Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/qSv3D1zZaaCjAjGsbjfjYphtZaw.roa
File: qSv3D1zZaaCjAjGsbjfjYphtZaw.roa (raw, json)
Hash identifier: 5wQWDH6c5x0e3P/mB4aVCVGVWZDIj1CQWu42tOvBp7E=
Subject key identifier: A9:2B:F7:0F:5C:D9:69:A0:A3:02:31:AC:6E:37:E3:62:98:6D:65:AC
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/qSv3D1zZaaCjAjGsbjfjYphtZaw.roa
Signing time: Thu 15 Sep 2022 02:47:04 +0000
ROA not before: Thu 15 Sep 2022 02:47:04 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9924
IP address blocks: 60.199.147.0/24 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3529 (0xdc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 15 02:47:04 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A92BF70F5CD969A0A30231AC6E37E362986D65AC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:0b:3d:d8:a6:4d:75:6a:e6:8c:ac:59:ce:b0:
44:98:70:57:68:32:5d:a5:4f:12:29:c2:eb:d9:e6:
dd:b6:f0:68:19:26:c5:8a:4f:21:a7:d5:e2:33:20:
5c:1c:fd:1f:2b:23:5a:b1:c5:7d:aa:6e:78:96:a6:
48:ef:13:a8:81:95:ee:39:c9:d6:37:27:c1:a2:55:
91:aa:6d:67:52:46:f4:a5:2b:b1:14:c9:0a:57:70:
57:f2:d4:5b:0f:82:b6:97:33:81:e6:b9:47:83:46:
44:7c:43:b5:48:cb:e3:b8:4e:fe:9d:d2:27:61:d3:
a1:86:b9:53:a8:aa:cb:0b:b7:c9:ee:33:33:a1:54:
48:77:d1:32:5b:0d:50:84:51:cd:6d:70:f3:ba:85:
34:d9:04:15:ec:d8:35:99:3d:78:bb:a0:f0:7a:40:
98:8f:ef:55:a2:52:de:5d:f6:8e:68:5a:91:09:3f:
2a:93:88:a0:0c:e1:75:30:34:f9:12:a2:21:46:0e:
16:21:20:14:54:58:00:08:63:b3:8f:63:46:65:94:
17:39:a8:63:15:86:2b:e0:2c:2d:12:1f:08:01:a9:
b4:16:35:31:6c:5d:e3:a3:b5:9b:db:1f:b5:d1:01:
22:69:18:48:bf:70:e9:89:c4:be:55:11:00:be:03:
03:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:2B:F7:0F:5C:D9:69:A0:A3:02:31:AC:6E:37:E3:62:98:6D:65:AC
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/qSv3D1zZaaCjAjGsbjfjYphtZaw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.199.147.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:58:99:05:16:70:dd:37:cd:dd:a8:ca:0b:7e:6d:f5:87:09:
4a:04:c7:8c:4d:a0:30:77:03:7f:ff:02:6f:5c:c0:47:50:d7:
fa:ba:db:3e:7d:0f:7c:20:76:4c:b6:eb:2e:fb:9d:1c:47:74:
84:35:ab:bf:77:0b:08:14:c6:a6:1d:55:66:a6:f2:a9:2b:dc:
e2:a5:4a:96:ad:15:8a:24:7e:ca:a9:39:20:d5:0c:bb:99:ee:
1b:ca:ee:b1:b2:19:e1:2a:d2:42:fb:c7:49:68:b5:50:29:4d:
ba:7d:2a:0d:1d:2e:3e:c0:74:1f:a6:76:ca:90:e0:89:84:6f:
dd:8a:26:ef:5f:05:e5:98:95:7a:a2:d1:bf:3b:ed:77:41:8f:
12:65:72:57:3d:4e:c2:c8:a9:f9:d2:cb:7f:60:64:ff:20:0e:
cc:f1:d9:06:57:88:ac:5e:96:bd:89:0f:6b:4a:d0:8f:c5:c1:
5a:d1:57:70:d8:bf:d4:57:29:05:1a:8d:04:cb:90:cb:50:58:
24:34:51:52:d2:05:5b:48:09:1f:84:ad:e2:fe:57:27:d2:80:
cb:fd:35:f5:f9:4a:08:d4:df:cc:14:63:67:dd:31:e5:ba:b8:
f4:33:4e:ba:46:1c:3d:8e:ce:49:30:27:6d:1f:49:7d:a8:01:
c2:f4:52:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:18:40 2023 by rpki-client on console-fra.rpki-client.org