Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/mguH4TBGwmUhIjTJjEiPKczSdLc.roa
File: mguH4TBGwmUhIjTJjEiPKczSdLc.roa (raw, json)
Hash identifier: yccH0tV1w4n8octFub/vkgQo+atPXFeqqLMQvDY/PBk=
Subject key identifier: 9A:0B:87:E1:30:46:C2:65:21:22:34:C9:8C:48:8F:29:CC:D2:74:B7
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 124D
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/mguH4TBGwmUhIjTJjEiPKczSdLc.roa
Signing time: Mon 26 Aug 2024 05:24:53 +0000
ROA not before: Mon 26 Aug 2024 05:24:53 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9924
IP address blocks: 210.243.64.0/19 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:09:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4685 (0x124d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Aug 26 05:24:53 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=9A0B87E13046C265212234C98C488F29CCD274B7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:99:1a:6e:99:af:58:fa:1b:e6:3e:79:91:f1:
5b:16:84:8d:b8:a5:34:a8:50:31:e5:1c:fa:be:08:
d4:48:43:c0:fb:9b:ec:70:17:a7:dd:e6:55:68:ab:
c3:b4:02:cd:4d:07:b4:f5:62:87:46:fe:c7:49:fe:
10:69:95:8e:78:03:86:d8:e2:9a:7f:33:ac:fc:cb:
e8:19:db:26:c8:7f:16:8e:f4:6b:58:bf:7d:ff:08:
93:71:fb:08:27:88:fb:1d:6d:d1:10:3f:d7:c0:85:
16:0c:ba:84:fc:43:eb:b9:69:5e:8b:9f:b4:9b:f9:
ac:69:05:58:af:24:cd:ff:da:ab:37:78:3f:27:e5:
47:97:aa:1f:c3:cf:ae:d7:3b:fc:75:73:2c:7c:9c:
45:03:e9:d1:db:a9:4a:10:5e:a6:9a:b9:93:50:0b:
a7:65:7f:0c:a4:e5:34:02:82:f0:16:54:d9:e3:df:
5d:f6:de:88:d3:ea:ca:ae:29:d6:9a:96:fb:05:c6:
9b:0d:86:d9:4c:aa:5a:26:bb:ff:17:f0:0e:ce:00:
77:30:8c:cc:c8:bc:0b:21:ab:ef:09:37:5c:c3:0d:
0e:51:a6:5c:7a:02:ce:f1:bd:5b:93:9c:e4:6d:cf:
02:95:1f:41:29:55:e6:f2:34:3b:b5:48:2b:65:08:
77:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:0B:87:E1:30:46:C2:65:21:22:34:C9:8C:48:8F:29:CC:D2:74:B7
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/mguH4TBGwmUhIjTJjEiPKczSdLc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.243.64.0/19
Signature Algorithm: sha256WithRSAEncryption
45:a3:90:ca:17:2e:b2:0c:1f:93:98:75:32:8a:4d:40:91:5b:
c6:ef:e7:45:2c:2e:88:ea:02:98:bb:0e:06:96:48:ae:62:9c:
f1:fd:c4:73:6c:02:73:78:92:5b:6b:53:94:c4:58:a7:af:f7:
13:ed:90:0b:32:83:2e:7a:48:b9:f4:90:0a:76:1b:91:93:98:
30:3e:ea:14:24:00:56:be:a4:e0:5a:19:41:b6:ac:3b:bd:46:
04:fd:1d:dd:e5:a4:a8:1b:01:a4:6a:a1:f8:8a:49:66:87:6c:
39:f7:a3:6f:36:cf:81:c8:e2:82:46:a3:e4:4f:22:96:4f:58:
c1:7a:06:b4:93:71:f7:17:1f:1c:5c:07:a9:f8:a1:08:f0:eb:
e1:15:92:df:25:55:d8:64:c7:33:fd:78:ec:4d:b1:91:e2:2d:
00:65:bb:09:61:ee:2d:5d:ff:0a:3a:38:5c:a3:fc:c5:fa:9f:
83:06:95:5b:73:94:32:2c:e2:26:2a:d4:8d:00:3c:57:11:e7:
f8:bd:81:62:0b:57:86:23:c9:a3:25:e4:4f:d0:9f:39:d5:3a:
bb:1d:5c:03:e8:cd:44:d8:64:61:fb:81:74:82:50:e6:d8:a8:
1e:fe:4d:ce:35:3f:f2:26:c6:aa:63:1a:2d:30:16:d3:32:7b:
26:f6:94:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 12:25:28 2025 by rpki-client