Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/nkyEmFqriTMwNCKXZ3DJfzxperc.roa
File: nkyEmFqriTMwNCKXZ3DJfzxperc.roa (raw, json)
Hash identifier: XNZvubJvPzMLMl0UL40A0meaq3TrAz1Q1eA+Az88mKo=
Subject key identifier: 9E:4C:84:98:5A:AB:89:33:30:34:22:97:67:70:C9:7F:3C:69:7A:B7
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 1237
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/nkyEmFqriTMwNCKXZ3DJfzxperc.roa
Signing time: Mon 26 Aug 2024 05:24:48 +0000
ROA not before: Mon 26 Aug 2024 05:24:48 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131628
IP address blocks: 175.99.192.0/19 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:09:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4663 (0x1237)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Aug 26 05:24:48 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=9E4C84985AAB8933303422976770C97F3C697AB7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:6a:bf:82:0d:5e:46:83:13:e3:34:f3:db:81:
c3:5a:58:ab:e6:39:1d:d9:ce:65:a6:e1:58:da:fd:
f8:ce:3e:8a:da:88:27:ca:ab:d2:75:44:ec:87:03:
14:7d:8c:13:18:b6:be:23:15:8f:50:75:11:1a:aa:
ea:64:61:1b:cb:d9:16:85:b9:5b:f9:d5:7a:22:b1:
a7:83:f7:c0:e5:42:1a:21:2a:92:48:b5:be:59:03:
8e:be:df:03:6f:89:16:2c:cd:9e:16:3c:61:29:d5:
fd:a6:1d:77:7c:a5:b7:f6:08:42:4b:0e:83:58:50:
4a:0c:f8:d3:33:96:c2:13:ab:2e:e2:ad:a4:4b:5a:
04:81:b0:e2:c9:2c:73:6f:d4:05:41:f5:26:b8:3c:
c8:26:66:1a:94:94:cd:e3:07:34:e4:c4:ca:35:11:
81:f4:cd:ce:3e:cf:33:65:e8:15:10:0d:8f:73:1c:
fe:de:e1:14:d4:e2:ec:d9:e2:86:ad:be:e8:d3:8a:
34:d3:3a:85:9e:3a:08:9d:fc:1a:5a:cb:0d:68:89:
c2:88:1a:5d:fc:b6:95:25:52:58:5b:11:86:0c:c1:
ab:08:64:e9:e6:ed:a4:0b:94:5f:1a:7e:3f:94:00:
66:1f:4f:c0:98:eb:d3:0e:26:f1:32:ec:97:43:b9:
e3:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:4C:84:98:5A:AB:89:33:30:34:22:97:67:70:C9:7F:3C:69:7A:B7
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/nkyEmFqriTMwNCKXZ3DJfzxperc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.99.192.0/19
Signature Algorithm: sha256WithRSAEncryption
90:48:d9:c4:82:32:9a:83:aa:02:68:54:04:68:59:78:13:f1:
25:56:2c:45:ae:31:23:4b:00:0e:43:ab:24:de:56:f9:cd:3e:
cb:52:7f:ff:4d:4f:83:da:71:9f:6d:12:29:07:d1:f3:1e:d5:
05:5a:2d:6e:96:61:08:a0:0f:2d:c5:bd:be:32:e2:01:fc:9f:
95:b7:93:fb:34:4f:5d:88:67:a8:c4:4c:d0:30:4c:b5:75:07:
71:49:2b:c1:31:55:b4:12:bd:20:92:f6:60:6e:c5:79:40:18:
b1:96:5c:ef:77:ca:0b:14:4a:a3:88:bf:57:7f:e1:50:a5:7a:
80:11:d8:8c:45:11:cd:c8:d3:fd:df:50:5f:2c:0f:93:fc:2a:
02:4d:87:ea:b7:61:f8:cf:d8:a5:dd:3b:0c:90:f3:d4:c9:f0:
80:f7:84:db:c0:93:b0:66:88:6c:1e:ef:1f:5f:4c:41:eb:48:
f9:1d:15:ec:d7:b5:c1:10:0d:93:64:27:9d:35:0b:0a:b7:c2:
2a:3f:f4:5f:c6:41:52:7b:16:ff:2f:e9:5f:d8:f3:ab:fc:43:
c4:dd:9e:67:a4:06:12:91:e3:62:f0:30:06:30:f8:a1:0b:48:
43:f4:15:bd:70:db:52:ad:5f:0c:8c:e5:fb:27:9d:9c:9e:0a:
85:93:4d:4e
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICEjcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw
NTI0NDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDlFNEM4NDk4NUFBQjg5
MzMzMDM0MjI5NzY3NzBDOTdGM0M2OTdBQjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDUar+CDV5GgxPjNPPbgcNaWKvmOR3ZzmWm4Vja/fjOPoraiCfK
q9J1ROyHAxR9jBMYtr4jFY9QdREaqupkYRvL2RaFuVv51XoisaeD98DlQhohKpJI
tb5ZA46+3wNviRYszZ4WPGEp1f2mHXd8pbf2CEJLDoNYUEoM+NMzlsITqy7iraRL
WgSBsOLJLHNv1AVB9Sa4PMgmZhqUlM3jBzTkxMo1EYH0zc4+zzNl6BUQDY9zHP7e
4RTU4uzZ4oatvujTijTTOoWeOgid/Bpayw1oicKIGl38tpUlUlhbEYYMwasIZOnm
7aQLlF8afj+UAGYfT8CY69MOJvEy7JdDueOBAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUnkyEmFqriTMwNCKXZ3DJfzxpercwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvbmt5RW1GcXJpVE13TkNL
WFozREpmenhwZXJjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
Ba9jwDANBgkqhkiG9w0BAQsFAAOCAQEAkEjZxIIymoOqAmhUBGhZeBPxJVYsRa4x
I0sADkOrJN5W+c0+y1J//01Pg9pxn20SKQfR8x7VBVotbpZhCKAPLcW9vjLiAfyf
lbeT+zRPXYhnqMRM0DBMtXUHcUkrwTFVtBK9IJL2YG7FeUAYsZZc73fKCxRKo4i/
V3/hUKV6gBHYjEURzcjT/d9QXywPk/wqAk2H6rdh+M/Ypd07DJDz1MnwgPeE28CT
sGaIbB7vH19MQetI+R0V7Ne1wRANk2QnnTULCrfCKj/0X8ZBUnsW/y/pX9jzq/xD
xN2eZ6QGEpHjYvAwBjD4oQtIQ/QVvXDbUq1fDIzl+yednJ4KhZNNTg==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:31:32 2025 by rpki-client