Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/4GslGHQxRFCQG1Ueq5LbKaEol6w.roa
File: 4GslGHQxRFCQG1Ueq5LbKaEol6w.roa (raw, json)
Hash identifier: 9rU5sqxNNQ9bIy3DtAE43Blq3E1BhtjueOrgO9IMPok=
Subject key identifier: E0:6B:25:18:74:31:44:50:90:1B:55:1E:AB:92:DB:29:A1:28:97:AC
Certificate issuer: /CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90
Certificate serial: 0CE3
Authority key identifier: B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/4GslGHQxRFCQG1Ueq5LbKaEol6w.roa
Signing time: Mon 26 Aug 2024 05:27:05 +0000
ROA not before: Mon 26 Aug 2024 05:27:05 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24157
IP address blocks: 43.255.180.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:58:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3299 (0xce3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90
Validity
Not Before: Aug 26 05:27:05 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=E06B251874314450901B551EAB92DB29A12897AC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:36:b0:9f:a7:cd:a3:27:03:d4:2e:c9:35:fa:
75:80:f2:56:0e:17:df:57:dd:1a:01:4e:24:b8:48:
25:6e:ee:28:ad:f6:2b:f7:6e:7f:78:43:af:89:62:
49:05:3a:1c:8f:9f:1c:e3:85:d1:89:88:b3:4e:36:
97:d6:a7:cd:fb:8c:be:46:89:ac:08:44:37:36:4f:
46:0b:ba:eb:48:82:9d:16:01:94:4a:e7:a8:d9:9b:
69:05:da:b9:c9:c6:99:4e:89:47:92:cc:91:16:43:
08:13:4a:54:df:d1:52:74:f4:c1:2b:b5:51:81:82:
e3:5b:62:6a:30:df:c1:b5:41:e3:9f:34:c5:b2:7e:
94:a9:61:e1:88:17:8e:68:4c:f4:34:74:d3:4d:23:
9a:b2:1f:c8:6a:a4:6d:43:d9:ca:b5:e0:b0:00:16:
ea:84:d3:70:80:3f:4f:e7:89:dd:e5:4d:8a:e0:63:
52:33:11:d7:12:a3:cc:76:0d:f1:46:cf:36:a4:30:
c8:d4:a2:9f:ab:0b:fe:7b:f4:97:b9:fb:2d:c6:11:
21:2b:28:a8:90:f1:0a:fd:ee:64:ae:91:00:b8:55:
c0:a7:75:5d:2b:af:f1:8c:6e:83:f0:dc:5b:ea:b5:
01:b2:36:34:5e:4a:cd:e9:cf:80:c0:eb:ad:07:c0:
70:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:6B:25:18:74:31:44:50:90:1B:55:1E:AB:92:DB:29:A1:28:97:AC
X509v3 Authority Key Identifier:
keyid:B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/4GslGHQxRFCQG1Ueq5LbKaEol6w.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.255.180.0/22
Signature Algorithm: sha256WithRSAEncryption
22:c8:3f:1a:3f:d1:26:45:64:02:13:ba:52:ed:d5:c2:07:40:
10:24:1b:27:a1:b4:12:70:a5:b4:63:ee:0d:80:80:dd:53:8a:
8d:6e:96:a9:a1:60:1e:9b:7a:e9:3c:19:1b:90:7f:12:7b:d2:
7e:a0:47:6c:df:06:b3:73:9c:9d:3d:00:8a:99:f3:79:8b:47:
46:ce:1d:59:b5:56:ea:f7:ae:b7:70:5d:f9:01:0c:25:77:37:
1f:c4:7e:ea:27:4f:0e:1b:22:74:31:9f:68:01:80:28:06:49:
2f:99:8f:cc:59:b8:e2:e1:28:9a:4f:8c:96:a5:07:9b:04:35:
85:2a:8b:20:25:0d:42:80:14:a1:f7:43:93:49:c3:f3:21:b3:
32:b5:e1:f7:85:32:0b:dd:da:22:84:05:39:1e:f6:0a:e7:6d:
ee:cc:03:5b:c7:6a:49:0d:8d:9b:4a:80:c6:87:52:92:ab:7d:
81:18:63:9b:c3:35:1d:1a:4d:36:67:35:bd:b3:74:55:2c:1b:
9d:56:ac:7e:a7:26:84:0c:1b:e3:b7:cc:dd:c3:33:b0:10:ef:
ce:32:6f:e5:d2:09:28:57:07:f5:d5:0f:71:f5:5b:9e:ef:fb:
44:04:d9:e2:22:ad:2e:4b:75:94:fe:f5:40:7d:f0:8d:7a:5a:
ec:db:aa:ab
-----BEGIN CERTIFICATE-----
MIIE3jCCA8agAwIBAgICDOMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjJD
QTM5RDhEMTdCMTBEOTdENUE1MUUwRUEyRjlGQjFCQzQwQ0Q5MDAeFw0yNDA4MjYw
NTI3MDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEUwNkIyNTE4NzQzMTQ0
NTA5MDFCNTUxRUFCOTJEQjI5QTEyODk3QUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCiNrCfp82jJwPULsk1+nWA8lYOF99X3RoBTiS4SCVu7iit9iv3
bn94Q6+JYkkFOhyPnxzjhdGJiLNONpfWp837jL5GiawIRDc2T0YLuutIgp0WAZRK
56jZm2kF2rnJxplOiUeSzJEWQwgTSlTf0VJ09MErtVGBguNbYmow38G1QeOfNMWy
fpSpYeGIF45oTPQ0dNNNI5qyH8hqpG1D2cq14LAAFuqE03CAP0/nid3lTYrgY1Iz
EdcSo8x2DfFGzzakMMjUop+rC/579Je5+y3GESErKKiQ8Qr97mSukQC4VcCndV0r
r/GMboPw3FvqtQGyNjReSs3pz4DA660HwHCJAgMBAAGjggH6MIIB9jAdBgNVHQ4E
FgQU4GslGHQxRFCQG1Ueq5LbKaEol6wwHwYDVR0jBBgwFoAUsso52NF7ENl9WlHg
6i+fsbxAzZAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBiBgNVHR8EWzBZMFeg
VaBThlFyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FO
TU9CSUxFL3NzbzUyTkY3RU5sOVdsSGc2aS1mc2J4QXpaQS5jcmwwYAYIKwYBBQUH
AQEEVDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtp
L1RXTklDQ0Evc3NvNTJORjdFTmw5V2xIZzZpLWZzYnhBelpBLmNlcjAOBgNVHQ8B
Af8EBAMCB4AwgaIGCCsGAQUFBwELBIGVMIGSMF0GCCsGAQUFBzALhlFyc3luYzov
L3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FOTU9CSUxFLzRHc2xH
SFF4UkZDUUcxVWVxNUxiS2FFb2w2dy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8v
cnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAO
MAwEAgABMAYDBAIr/7QwDQYJKoZIhvcNAQELBQADggEBACLIPxo/0SZFZAITulLt
1cIHQBAkGyehtBJwpbRj7g2AgN1Tio1ulqmhYB6beuk8GRuQfxJ70n6gR2zfBrNz
nJ09AIqZ83mLR0bOHVm1Vur3rrdwXfkBDCV3Nx/EfuonTw4bInQxn2gBgCgGSS+Z
j8xZuOLhKJpPjJalB5sENYUqiyAlDUKAFKH3Q5NJw/MhszK14feFMgvd2iKEBTke
9grnbe7MA1vHakkNjZtKgMaHUpKrfYEYY5vDNR0aTTZnNb2zdFUsG51WrH6nJoQM
G+O3zN3DM7AQ784yb+XSCShXB/XVD3H1W57v+0QE2eIirS5LdZT+9UB98I16Wuzb
qqs=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:14:45 2025 by rpki-client