Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/U2uPKn-q84oRrdkkWP_w3yvjAkI.roa
File: U2uPKn-q84oRrdkkWP_w3yvjAkI.roa (raw, json)
Hash identifier: F6oRI0+Gvp/tKlLKuJQ5y2T5yEbsRiPwS9X5iaGw6Wk=
Subject key identifier: 53:6B:8F:2A:7F:AA:F3:8A:11:AD:D9:24:58:FF:F0:DF:2B:E3:02:42
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 1316
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/U2uPKn-q84oRrdkkWP_w3yvjAkI.roa
Signing time: Mon 10 Feb 2025 14:09:05 +0000
ROA not before: Mon 10 Feb 2025 14:09:05 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9924
IP address blocks: 60.199.168.0/24 maxlen: 32
Validation: Failed, certificate revoked on Fri 22 Aug 2025 08:54:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4886 (0x1316)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Feb 10 14:09:05 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=536B8F2A7FAAF38A11ADD92458FFF0DF2BE30242
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:31:a7:e0:67:53:0f:ff:c2:c2:2e:9c:09:5e:
35:8c:a6:28:15:bb:35:c7:75:b8:39:82:63:8e:4b:
fd:43:60:20:6d:db:b4:2a:71:70:f3:37:c2:28:f9:
77:d2:06:16:aa:f5:80:1a:a7:a1:05:1a:b9:7c:98:
a0:e7:76:ed:c5:14:e6:ce:0b:77:c7:60:23:e9:5f:
3d:f4:f9:6e:2f:4a:42:d6:1d:bb:1b:dc:04:66:ef:
00:26:38:2a:ec:14:5c:2f:ed:bd:a0:02:34:17:34:
f1:c7:2b:57:52:fb:06:f1:31:8d:59:6b:8d:a5:cf:
a6:03:07:14:04:8e:12:7f:4b:b3:1a:ad:3f:db:18:
34:fb:b4:52:df:c0:db:2a:f2:8e:54:88:17:ec:a5:
9d:3d:ee:34:6e:de:f5:25:48:58:3d:51:ad:cc:d1:
b1:8b:cf:6f:76:28:7c:b7:18:af:ad:0e:60:13:75:
d5:08:8a:4a:85:b8:9e:12:ba:f1:94:b1:e5:60:ef:
4b:42:38:db:ea:de:41:78:2b:09:0c:c2:d4:fe:0a:
4e:19:c6:e2:10:3a:34:41:84:60:97:86:ec:3f:1c:
d7:ed:50:5b:ea:8b:c8:30:a2:7e:ed:4c:a4:fd:01:
c4:6b:82:a5:09:32:71:12:15:a3:d0:ee:1b:93:65:
88:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:6B:8F:2A:7F:AA:F3:8A:11:AD:D9:24:58:FF:F0:DF:2B:E3:02:42
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/U2uPKn-q84oRrdkkWP_w3yvjAkI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.199.168.0/24
Signature Algorithm: sha256WithRSAEncryption
64:aa:a1:19:1c:58:8c:e6:58:50:9e:21:98:32:c4:60:bf:ec:
42:de:57:44:ad:89:7d:e5:85:74:c8:2a:4b:d2:dc:b0:86:e0:
5e:06:f7:f2:22:37:56:09:77:03:07:ae:99:a3:a6:d3:ed:a3:
db:7f:40:a2:b2:12:d8:de:0b:a1:04:72:ce:30:75:66:3f:63:
ee:bc:ae:fe:e6:dc:ab:4b:e5:d6:27:31:28:05:d8:91:e9:c4:
eb:10:20:9d:5b:b5:19:4c:bd:d1:f8:70:01:16:97:23:28:13:
d4:26:fa:32:45:01:58:ec:cf:ba:f6:cd:f6:52:27:92:e8:c9:
cb:e4:2d:cc:5e:59:88:3f:32:69:e1:75:c9:94:1b:73:69:64:
64:b3:98:6e:f6:27:51:55:60:4a:e3:b9:0c:3a:97:96:e6:04:
d8:43:8e:5e:2c:98:4f:3a:04:18:6a:6b:08:31:13:2d:0a:51:
b1:bd:80:61:66:34:d5:08:22:3f:c8:8b:38:28:2c:b6:00:2c:
7f:01:16:66:d9:d0:6e:ca:5e:1f:b0:a5:82:5f:6b:83:9c:8f:
c4:0d:2c:1e:93:b6:3c:e6:fa:19:ff:23:59:58:0f:df:ce:2a:
03:6a:bc:98:a7:87:2b:1a:92:a5:37:6d:92:a9:52:44:76:55:
97:47:c7:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 01:29:20 2025 by rpki-client