Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/otMfsRkzM_gjFOZdwj7SY0d9ss8.roa
File: otMfsRkzM_gjFOZdwj7SY0d9ss8.roa (raw, json)
Hash identifier: DhZDlImuB9ADBpspORveg2K4adaUa+tBaiv+hDn45Bs=
Subject key identifier: A2:D3:1F:B1:19:33:33:F8:23:14:E6:5D:C2:3E:D2:63:47:7D:B2:CF
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 11CF
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/otMfsRkzM_gjFOZdwj7SY0d9ss8.roa
Signing time: Mon 26 Aug 2024 05:24:24 +0000
ROA not before: Mon 26 Aug 2024 05:24:24 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9924
IP address blocks: 210.67.192.0/19 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:09:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4559 (0x11cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Aug 26 05:24:24 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=A2D31FB1193333F82314E65DC23ED263477DB2CF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:28:94:bf:07:cf:82:8f:97:14:5d:7c:27:57:
16:33:d7:22:9c:a1:16:a5:1e:0d:1c:10:77:95:21:
39:d6:8e:6e:2e:05:4c:c5:52:2e:2d:c8:1d:2d:4b:
a4:7e:a1:64:7c:48:b3:05:81:ea:d6:fc:70:da:a0:
e6:78:43:02:45:aa:14:31:80:a9:60:68:ba:8a:b7:
bc:13:d7:a6:ce:ee:14:e6:8b:c4:6c:b8:80:eb:d1:
24:7f:6f:a5:b6:09:38:68:32:60:0e:36:b1:d5:56:
ef:a6:19:49:cf:7a:d2:60:21:94:e7:8d:79:c7:6a:
f8:b9:40:66:be:79:ed:0f:4e:2a:16:a9:85:b9:23:
17:b4:2e:bb:42:f3:25:d2:f9:99:63:da:1d:cf:40:
d4:ad:97:74:a1:e3:2e:fb:e9:c0:06:98:42:ea:99:
3b:56:e8:07:14:a0:5e:6e:5e:47:18:b0:36:8c:fa:
3e:dc:53:e7:43:11:e9:7e:3a:e0:df:33:cf:04:e7:
6a:cd:77:4f:1c:5d:42:ad:9c:54:99:52:52:b0:2c:
f0:da:68:79:db:8f:16:81:60:9b:0c:02:60:fe:f6:
9f:8d:f9:cc:71:9a:d2:aa:ab:0c:05:66:73:9c:78:
40:06:21:e0:ce:6f:1a:e0:3b:d6:7f:9e:13:a9:f3:
d5:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:D3:1F:B1:19:33:33:F8:23:14:E6:5D:C2:3E:D2:63:47:7D:B2:CF
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/otMfsRkzM_gjFOZdwj7SY0d9ss8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.67.192.0/19
Signature Algorithm: sha256WithRSAEncryption
5e:8b:c4:46:af:a4:5c:0e:2a:5b:54:c2:61:e2:6d:58:9f:6d:
2d:47:f4:8f:5c:37:cb:7e:13:1c:1b:23:44:0e:21:7d:bc:b7:
2a:e0:85:22:a5:fb:f9:2d:75:99:9c:88:52:04:7c:aa:3e:08:
94:e9:01:0e:85:f3:59:57:f0:cd:ad:b5:0b:58:74:71:1c:e8:
d3:ca:d4:59:3c:03:b8:f1:30:8a:f8:da:ae:8c:62:03:b6:c6:
f1:3a:be:3e:29:31:e0:dd:2a:df:70:c4:db:78:00:ef:b5:ea:
cc:8b:ef:da:40:00:9e:83:9b:bb:fb:31:62:ea:ff:cf:8e:0f:
ea:af:a2:03:e9:35:4c:b9:78:a8:97:2e:9c:ad:9e:d9:66:8a:
76:29:74:9c:30:ce:2a:ce:ef:53:bf:ee:62:3a:56:11:62:9d:
39:38:52:56:85:75:48:ed:a0:17:e8:98:6f:a5:a6:50:8d:7e:
b8:a2:d1:3d:95:e2:83:65:56:a5:80:06:18:27:7b:1d:e8:02:
cf:fa:bb:0e:f6:9a:9f:90:32:5f:9f:48:cc:04:1b:40:3b:79:
61:c3:c6:44:b7:8c:1d:b2:64:3d:cd:d9:40:a8:59:04:18:cd:
04:e6:53:db:78:38:f7:8e:18:df:c4:06:0a:c1:eb:a8:83:66:
fe:c1:bd:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:11:47 2025 by rpki-client