Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/md1BwDh5XbZ-pK2qKaCYnC3VxEs.roa
File: md1BwDh5XbZ-pK2qKaCYnC3VxEs.roa (raw, json)
Hash identifier: /W616AcwglWhmmNoe6spNOKKnf2XA062lYP8HCoZMsg=
Subject key identifier: 99:DD:41:C0:38:79:5D:B6:7E:A4:AD:AA:29:A0:98:9C:2D:D5:C4:4B
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/md1BwDh5XbZ-pK2qKaCYnC3VxEs.roa
Signing time: Thu 15 Sep 2022 02:47:29 +0000
ROA not before: Thu 15 Sep 2022 02:47:28 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9924
IP address blocks: 210.17.49.0/24 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:47:28 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=99DD41C038795DB67EA4ADAA29A0989C2DD5C44B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:f7:75:6a:23:d8:c4:77:34:b6:f8:bb:c1:9c:
ae:d3:2f:e9:61:69:8a:bb:ce:e4:b8:16:61:47:22:
90:2c:79:69:95:6f:9a:f3:4c:95:08:9c:54:b8:8f:
6f:66:db:f1:8f:49:9e:e4:45:96:f7:24:4a:e6:4e:
ec:e6:4a:03:d6:0d:76:df:d0:1d:f1:69:45:25:ee:
e1:f6:f4:f3:b3:b9:5a:f0:93:f2:63:c9:c7:b5:84:
5a:fe:e0:79:9a:7a:87:f1:62:e5:28:11:4d:c2:25:
dc:c5:3d:f0:2e:07:97:6b:a0:78:cf:13:a5:75:31:
25:65:94:d9:60:86:fb:8f:77:d3:77:9d:5c:dd:53:
9e:8f:ca:6e:2f:d1:e6:0e:a1:20:78:ee:eb:30:93:
1f:69:b0:eb:70:f0:6a:c6:37:72:ea:9c:f1:8f:44:
ca:7c:94:64:3d:a3:8d:d5:ec:b8:a0:58:21:19:5c:
ae:4c:f2:49:01:0c:16:e3:2f:11:0c:31:75:8f:c5:
d9:70:ed:99:1a:66:fe:97:8e:42:74:79:a0:aa:39:
0d:c4:f3:5b:31:79:98:db:39:6d:80:4b:53:a6:ab:
66:ff:3a:09:60:57:d9:7f:93:63:15:2c:5c:7f:69:
92:99:14:71:fe:b5:cb:0b:85:91:cf:ff:16:9f:ae:
ed:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:DD:41:C0:38:79:5D:B6:7E:A4:AD:AA:29:A0:98:9C:2D:D5:C4:4B
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/md1BwDh5XbZ-pK2qKaCYnC3VxEs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.49.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:ec:e0:b7:2a:d5:17:ad:05:d9:a4:30:3c:81:dd:04:93:2b:
2c:c0:2c:30:2c:32:7f:37:06:be:34:9f:db:44:65:c3:25:34:
0c:0b:7c:ad:a2:84:f0:28:7d:09:6f:56:99:aa:dc:88:8d:3c:
09:c4:87:3b:11:0e:d2:11:3e:f6:21:c9:ef:e6:a7:64:2f:05:
0d:98:a2:e6:e4:a0:8a:27:e8:32:9a:a5:27:78:ed:9a:f1:5a:
23:d8:be:5b:de:e0:94:d7:0d:36:71:c5:58:88:3a:b4:65:43:
ef:68:ca:fa:e1:cc:f9:2e:c9:f1:5c:01:88:a2:cd:ed:96:53:
a2:8f:8f:34:37:f0:fc:0b:79:27:e2:a5:b6:d1:95:24:50:c3:
01:f4:f7:3d:8c:a9:7f:73:2c:4d:4f:45:a0:bc:c6:5e:18:50:
e9:0a:c7:35:0f:c1:65:44:2f:d7:cf:75:62:a6:35:98:8d:07:
97:d2:61:30:11:98:aa:78:f2:16:d9:42:c0:b5:c5:17:85:27:
0b:72:b1:a0:a2:c1:10:02:61:9b:15:49:6f:87:e5:20:2d:c9:
c8:34:b9:86:5d:19:4c:f1:7a:40:ac:46:d2:dc:94:f6:fb:fa:
b6:bd:5d:de:cb:85:18:5e:c0:6f:ce:31:17:ad:5e:e6:63:3f:
a3:75:a9:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:21:50 2023 by rpki-client on console-ams.rpki-client.org