Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/z-PdZD27Xa940G93UQbX1Gy9sCA.roa
File: z-PdZD27Xa940G93UQbX1Gy9sCA.roa (raw, json)
Hash identifier: so8yZsS/DMhfBfoZjykde2Hhlt++AkrkAa6ZFR+grRE=
Subject key identifier: CF:E3:DD:64:3D:BB:5D:AF:78:D0:6F:77:51:06:D7:D4:6C:BD:B0:20
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 1227
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/z-PdZD27Xa940G93UQbX1Gy9sCA.roa
Signing time: Mon 26 Aug 2024 05:24:44 +0000
ROA not before: Mon 26 Aug 2024 05:24:44 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131634
IP address blocks: 124.108.191.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:09:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4647 (0x1227)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Aug 26 05:24:44 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=CFE3DD643DBB5DAF78D06F775106D7D46CBDB020
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:b2:1b:b9:0d:99:be:de:24:f0:df:7a:86:e7:
88:64:96:54:3d:b1:e3:71:47:33:0b:d3:8d:96:70:
c0:c1:84:a5:0f:85:23:99:a2:65:a8:78:a6:7a:bc:
8f:11:f5:2e:7b:6d:ad:58:cf:b2:19:5c:99:3b:2f:
01:4d:31:e8:4f:b0:2e:a5:82:3f:bf:8f:9b:aa:17:
ff:de:11:a3:c0:56:da:b9:fb:32:dc:4a:48:3b:2e:
b2:af:0a:e9:05:84:90:c6:e6:73:18:73:76:18:f2:
2b:50:2d:e4:59:35:01:7a:4b:a7:8b:fe:1f:7b:0b:
03:03:a7:df:be:44:59:19:29:5b:5d:58:46:c2:da:
c7:94:46:d3:3b:1b:de:64:fc:83:9f:cf:57:0d:d6:
df:00:d2:74:c9:3a:fe:3d:4e:54:1f:88:4e:5c:49:
cf:f0:1a:59:7b:cb:11:66:15:b8:1a:7a:00:55:df:
3e:14:cb:1b:26:db:69:5f:e8:e0:a6:97:7c:a3:f1:
7f:f1:4f:d9:27:7a:41:99:b6:d7:4a:b6:8a:97:d3:
bc:11:7f:0b:78:2e:1b:96:66:a7:22:97:94:af:f2:
86:8d:92:1c:73:d4:75:36:04:0e:2d:df:95:e8:d1:
c6:f7:d6:cd:6c:86:03:2f:f8:f1:85:22:e3:f1:14:
86:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:E3:DD:64:3D:BB:5D:AF:78:D0:6F:77:51:06:D7:D4:6C:BD:B0:20
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/z-PdZD27Xa940G93UQbX1Gy9sCA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.108.191.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:72:b2:d6:a4:68:83:b5:1a:89:07:7c:6c:cd:11:1d:96:ac:
d6:f4:4a:b1:2b:06:24:2c:62:7c:16:82:d2:4f:23:98:a2:b3:
f9:16:eb:b8:18:97:12:0f:cb:99:90:e6:d3:0c:0f:50:aa:f9:
58:5a:55:c3:8c:5c:17:68:3e:b4:aa:4b:00:8b:dd:09:40:4d:
00:e7:1b:2d:46:1c:2f:0a:fe:36:b5:1d:95:74:4b:78:a1:75:
9d:cc:a8:05:41:74:e7:4c:69:b4:0c:f2:50:3d:62:e5:08:6f:
76:ed:9c:9c:59:a0:a0:b4:1f:85:8d:79:7d:f3:55:9f:e3:81:
77:75:83:e4:41:94:17:06:51:99:35:3d:cc:35:7f:7d:11:fc:
48:5d:4c:39:a9:18:4c:6e:a9:d7:2e:0c:99:d3:50:bf:02:8b:
02:9e:aa:8e:23:e8:0f:91:55:b3:84:90:68:ee:aa:68:be:cb:
05:85:ef:2d:1d:a4:35:19:51:fc:43:77:69:34:6e:74:3a:ee:
b7:9d:db:d7:4e:69:1f:91:f7:1d:77:d2:d5:91:a8:8f:85:7e:
1f:95:08:d8:e6:8b:45:38:04:9b:b8:d0:56:b9:72:69:fe:43:
ad:38:d9:96:82:7f:17:c1:a7:33:c6:37:6c:1c:0d:d2:e6:f8:
f1:a8:3a:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 12:20:31 2025 by rpki-client