Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/k3eonOHljR1U9iW3PjHkKqzQRSU.roa
File: k3eonOHljR1U9iW3PjHkKqzQRSU.roa (raw, json)
Hash identifier: qeQDNUIYRRBVn4JAq2r3gAMK66QJMuNwDfUR/MVCY8Q=
Subject key identifier: 93:77:A8:9C:E1:E5:8D:1D:54:F6:25:B7:3E:31:E4:2A:AC:D0:45:25
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 12AE
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/k3eonOHljR1U9iW3PjHkKqzQRSU.roa
Signing time: Thu 12 Dec 2024 03:09:15 +0000
ROA not before: Thu 12 Dec 2024 03:09:15 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131602
IP address blocks: 210.62.0.0/19 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:09:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4782 (0x12ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Dec 12 03:09:15 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=9377A89CE1E58D1D54F625B73E31E42AACD04525
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:f0:70:d8:7d:cc:b1:d0:0f:5f:4a:54:93:8e:
2e:c1:b4:07:22:0a:82:e0:01:16:0b:c5:ae:59:dc:
96:e2:f8:4c:27:fd:0c:68:98:7c:16:75:01:70:8a:
ac:2a:87:6e:70:37:e5:7b:f5:a9:96:8a:2c:37:78:
d5:0e:96:0c:dd:e2:ba:1d:4d:e1:bb:a4:3c:e8:2d:
76:34:3f:f2:c4:9c:b2:c5:49:d6:b6:0d:55:37:08:
80:0e:63:09:61:4f:84:3c:fe:82:2d:a7:2b:de:50:
80:6a:f1:4d:ea:82:d5:93:34:5a:9e:8a:20:da:39:
19:64:07:98:55:e7:ad:db:0f:24:b7:92:6b:da:a2:
1d:53:41:8b:54:2c:a1:9c:c6:72:4f:5c:44:b2:f2:
f1:d5:76:69:32:6b:6e:16:4a:2d:1c:fa:ab:e2:2c:
ec:c3:38:27:03:14:36:5d:94:a5:c9:b6:01:0e:4b:
b6:b0:c5:41:ec:d4:cb:b3:22:37:36:0a:22:ca:8e:
48:a1:49:14:96:8e:6c:30:e7:f1:6d:7d:b1:f2:e1:
9c:d7:8e:a1:66:f8:07:8e:bc:cc:be:f1:5f:1f:33:
d7:df:13:bb:39:ae:75:20:10:7d:96:be:ed:4b:81:
15:d7:11:3c:2d:c1:1d:07:59:ab:7b:7e:7b:79:13:
b8:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:77:A8:9C:E1:E5:8D:1D:54:F6:25:B7:3E:31:E4:2A:AC:D0:45:25
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/k3eonOHljR1U9iW3PjHkKqzQRSU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.62.0.0/19
Signature Algorithm: sha256WithRSAEncryption
49:a0:87:3c:d2:2d:34:8d:43:a7:20:03:75:89:8f:33:df:58:
4d:4d:96:7d:29:68:c1:22:7c:41:ed:8c:af:65:25:f1:e7:70:
69:17:c7:2c:63:59:87:d4:7a:5e:0b:96:2d:10:cc:e4:11:2a:
2d:ff:3b:fe:8c:bc:c7:d1:59:ad:94:37:a9:54:0f:79:bf:ec:
c8:67:7e:7d:78:3b:2c:bf:b3:22:52:fe:8c:a8:72:2e:ed:dd:
71:43:36:27:00:90:fa:79:18:7f:1a:5e:20:4f:0a:a5:f7:a3:
50:a0:cd:48:b0:78:47:b6:3b:d2:b8:61:5d:e9:df:05:a3:07:
7e:cb:16:6a:5f:d3:28:f4:ab:42:36:7e:e0:d4:c0:c5:68:02:
a5:a4:d1:70:c9:a9:14:f3:7c:a1:4d:37:23:58:32:bf:8d:ea:
16:d0:18:6f:c0:95:52:d2:1a:2f:68:c6:a5:d4:51:3c:b2:7b:
b1:51:d1:dd:41:d7:de:80:5f:07:a6:1e:0e:11:37:f8:da:6f:
9d:3b:97:ca:26:d0:a7:00:fa:33:3f:ed:56:c0:f0:0c:df:3f:
6d:26:96:62:74:d6:d5:49:4a:3c:13:56:e9:e9:59:fc:d2:6c:
ea:d9:53:34:85:61:64:37:fe:93:6c:a8:98:c7:ab:29:1d:e5:
49:63:d8:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 12:10:43 2025 by rpki-client