Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/svrPMeZnqipX-xdP8emDx0PL4Nw.roa
File: svrPMeZnqipX-xdP8emDx0PL4Nw.roa (raw, json)
Hash identifier: auj64yWtFlIdBQTyC+9yvuqlofIMHMu1bu7A3lxyPt8=
Subject key identifier: B2:FA:CF:31:E6:67:AA:2A:57:FB:17:4F:F1:E9:83:C7:43:CB:E0:DC
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 1200
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/svrPMeZnqipX-xdP8emDx0PL4Nw.roa
Signing time: Mon 26 Aug 2024 05:24:36 +0000
ROA not before: Mon 26 Aug 2024 05:24:36 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 4662
IP address blocks: 210.67.160.0/19 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:09:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4608 (0x1200)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Aug 26 05:24:36 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=B2FACF31E667AA2A57FB174FF1E983C743CBE0DC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:01:d5:df:66:a6:2f:c9:13:0c:60:6a:a7:cb:
ab:15:81:34:cd:62:b6:40:36:2e:8b:b5:90:31:b1:
99:01:ff:f0:b6:95:4a:7e:12:11:3f:a9:ca:91:de:
cb:86:d4:74:18:80:25:46:78:7a:de:fb:b4:b0:8c:
f0:82:0f:4c:40:65:cc:96:2b:8b:d5:6f:9e:d6:8c:
5b:95:2d:9a:ed:da:e5:ec:21:46:45:0c:9c:0b:22:
0f:ff:b1:2d:0f:70:68:3c:7b:9c:78:3b:b5:5f:e0:
56:49:67:6e:27:96:4d:0c:f5:c0:e6:11:5a:5f:3e:
10:ec:a2:34:1f:4d:bd:78:22:e3:ac:ed:3a:52:a1:
e5:5e:30:09:17:dc:34:b5:68:3a:de:36:5f:9c:94:
40:dc:5f:ac:23:55:f5:c4:25:c5:ac:df:f9:4b:b9:
72:fd:48:a3:e7:da:8e:39:fd:b4:49:17:0e:07:23:
95:76:51:8d:b6:c1:3d:26:30:51:e6:86:5e:e1:54:
1c:fb:40:76:21:10:0e:0f:0e:60:cd:73:a3:50:c0:
46:0e:50:a3:55:a8:2a:94:7a:ad:7e:6d:c4:6c:9c:
98:97:54:3b:86:f9:16:ff:59:42:00:1d:5f:27:5d:
0f:62:e4:df:04:2d:59:ae:b0:1c:1e:7e:58:c2:3e:
43:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:FA:CF:31:E6:67:AA:2A:57:FB:17:4F:F1:E9:83:C7:43:CB:E0:DC
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/svrPMeZnqipX-xdP8emDx0PL4Nw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.67.160.0/19
Signature Algorithm: sha256WithRSAEncryption
3d:be:cf:b8:b3:e7:53:a2:45:34:1e:a0:d6:28:38:38:b0:f0:
19:37:2a:23:1b:c2:d4:ed:02:2f:c2:65:af:cc:4c:1f:9d:3b:
e3:b0:36:a4:48:43:c9:21:cd:57:6c:89:c5:c7:2d:31:47:50:
ce:13:cd:c0:2b:18:94:42:5b:c6:35:73:5e:df:a8:3a:78:9e:
0a:0e:5b:1a:f4:8c:29:1b:36:5e:40:8e:14:2b:66:c4:83:e2:
cc:03:90:68:5f:01:25:49:05:96:71:29:f8:84:de:fc:f8:a2:
6e:42:cd:18:d3:5e:ae:ee:91:55:93:84:0d:a8:87:b7:e0:df:
ea:51:09:2e:e7:83:80:38:0e:61:70:94:7a:b6:fd:ce:8d:18:
81:02:8c:f4:2a:70:6c:72:8b:4d:22:77:57:6b:06:ea:3a:48:
c1:f3:8b:7f:fc:18:94:f6:27:62:12:a7:63:52:38:58:b1:f0:
61:be:b4:30:2d:42:b2:07:e5:9d:cb:42:f6:dc:74:b5:93:cd:
07:6f:42:63:9e:58:8f:5f:61:c7:4f:24:0e:66:1e:2a:d7:fa:
72:80:5f:78:50:01:f4:21:c4:9c:0b:ca:44:1f:c1:42:a8:49:
67:56:8e:f4:7f:33:4b:89:a6:80:d5:51:c0:37:bd:40:14:98:
6a:f5:39:5d
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICEgAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNDA4MjYw
NTI0MzZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEIyRkFDRjMxRTY2N0FB
MkE1N0ZCMTc0RkYxRTk4M0M3NDNDQkUwREMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC3AdXfZqYvyRMMYGqny6sVgTTNYrZANi6LtZAxsZkB//C2lUp+
EhE/qcqR3suG1HQYgCVGeHre+7SwjPCCD0xAZcyWK4vVb57WjFuVLZrt2uXsIUZF
DJwLIg//sS0PcGg8e5x4O7Vf4FZJZ24nlk0M9cDmEVpfPhDsojQfTb14IuOs7TpS
oeVeMAkX3DS1aDreNl+clEDcX6wjVfXEJcWs3/lLuXL9SKPn2o45/bRJFw4HI5V2
UY22wT0mMFHmhl7hVBz7QHYhEA4PDmDNc6NQwEYOUKNVqCqUeq1+bcRsnJiXVDuG
+Rb/WUIAHV8nXQ9i5N8ELVmusBwefljCPkPRAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUsvrPMeZnqipX+xdP8emDx0PL4NwwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvc3ZyUE1lWm5xaXBYLXhk
UDhlbUR4MFBMNE53LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
BdJDoDANBgkqhkiG9w0BAQsFAAOCAQEAPb7PuLPnU6JFNB6g1ig4OLDwGTcqIxvC
1O0CL8Jlr8xMH50747A2pEhDySHNV2yJxcctMUdQzhPNwCsYlEJbxjVzXt+oOnie
Cg5bGvSMKRs2XkCOFCtmxIPizAOQaF8BJUkFlnEp+ITe/PiibkLNGNNeru6RVZOE
DaiHt+Df6lEJLueDgDgOYXCUerb9zo0YgQKM9CpwbHKLTSJ3V2sG6jpIwfOLf/wY
lPYnYhKnY1I4WLHwYb60MC1CsgflnctC9tx0tZPNB29CY55Yj19hx08kDmYeKtf6
coBfeFAB9CHEnAvKRB/BQqhJZ1aO9H8zS4mmgNVRwDe9QBSYavU5XQ==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:26:54 2025 by rpki-client