Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/oYXuj2V-cAf0q_M4oyxw7ZM0Shw.roa
File: oYXuj2V-cAf0q_M4oyxw7ZM0Shw.roa (raw, json)
Hash identifier: DDmxwUhn5KuBAxGtFjrjYF4c1CTMxbqykc6ZeZFGZJ4=
Subject key identifier: A1:85:EE:8F:65:7E:70:07:F4:AB:F3:38:A3:2C:70:ED:93:34:4A:1C
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/oYXuj2V-cAf0q_M4oyxw7ZM0Shw.roa
Signing time: Thu 15 Sep 2022 02:47:09 +0000
ROA not before: Thu 15 Sep 2022 02:47:09 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131628
IP address blocks: 175.99.225.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:47:09 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A185EE8F657E7007F4ABF338A32C70ED93344A1C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:7e:a9:5a:e0:87:b3:cc:de:ca:b3:ff:81:f8:
c9:98:28:cb:40:e4:1f:37:20:09:0e:e0:5a:08:4d:
1b:2e:5c:a3:86:88:2a:db:d5:25:24:aa:ec:91:33:
e1:98:0c:ab:e6:01:1a:e9:14:0a:0b:bf:0b:9b:ea:
6a:62:1c:be:9b:0c:f9:78:ff:cf:3d:9a:18:40:0b:
ed:f8:f7:59:0c:5a:dc:5f:94:e0:bc:a4:6f:60:21:
7e:80:73:31:a8:18:8f:38:04:b5:e1:52:8c:26:96:
19:12:9e:08:bf:07:da:08:7b:ab:52:a5:f0:fd:9c:
1d:ff:d7:2d:f1:97:dd:09:84:dd:a6:c5:42:b4:8e:
ac:f3:cb:c8:1f:1f:fa:fe:e7:b7:91:93:3a:e9:b1:
a6:ef:37:bb:af:04:21:67:bf:10:9e:6e:d3:68:c8:
a1:56:db:3c:2b:41:e6:aa:73:c9:7e:7a:04:c5:18:
ce:19:4e:55:59:77:37:0c:e2:21:91:26:7d:9c:96:
1a:96:b4:7e:6d:ef:22:7e:0e:e7:a3:ae:34:92:94:
cd:db:f5:af:db:9e:64:7f:e9:1d:ac:38:a2:01:60:
cc:10:af:1d:17:76:82:aa:c7:cd:e0:bd:42:b6:ae:
58:cc:f7:b7:a1:14:45:f3:50:97:a7:53:f5:64:6e:
55:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:85:EE:8F:65:7E:70:07:F4:AB:F3:38:A3:2C:70:ED:93:34:4A:1C
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/oYXuj2V-cAf0q_M4oyxw7ZM0Shw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.99.225.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:b4:eb:4c:ae:b3:ef:58:23:1a:6a:53:e5:65:b5:0b:02:92:
30:cb:7e:bd:6d:16:0b:7e:f3:c1:fc:98:25:75:b3:90:95:e8:
fd:12:28:24:ac:72:f5:7e:bc:e8:b5:f2:c9:34:ca:77:fe:a3:
10:49:d9:3e:22:e2:57:28:ff:bf:cc:55:f4:e9:11:65:fa:e3:
ae:23:9a:7b:71:5e:d9:49:13:ae:a0:30:8c:6e:83:a4:1f:87:
b9:a6:77:10:e1:cd:1d:fd:34:9f:1c:20:4e:bf:74:d6:a8:74:
f2:21:a1:78:f1:0e:c1:cf:78:c8:ba:ef:1a:e8:cf:f0:dd:51:
7e:5c:98:24:47:07:81:33:86:64:c7:ff:79:dd:ac:6f:ad:8a:
c1:77:3a:88:43:4b:0a:c5:57:86:0e:f7:88:d8:21:f9:61:0e:
21:58:20:e0:59:fc:e8:6b:b1:48:cc:23:19:ad:1f:86:37:d5:
52:a8:30:56:c3:7a:1a:74:67:7e:be:bf:2d:52:c0:25:c1:54:
91:33:cd:3c:9b:8b:62:2c:78:50:f3:8a:88:e9:5b:01:26:85:
d2:6a:2c:1f:89:bc:6c:5d:0c:0d:86:eb:e0:cd:48:f5:f7:f1:
54:58:c6:07:0a:82:3d:2c:c6:98:74:4a:80:a6:fa:57:01:f1:
b3:d1:11:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:18:40 2023 by rpki-client on console-fra.rpki-client.org