Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/qQsuXOMTesMvoVbJvAEwbWHvCvQ.roa
File: qQsuXOMTesMvoVbJvAEwbWHvCvQ.roa (raw, json)
Hash identifier: EQ7fnI/vq0JW0G1cFdZ0V+k9KkMAQeeiMVeiD7L1NrI=
Subject key identifier: A9:0B:2E:5C:E3:13:7A:C3:2F:A1:56:C9:BC:01:30:6D:61:EF:0A:F4
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/qQsuXOMTesMvoVbJvAEwbWHvCvQ.roa
Signing time: Thu 15 Sep 2022 02:47:31 +0000
ROA not before: Thu 15 Sep 2022 02:47:31 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9924
IP address blocks: 210.17.0.0/17 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:47:31 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A90B2E5CE3137AC32FA156C9BC01306D61EF0AF4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:90:37:37:2f:a3:83:95:00:b5:f1:b8:22:7a:
85:5b:7f:a4:94:99:5d:88:71:d2:6f:d7:c5:c8:8c:
94:64:be:c0:eb:b3:89:56:03:73:b6:a0:fb:c4:70:
87:46:cd:0b:b8:1b:bc:67:75:98:a8:b2:b7:a8:32:
df:6b:59:a8:c1:ca:2a:3d:d9:20:3b:5a:d2:b2:f5:
a3:e2:bc:d2:6e:df:d7:37:6e:37:e6:4b:ce:d0:50:
59:de:ae:d8:2c:b3:d1:ef:6b:8d:fa:91:9d:76:ab:
f6:da:60:62:9b:14:d2:7e:0a:cb:aa:d6:f6:7e:1b:
c4:cf:b0:1e:01:ac:44:d7:42:4c:b1:d6:53:b2:20:
17:82:b7:e9:90:f7:8c:c2:15:14:fd:8a:74:fb:28:
67:ae:d1:62:36:33:0e:28:15:e0:58:71:f5:64:64:
78:1d:9b:ff:c9:0d:d9:e8:f0:b0:10:c4:60:08:38:
31:79:80:b8:54:fe:e9:42:67:4e:79:74:94:94:61:
87:91:3c:03:eb:30:d5:88:b4:5b:1e:52:e2:4f:2d:
90:95:92:51:b2:a1:ad:b6:c0:65:3c:18:a1:90:e1:
ec:9f:58:16:6a:5c:b2:52:67:6c:e2:df:3b:ee:42:
40:1c:c5:83:62:d8:a6:3a:8b:70:e4:da:64:82:78:
77:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:0B:2E:5C:E3:13:7A:C3:2F:A1:56:C9:BC:01:30:6D:61:EF:0A:F4
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/qQsuXOMTesMvoVbJvAEwbWHvCvQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.17.0.0/17
Signature Algorithm: sha256WithRSAEncryption
4e:7f:29:46:e4:77:51:d6:38:da:4e:ec:51:7b:d8:c7:bc:9e:
4d:06:89:1a:c0:be:c5:c7:98:81:fb:94:ac:19:d7:46:01:2c:
91:c4:ae:58:cc:ac:8a:68:83:16:e8:60:ee:0e:7d:72:3e:46:
08:44:fe:6b:6f:ef:fe:53:d8:4f:af:01:f0:96:2e:56:ed:d9:
ca:9c:62:1b:8a:c8:f6:62:af:2a:29:76:01:c8:ed:51:c9:bd:
71:0a:ec:c1:ea:13:c0:4f:bd:70:89:a8:57:0e:6a:a5:0d:67:
24:34:d0:fb:c5:5f:f8:e7:a5:30:58:c2:6c:ef:b6:a3:c4:7f:
c3:3f:bc:48:1e:8b:a3:f7:a5:eb:cd:f3:bc:9c:33:4a:0c:ef:
dd:95:78:27:69:1f:ec:81:07:79:19:a5:8d:7a:d4:91:e7:57:
38:6e:e7:84:81:d9:75:b3:ec:2a:64:d1:18:53:e0:97:38:2c:
29:ba:06:ad:08:59:31:b2:f8:a6:1d:a2:ac:18:f4:83:2e:6d:
3f:d5:30:44:0b:7f:da:02:1c:be:f4:ca:cd:e9:d1:99:66:58:
02:cf:84:f7:cf:11:95:17:1c:84:f9:99:ac:42:cb:fc:62:03:
7c:aa:f9:ce:ab:87:f4:79:70:9f:74:af:b0:a1:d9:62:66:96:
bd:86:f7:da
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICDckwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMjA5MTUw
MjQ3MzFaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEE5MEIyRTVDRTMxMzdB
QzMyRkExNTZDOUJDMDEzMDZENjFFRjBBRjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCfkDc3L6ODlQC18bgieoVbf6SUmV2IcdJv18XIjJRkvsDrs4lW
A3O2oPvEcIdGzQu4G7xndZiosreoMt9rWajByio92SA7WtKy9aPivNJu39c3bjfm
S87QUFnertgss9Hva436kZ12q/baYGKbFNJ+Csuq1vZ+G8TPsB4BrETXQkyx1lOy
IBeCt+mQ94zCFRT9inT7KGeu0WI2Mw4oFeBYcfVkZHgdm//JDdno8LAQxGAIODF5
gLhU/ulCZ055dJSUYYeRPAPrMNWItFseUuJPLZCVklGyoa22wGU8GKGQ4eyfWBZq
XLJSZ2zi3zvuQkAcxYNi2KY6i3Dk2mSCeHcvAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUqQsuXOMTesMvoVbJvAEwbWHvCvQwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvcVFzdVhPTVRlc012b1Zi
SnZBRXdiV0h2Q3ZRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
B9IRADANBgkqhkiG9w0BAQsFAAOCAQEATn8pRuR3UdY42k7sUXvYx7yeTQaJGsC+
xceYgfuUrBnXRgEskcSuWMysimiDFuhg7g59cj5GCET+a2/v/lPYT68B8JYuVu3Z
ypxiG4rI9mKvKil2AcjtUcm9cQrsweoTwE+9cImoVw5qpQ1nJDTQ+8Vf+OelMFjC
bO+2o8R/wz+8SB6Lo/el683zvJwzSgzv3ZV4J2kf7IEHeRmljXrUkedXOG7nhIHZ
dbPsKmTRGFPglzgsKboGrQhZMbL4ph2irBj0gy5tP9UwRAt/2gIcvvTKzenRmWZY
As+E988RlRcchPmZrELL/GIDfKr5zquH9Hlwn3SvsKHZYmaWvYb32g==
-----END CERTIFICATE-----
Generated at Fri Sep 1 10:21:50 2023 by rpki-client on console-ams.rpki-client.org