Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TSMC/jZMsQO2cSHh5O7mB8WUQLYHEHUI.roa
File: jZMsQO2cSHh5O7mB8WUQLYHEHUI.roa (raw, json)
Hash identifier: uR768pwJC0YhW7ky1tXDU+b8nRcZyA227nWLI1ZtVmg=
Subject key identifier: 8D:93:2C:40:ED:9C:48:78:79:3B:B9:81:F1:65:10:2D:81:C4:1D:42
Certificate issuer: /CN=3A6BE8FAD78E95C4690ED99991FA79DF75F3D337
Certificate serial: 10FB
Authority key identifier: 3A:6B:E8:FA:D7:8E:95:C4:69:0E:D9:99:91:FA:79:DF:75:F3:D3:37
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Omvo-teOlcRpDtmZkfp533Xz0zc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TSMC/jZMsQO2cSHh5O7mB8WUQLYHEHUI.roa
Signing time: Wed 01 Feb 2023 05:27:40 +0000
ROA not before: Wed 01 Feb 2023 05:27:40 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 3462
IP address blocks: 202.126.64.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4347 (0x10fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3A6BE8FAD78E95C4690ED99991FA79DF75F3D337
Validity
Not Before: Feb 1 05:27:40 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=8D932C40ED9C4878793BB981F165102D81C41D42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:c6:78:b2:37:62:6e:f6:24:ea:5f:de:b8:d9:
bb:eb:e6:34:d5:e2:58:00:35:c4:a4:d0:fe:df:61:
c0:e9:96:9d:49:54:90:71:de:bb:72:6a:9b:cb:97:
c1:01:cf:52:53:2a:f2:52:f7:86:eb:28:56:19:8b:
0e:d0:d7:89:2f:cb:f4:16:37:de:1f:22:e6:63:01:
d8:b1:96:3c:a4:bf:37:85:fb:1a:ca:8a:68:f1:03:
2c:19:b8:01:01:4b:2f:0c:91:20:3f:f6:d1:70:b9:
83:77:86:d1:f7:87:86:96:f4:63:34:bb:32:3c:9a:
bd:c5:fe:94:fb:7b:92:6a:83:26:fd:f2:b3:8c:7f:
c2:82:5e:fc:de:c7:94:f2:1e:03:e4:11:36:7c:05:
5f:37:81:7f:72:b0:c9:d2:d2:33:01:81:24:b4:80:
66:29:09:b5:c6:28:cf:b4:03:b7:53:e3:71:4a:b7:
bc:bf:77:5a:56:2b:b0:07:02:45:ed:4a:b7:38:ca:
b0:81:42:ce:06:f2:ef:9a:b9:0b:68:4f:fa:92:3a:
05:04:a9:3a:25:b7:b0:36:49:ec:2a:b6:bf:07:53:
7c:f6:d7:fb:8a:9f:ed:e0:a2:7f:ae:1d:66:c7:f0:
1f:41:a5:93:d7:1c:eb:26:c4:61:29:84:06:5a:69:
b8:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:93:2C:40:ED:9C:48:78:79:3B:B9:81:F1:65:10:2D:81:C4:1D:42
X509v3 Authority Key Identifier:
keyid:3A:6B:E8:FA:D7:8E:95:C4:69:0E:D9:99:91:FA:79:DF:75:F3:D3:37
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TSMC/Omvo-teOlcRpDtmZkfp533Xz0zc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Omvo-teOlcRpDtmZkfp533Xz0zc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TSMC/jZMsQO2cSHh5O7mB8WUQLYHEHUI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.126.64.0/20
Signature Algorithm: sha256WithRSAEncryption
2d:dd:ed:33:ec:f5:2a:68:65:5b:5b:f1:17:58:c0:be:0f:7c:
1e:c6:a2:8d:d5:c1:a2:a0:e0:76:10:e4:3a:13:44:67:b5:75:
07:2b:14:99:63:db:15:43:1a:36:0c:06:33:b9:76:68:42:09:
17:c7:c9:5f:81:52:1c:2b:41:b2:40:68:f0:b3:89:37:8e:fb:
86:48:8a:fd:1e:d6:e2:42:3d:57:a3:0d:f6:38:02:86:48:4b:
24:7e:6c:e6:ce:e5:b0:bc:52:e7:22:77:6b:da:26:e4:bd:39:
0c:03:d4:b4:0b:e7:89:ca:67:3b:42:04:78:e3:4b:79:a9:fd:
30:69:bf:2d:97:0e:fc:c9:1b:8f:b6:c4:49:c3:59:29:af:15:
3f:c4:6c:a8:ed:b7:4f:81:fd:b2:28:70:0e:7f:60:79:20:18:
a7:d3:78:16:8b:46:c6:0f:28:09:69:8b:da:19:b7:ad:87:7f:
bd:53:20:40:71:cc:dd:be:15:a5:1f:c5:23:fc:ce:79:23:07:
f7:4c:96:36:ed:4a:20:9a:f9:67:1d:95:18:c3:b0:3b:a4:84:
bf:b5:c5:88:0c:5c:7a:2c:3c:72:99:43:05:92:9a:ec:7c:56:
d1:d9:4e:ec:72:19:7a:13:cc:ff:53:47:cd:f6:2e:8a:94:7d:
31:8c:b0:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:53:19 2023 by rpki-client on console-ams.rpki-client.org