Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/jT3GoyX4VNrdLvG5Y9OFjdF4-2A.roa
File: jT3GoyX4VNrdLvG5Y9OFjdF4-2A.roa (raw, json)
Hash identifier: R0h3Rhy9nLa4OiQR9o5pBp5CZuthGOnYH2kqgr9/eEA=
Subject key identifier: 8D:3D:C6:A3:25:F8:54:DA:DD:2E:F1:B9:63:D3:85:8D:D1:78:FB:60
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0FD1
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/jT3GoyX4VNrdLvG5Y9OFjdF4-2A.roa
Signing time: Fri 01 Sep 2023 09:37:20 +0000
ROA not before: Fri 01 Sep 2023 09:37:20 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131597
IP address blocks: 219.86.52.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 05 Jul 2024 10:01:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4049 (0xfd1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 1 09:37:20 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=8D3DC6A325F854DADD2EF1B963D3858DD178FB60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:de:31:61:d9:ca:f5:a8:e8:b3:93:73:d7:a7:
c9:33:7e:a9:53:35:68:1a:7d:94:d5:13:7a:68:40:
9c:65:c7:71:46:2d:f3:c4:a5:80:9a:9d:e3:5e:14:
fa:f1:b8:e5:f2:5e:8f:1f:51:17:4a:b5:ec:d8:62:
31:b8:99:94:ce:ac:47:1c:38:52:19:4a:05:28:47:
6e:ea:1d:82:1f:e7:03:0a:bb:35:b8:ae:22:0c:13:
67:7b:93:4b:3c:78:2c:0b:20:67:77:a8:8e:fa:44:
f9:3e:33:18:a7:ec:30:1a:24:42:ae:0a:60:a5:cb:
70:0a:01:f4:85:ea:e2:03:78:fc:c9:c2:bf:13:fa:
88:9d:d3:04:cb:27:ec:ea:d6:62:d2:f6:52:bf:13:
c2:15:f4:6d:d1:f1:ec:d4:34:04:10:91:f1:01:3c:
a5:15:a8:b7:65:e4:bb:28:db:f3:ef:8a:8a:1c:ab:
63:65:df:6e:3d:f7:b3:7b:4a:b0:2a:00:4d:f5:0d:
ee:f5:87:f7:19:1e:50:aa:a3:e4:8b:d8:07:42:f0:
ad:c8:61:cf:cb:9d:1d:dd:8c:85:2f:1f:bc:b1:4b:
b1:63:2b:61:0b:68:16:28:bf:3d:dc:45:92:04:df:
ca:9a:c9:fc:91:55:e0:b8:4e:80:f5:eb:63:ff:44:
08:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:3D:C6:A3:25:F8:54:DA:DD:2E:F1:B9:63:D3:85:8D:D1:78:FB:60
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/jT3GoyX4VNrdLvG5Y9OFjdF4-2A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
219.86.52.0/22
Signature Algorithm: sha256WithRSAEncryption
43:68:0d:a7:9a:2d:66:4b:8b:1c:93:bf:da:28:ec:78:44:21:
bf:32:d3:07:a6:26:69:01:df:5c:e8:d5:f7:49:d5:95:0d:88:
bf:c1:f8:ac:15:09:ca:8c:3b:c3:9b:03:65:d4:45:43:66:10:
fa:13:00:db:d5:ae:e4:37:fe:62:f5:51:45:46:8f:ce:57:41:
04:62:c7:91:cb:81:b2:ee:c2:39:c9:7f:2f:5c:fb:13:2a:91:
e5:f3:c0:a5:7e:4f:e4:66:cf:01:a2:04:6e:46:a6:70:75:5a:
02:12:d2:26:f4:94:34:b0:f3:bc:19:7d:b0:d2:b3:88:3b:95:
d0:b4:9a:64:a8:7d:77:61:35:29:77:ed:06:4b:e6:7f:70:c7:
be:83:32:31:ca:1a:71:4b:9e:b8:fd:eb:0f:b0:0e:0d:c6:47:
7c:f2:45:93:34:60:bd:2b:1e:b1:0f:57:61:da:dd:c2:29:44:
82:84:d3:62:ed:59:35:58:4d:8b:f4:ed:2e:38:0e:6b:48:8f:
21:74:62:3d:b0:a0:33:b5:12:f8:d9:7f:50:a0:83:ec:2c:f5:
35:ab:1a:33:42:4a:4f:67:a7:e8:35:91:39:c0:6d:0b:a2:b8:
dc:40:1f:62:48:44:d5:53:36:86:24:22:f9:cb:62:a8:70:c9:
66:64:44:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 5 12:16:53 2024 by rpki-client on console-ams.rpki-client.org