Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/0GXhZ2A2XPA45xSWH1h9HFdSV7Q.roa
File: 0GXhZ2A2XPA45xSWH1h9HFdSV7Q.roa (raw, json)
Hash identifier: Sdbzs9MtEZBWDe2SRCiAa42gpSxtJ0JbfJjD2ROmCqA=
Subject key identifier: D0:65:E1:67:60:36:5C:F0:38:E7:14:96:1F:58:7D:1C:57:52:57:B4
Certificate issuer: /CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90
Certificate serial: 0A9C
Authority key identifier: B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/0GXhZ2A2XPA45xSWH1h9HFdSV7Q.roa
Signing time: Thu 15 Sep 2022 02:37:01 +0000
ROA not before: Thu 15 Sep 2022 02:37:01 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24158
IP address blocks: 117.19.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2716 (0xa9c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90
Validity
Not Before: Sep 15 02:37:01 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=D065E16760365CF038E714961F587D1C575257B4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:47:3b:78:e5:15:44:66:9c:7e:80:6e:af:28:
fa:27:ac:ad:cf:f7:7a:85:ec:50:70:4d:82:8e:7b:
51:4d:dd:f9:5c:78:54:8b:ba:b0:e5:31:d0:e6:e2:
4d:2b:57:e8:c7:85:01:8e:9c:c2:a7:f1:34:2c:b6:
20:eb:16:bf:e5:54:fe:4e:aa:f7:f2:2c:c2:fc:10:
32:01:dd:df:88:f3:28:73:b9:00:77:62:84:45:02:
08:4a:67:36:73:eb:a1:78:84:bf:73:b3:e6:4e:f8:
0b:e6:9c:24:b6:f2:67:3a:51:93:dd:19:5a:99:f0:
44:68:23:70:a6:3e:92:65:c8:9d:02:a6:e1:10:2a:
c2:35:5f:c6:a6:80:ce:50:82:20:31:34:f4:59:18:
07:67:79:67:80:82:90:89:a7:b6:10:ce:71:5d:20:
45:4f:4c:66:f5:42:d6:89:a6:00:eb:5d:cb:47:d8:
98:41:c3:f9:b4:49:81:a0:3a:f7:9b:65:83:18:47:
34:be:8e:4c:0f:a3:3a:00:9c:7b:b2:1e:22:25:c1:
c4:4c:f1:55:c7:6f:c6:fc:7a:13:8d:f1:ba:26:e6:
24:45:a3:d9:f9:a4:ff:54:50:ce:05:07:a6:2c:b8:
62:0b:af:06:1d:3a:9c:86:83:51:55:ac:2d:f3:43:
1f:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:65:E1:67:60:36:5C:F0:38:E7:14:96:1F:58:7D:1C:57:52:57:B4
X509v3 Authority Key Identifier:
keyid:B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/0GXhZ2A2XPA45xSWH1h9HFdSV7Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
117.19.0.0/16
Signature Algorithm: sha256WithRSAEncryption
77:2c:11:5b:c2:ba:69:bb:af:e0:1a:bc:ce:4f:bd:9d:5b:c0:
b3:89:38:a9:ef:85:9f:12:cf:f7:4b:54:45:36:c8:a3:87:53:
18:a0:53:8e:70:9b:ef:25:71:39:e7:56:4a:a7:e7:7d:c6:b6:
81:0f:58:af:20:1f:c1:48:94:40:f3:da:00:b7:c4:20:db:f1:
d4:a1:ef:9b:e0:59:c2:55:a0:a1:d9:a9:20:38:8e:57:8d:59:
4c:07:bb:0f:a1:54:7a:e6:af:b6:57:04:2e:a5:3c:58:90:41:
e5:5d:42:30:6d:ac:9c:6e:cf:30:a7:6c:d4:c5:52:e1:f9:e1:
dc:98:f2:0e:32:12:ab:40:eb:59:ca:52:9e:16:b2:1c:3e:33:
c1:80:57:85:57:64:a7:03:c9:5f:83:01:b2:e5:2f:c0:d8:3c:
3b:5f:68:67:35:af:6e:90:f5:31:9b:10:4b:8a:5c:30:de:c1:
96:78:5e:95:62:a9:7e:5f:3b:3a:aa:e9:1d:de:88:88:b6:9a:
c6:bb:fb:8e:1a:f5:8e:97:24:39:92:67:26:53:0a:15:e3:8b:
67:c7:0e:2c:09:cc:a3:4e:52:77:18:4c:53:ea:a7:0f:3f:80:
c5:e0:06:35:47:28:e6:62:37:1b:b4:44:f8:9a:5a:8b:02:a7:
07:81:3a:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org