Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TSMC/lLQKU_1Z8qJCr6dM1AiA1xZNNJo.roa
File: lLQKU_1Z8qJCr6dM1AiA1xZNNJo.roa (raw, json)
Hash identifier: 3sWU7skhjm/ioWyu3Qc5IXIHGlbSAJqDzbQIjdEVRD0=
Subject key identifier: 94:B4:0A:53:FD:59:F2:A2:42:AF:A7:4C:D4:08:80:D7:16:4D:34:9A
Certificate issuer: /CN=3A6BE8FAD78E95C4690ED99991FA79DF75F3D337
Certificate serial: 1295
Authority key identifier: 3A:6B:E8:FA:D7:8E:95:C4:69:0E:D9:99:91:FA:79:DF:75:F3:D3:37
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Omvo-teOlcRpDtmZkfp533Xz0zc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TSMC/lLQKU_1Z8qJCr6dM1AiA1xZNNJo.roa
Signing time: Mon 26 Aug 2024 05:28:13 +0000
ROA not before: Mon 26 Aug 2024 05:28:13 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 3462
IP address blocks: 202.126.64.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:32:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4757 (0x1295)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3A6BE8FAD78E95C4690ED99991FA79DF75F3D337
Validity
Not Before: Aug 26 05:28:13 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=94B40A53FD59F2A242AFA74CD40880D7164D349A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:f0:35:6a:8a:d5:24:f1:57:7f:11:a6:d9:44:
bb:da:08:12:8b:60:57:55:0a:10:9f:cf:91:35:5c:
83:b2:b0:48:21:7b:5a:b0:b3:2d:91:54:5e:bd:39:
72:f9:36:00:0d:8e:a4:b7:f9:67:0b:dc:3c:3d:e4:
61:aa:86:f1:83:0a:29:ec:18:9b:2b:bb:88:a2:ce:
15:40:b8:92:28:ac:1a:e3:45:53:77:47:bc:33:c1:
9f:a0:d1:c9:8a:db:06:ce:05:25:dd:fd:8a:a8:3c:
a4:77:f4:d5:50:67:c0:a8:47:65:bd:0c:19:86:3b:
7e:e5:2c:91:67:29:89:55:76:2c:6c:ab:a1:d8:d2:
fe:c6:ee:82:71:9e:ac:f6:a1:2f:21:24:c7:91:29:
3b:6f:51:a8:b6:5a:d5:a1:07:0f:c6:17:4c:06:a3:
ef:8a:00:21:10:2e:60:4b:a9:a2:ae:54:a2:97:07:
92:af:6d:b6:e9:a6:07:19:7d:37:f1:cc:e7:58:44:
55:d8:9c:d2:c5:03:2b:e7:8f:c8:60:65:36:14:c5:
b6:bf:cd:09:bb:d8:c7:7f:71:8c:6d:86:f0:19:12:
c9:8d:17:c9:44:06:b8:e3:f3:25:29:46:0e:0f:50:
c6:fb:cd:13:eb:a5:d2:23:1c:c4:51:f0:96:cd:2d:
9e:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:B4:0A:53:FD:59:F2:A2:42:AF:A7:4C:D4:08:80:D7:16:4D:34:9A
X509v3 Authority Key Identifier:
keyid:3A:6B:E8:FA:D7:8E:95:C4:69:0E:D9:99:91:FA:79:DF:75:F3:D3:37
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TSMC/Omvo-teOlcRpDtmZkfp533Xz0zc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Omvo-teOlcRpDtmZkfp533Xz0zc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TSMC/lLQKU_1Z8qJCr6dM1AiA1xZNNJo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.126.64.0/22
Signature Algorithm: sha256WithRSAEncryption
b0:bc:d2:44:c1:6f:11:de:d5:e9:51:17:63:f1:45:6e:21:d2:
f9:e2:1b:07:19:fe:fb:16:cc:9f:d4:53:dc:80:2b:2a:c3:06:
08:7d:4b:fb:5a:e2:01:7a:b8:21:7a:40:c4:19:36:c3:14:85:
59:d6:77:c8:42:a7:73:1a:b5:75:e3:c9:cc:af:ae:fc:ff:25:
e4:d0:7f:dd:1c:0a:dc:ac:40:2a:8f:16:92:de:3b:93:56:91:
20:27:9b:3e:ab:14:46:92:14:3e:0c:f2:9d:d7:c6:44:38:ab:
56:39:8b:dc:28:a6:b4:3a:d3:aa:c4:b2:2c:90:c5:a6:34:9c:
8a:43:43:d8:35:f0:23:2e:64:8a:44:17:83:af:78:99:28:0b:
39:dc:dc:6c:d3:2c:de:ae:b7:3f:26:7c:3c:df:09:7d:f2:c8:
ef:17:39:0a:95:c4:13:57:0b:55:4f:0f:2b:ed:c2:8c:45:a6:
d8:11:57:d1:d0:eb:4e:f6:4b:46:d8:8c:5b:30:2a:11:e1:f4:
57:b8:c4:9d:f6:ca:92:5b:f6:77:0a:6b:15:55:26:56:0b:bd:
fd:22:b6:8b:d0:e1:27:d8:44:d8:c6:63:0b:6d:c6:56:d2:29:
65:f9:c5:55:81:01:50:56:fc:44:7d:12:52:ca:88:8d:18:97:
08:f6:55:60
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICEpUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0E2
QkU4RkFENzhFOTVDNDY5MEVEOTk5OTFGQTc5REY3NUYzRDMzNzAeFw0yNDA4MjYw
NTI4MTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDk0QjQwQTUzRkQ1OUYy
QTI0MkFGQTc0Q0Q0MDg4MEQ3MTY0RDM0OUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQD38DVqitUk8Vd/EabZRLvaCBKLYFdVChCfz5E1XIOysEghe1qw
sy2RVF69OXL5NgANjqS3+WcL3Dw95GGqhvGDCinsGJsru4iizhVAuJIorBrjRVN3
R7wzwZ+g0cmK2wbOBSXd/YqoPKR39NVQZ8CoR2W9DBmGO37lLJFnKYlVdixsq6HY
0v7G7oJxnqz2oS8hJMeRKTtvUai2WtWhBw/GF0wGo++KACEQLmBLqaKuVKKXB5Kv
bbbppgcZfTfxzOdYRFXYnNLFAyvnj8hgZTYUxba/zQm72Md/cYxthvAZEsmNF8lE
Brjj8yUpRg4PUMb7zRPrpdIjHMRR8JbNLZ5dAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUlLQKU/1Z8qJCr6dM1AiA1xZNNJowHwYDVR0jBBgwFoAUOmvo+teOlcRpDtmZ
kfp533Xz0zcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFNNQy9P
bXZvLXRlT2xjUnBEdG1aa2ZwNTMzWHowemMuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L09tdm8tdGVPbGNScER0bVprZnA1MzNYejB6Yy5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL1RTTUMvbExRS1VfMVo4cUpDcjZkTTFBaUEx
eFpOTkpvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsp+QDAN
BgkqhkiG9w0BAQsFAAOCAQEAsLzSRMFvEd7V6VEXY/FFbiHS+eIbBxn++xbMn9RT
3IArKsMGCH1L+1riAXq4IXpAxBk2wxSFWdZ3yEKncxq1dePJzK+u/P8l5NB/3RwK
3KxAKo8Wkt47k1aRICebPqsURpIUPgzyndfGRDirVjmL3CimtDrTqsSyLJDFpjSc
ikND2DXwIy5kikQXg694mSgLOdzcbNMs3q63PyZ8PN8JffLI7xc5CpXEE1cLVU8P
K+3CjEWm2BFX0dDrTvZLRtiMWzAqEeH0V7jEnfbKklv2dwprFVUmVgu9/SK2i9Dh
J9hE2MZjC23GVtIpZfnFVYEBUFb8RH0SUsqIjRiXCPZVYA==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:55:26 2025 by rpki-client