSXBJYV5AeHlOTMxGKinHBSD44bOvajWO/Bw18Nc
ELnFZn8j0IVBgBZmZE4N1BI864f3wnYF+np10bu557dKj42RU3SxvKrVREi0P2ZT
1HEVg5ukdqFas4vsgBJaqblwuY7lBElA3GRtAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUhiFzMORnSdmiVTKTsi4GKPAx9P0wHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvaGlGek1PUm5TZG1pVlRL
VHNpNEdLUEF4OVAwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
BK9i0DANBgkqhkiG9w0BAQsFAAOCAQEAFewhEgVrojZ6NsMY8APz7kWwiEpD26ax
MpDcrsfMK3vNi1ajt+iLIb5q9aEoYfHanU/gao9ViyLAgkhNpkjLmX1+zKfto28T
Tgp0rqy0owyMv8QkrviHF0ChhYILZdNox8I+Cu2P7eEV9/Hz6VYFEgrrZtGN7rUL
P61WPDc1LbPj5z1CyT5BO0rJgwvZtwWqDJSxIWuu46H2sPcp58ri5E2d0bIx5F7c
Y4kiZ3qzKjQdoPBSP3diyIoXgrbsLUpAZo1nybwgGMvjWV7Xjlur9F7dZ+tlTIuw
ACNQnBNpwp0177qgKtnlOC9zxKL6FGLB/4FZb03xyreaTcawPj/b1Q==
-----END CERTIFICATE-----
Generated at Fri Sep 1 10:18:40 2023 by rpki-client on console-fra.rpki-client.org