Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/68t4hFS_0h9C2eLGgbNMLnU2Pio.roa
File: 68t4hFS_0h9C2eLGgbNMLnU2Pio.roa (raw, json)
Hash identifier: 1quREqfJxLDe+EwO+HfDmHDvCNL3rxhaOqBptF4z5hw=
Subject key identifier: EB:CB:78:84:54:BF:D2:1F:42:D9:E2:C6:81:B3:4C:2E:75:36:3E:2A
Certificate issuer: /CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90
Certificate serial: 0CDC
Authority key identifier: B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/68t4hFS_0h9C2eLGgbNMLnU2Pio.roa
Signing time: Mon 26 Aug 2024 05:27:03 +0000
ROA not before: Mon 26 Aug 2024 05:27:03 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24158
IP address blocks: 43.240.108.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:58:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3292 (0xcdc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90
Validity
Not Before: Aug 26 05:27:03 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=EBCB788454BFD21F42D9E2C681B34C2E75363E2A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:b2:d7:0e:f9:39:2d:c3:54:33:a4:87:9f:87:
72:e1:ad:52:5a:80:13:77:9e:36:0e:3f:3d:04:fe:
be:2e:b8:51:2a:df:f4:1c:88:50:ed:52:ae:60:3f:
35:96:53:3d:e0:cd:69:b1:0c:9a:ea:3f:56:0d:52:
51:2f:09:24:1f:26:82:4a:9d:74:e7:d1:30:ee:2e:
7f:99:2b:f4:43:2e:32:a6:50:57:27:b0:73:93:6c:
a5:6f:fd:ac:bb:87:2c:7f:cd:13:ad:f5:60:22:b7:
75:25:98:6c:ea:0a:8f:35:bd:38:27:55:a5:01:55:
a5:a9:ea:99:1d:43:fa:5b:dc:cd:fa:f6:a9:22:b2:
8a:14:48:6a:b9:7f:20:bd:00:a9:80:1d:86:3e:a7:
57:fb:3d:46:e7:a7:59:e0:87:ce:6f:b6:4c:5f:5b:
6d:c9:8f:06:7c:f9:f9:60:46:96:49:51:fc:89:95:
78:3d:03:fc:03:80:83:f7:9d:09:9f:de:04:8e:6f:
51:29:03:85:52:9f:20:a2:f1:bc:07:fc:5e:30:27:
f7:7c:d1:1f:25:e2:eb:f8:8e:cc:4b:2d:21:f9:22:
2e:77:93:09:47:b3:98:1f:59:9a:c3:ff:38:99:18:
95:b6:40:c5:0d:0c:cb:de:21:c0:04:4e:4d:45:a3:
ff:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:CB:78:84:54:BF:D2:1F:42:D9:E2:C6:81:B3:4C:2E:75:36:3E:2A
X509v3 Authority Key Identifier:
keyid:B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/68t4hFS_0h9C2eLGgbNMLnU2Pio.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.240.108.0/22
Signature Algorithm: sha256WithRSAEncryption
43:6d:9e:16:f0:93:6e:01:f5:11:cb:b9:5d:ec:2e:ce:18:14:
41:b6:7f:f2:db:4c:09:1c:05:42:19:82:11:97:f2:d5:1c:ee:
dc:98:1d:35:91:bb:99:7e:d9:d8:a9:88:a9:d8:1b:3a:3e:92:
98:34:61:c9:4d:40:b2:b9:f8:83:61:40:28:55:70:94:63:0a:
63:07:3e:be:34:66:6d:83:c5:e4:f0:11:15:7f:88:13:be:3a:
fd:eb:ee:2a:36:ae:b9:f7:f0:6a:31:0f:80:ce:c9:3f:15:e1:
1f:91:17:af:ac:9e:16:dd:4a:47:0f:04:a6:5b:c0:15:f3:8c:
52:b9:04:af:66:16:9a:d8:04:2a:ae:04:1a:71:f4:3e:09:92:
5b:fb:c9:af:8b:ce:7e:cb:0d:5e:7f:2a:f1:55:f3:0c:d4:a7:
d0:40:39:44:26:90:b1:1b:be:46:3f:8c:48:3b:a5:0f:d7:52:
97:7e:a5:23:5a:2e:ef:dd:5a:4d:d1:23:ff:b4:2c:f5:f1:5b:
77:34:41:ae:87:1e:e8:36:79:94:e3:8c:6a:80:3a:8c:c7:9b:
a3:8a:31:9f:2b:9f:c8:23:94:5d:59:f8:f0:ce:a5:b2:20:20:
26:5e:0f:68:69:e5:16:91:39:75:e4:52:8c:ad:e3:22:48:8f:
1c:16:d7:19
-----BEGIN CERTIFICATE-----
MIIE3jCCA8agAwIBAgICDNwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjJD
QTM5RDhEMTdCMTBEOTdENUE1MUUwRUEyRjlGQjFCQzQwQ0Q5MDAeFw0yNDA4MjYw
NTI3MDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEVCQ0I3ODg0NTRCRkQy
MUY0MkQ5RTJDNjgxQjM0QzJFNzUzNjNFMkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDLstcO+Tktw1QzpIefh3LhrVJagBN3njYOPz0E/r4uuFEq3/Qc
iFDtUq5gPzWWUz3gzWmxDJrqP1YNUlEvCSQfJoJKnXTn0TDuLn+ZK/RDLjKmUFcn
sHOTbKVv/ay7hyx/zROt9WAit3UlmGzqCo81vTgnVaUBVaWp6pkdQ/pb3M369qki
sooUSGq5fyC9AKmAHYY+p1f7PUbnp1ngh85vtkxfW23JjwZ8+flgRpZJUfyJlXg9
A/wDgIP3nQmf3gSOb1EpA4VSnyCi8bwH/F4wJ/d80R8l4uv4jsxLLSH5Ii53kwlH
s5gfWZrD/ziZGJW2QMUNDMveIcAETk1Fo//xAgMBAAGjggH6MIIB9jAdBgNVHQ4E
FgQU68t4hFS/0h9C2eLGgbNMLnU2PiowHwYDVR0jBBgwFoAUsso52NF7ENl9WlHg
6i+fsbxAzZAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBiBgNVHR8EWzBZMFeg
VaBThlFyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FO
TU9CSUxFL3NzbzUyTkY3RU5sOVdsSGc2aS1mc2J4QXpaQS5jcmwwYAYIKwYBBQUH
AQEEVDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtp
L1RXTklDQ0Evc3NvNTJORjdFTmw5V2xIZzZpLWZzYnhBelpBLmNlcjAOBgNVHQ8B
Af8EBAMCB4AwgaIGCCsGAQUFBwELBIGVMIGSMF0GCCsGAQUFBzALhlFyc3luYzov
L3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FOTU9CSUxFLzY4dDRo
RlNfMGg5QzJlTEdnYk5NTG5VMlBpby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8v
cnJkcC50d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAO
MAwEAgABMAYDBAIr8GwwDQYJKoZIhvcNAQELBQADggEBAENtnhbwk24B9RHLuV3s
Ls4YFEG2f/LbTAkcBUIZghGX8tUc7tyYHTWRu5l+2dipiKnYGzo+kpg0YclNQLK5
+INhQChVcJRjCmMHPr40Zm2DxeTwERV/iBO+Ov3r7io2rrn38GoxD4DOyT8V4R+R
F6+snhbdSkcPBKZbwBXzjFK5BK9mFprYBCquBBpx9D4Jklv7ya+Lzn7LDV5/KvFV
8wzUp9BAOUQmkLEbvkY/jEg7pQ/XUpd+pSNaLu/dWk3RI/+0LPXxW3c0Qa6HHug2
eZTjjGqAOozHm6OKMZ8rn8gjlF1Z+PDOpbIgICZeD2hp5RaROXXkUoyt4yJIjxwW
1xk=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:45:17 2025 by rpki-client