Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/CfLOCcQy1NRcqleAUepsfvNjjq0.roa
File: CfLOCcQy1NRcqleAUepsfvNjjq0.roa (raw, json)
Hash identifier: I6QXTe6BgCjZ7Cyw1UhYLolPsAbDvd/uwVmfPzT2BBs=
Subject key identifier: 09:F2:CE:09:C4:32:D4:D4:5C:AA:57:80:51:EA:6C:7E:F3:63:8E:AD
Certificate issuer: /CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90
Certificate serial: 09A7
Authority key identifier: B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/CfLOCcQy1NRcqleAUepsfvNjjq0.roa
Signing time: Wed 29 Sep 2021 02:56:02 +0000
ROA not before: Wed 29 Sep 2021 02:56:02 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24158
IP address blocks: 124.29.160.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2471 (0x9a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90
Validity
Not Before: Sep 29 02:56:02 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=09F2CE09C432D4D45CAA578051EA6C7EF3638EAD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fd:d6:b1:b8:e0:70:67:52:31:44:1f:67:24:86:
f3:f0:95:83:d7:23:57:42:89:b0:7b:74:30:c4:d9:
29:1e:3f:d3:f5:77:6b:b0:87:b8:4d:1c:a9:69:5e:
fd:14:64:86:27:22:f8:0f:74:00:fa:e2:03:26:16:
1b:e9:3c:9a:33:77:b1:e2:bf:53:ff:66:74:c6:fb:
84:c2:90:e4:27:e1:f2:74:f8:2f:7f:a3:10:20:ec:
28:d3:da:08:33:8a:79:8e:61:59:d8:64:c5:ce:47:
ba:31:10:dc:f5:f1:de:b2:41:1a:f4:2f:ec:42:d1:
42:0c:e3:95:5a:d2:50:8a:97:27:72:ef:81:49:e2:
19:d8:c9:84:84:25:ee:1b:24:24:a8:a4:30:69:c5:
eb:60:61:91:8d:28:6b:40:4c:b2:47:95:b5:cc:26:
a2:47:e0:3b:a2:84:7b:02:4a:9c:7a:eb:03:b8:2c:
81:7e:ef:d7:4b:89:0c:4b:8f:6f:d3:e3:69:77:35:
2d:a4:09:dc:72:04:98:21:c3:89:d9:58:27:9f:ec:
07:a5:59:f8:c3:6b:e8:5b:fa:bb:42:e9:2a:5b:94:
b1:52:d4:ac:cb:2e:d3:b5:45:b5:21:9d:71:47:03:
bb:b9:68:8b:aa:82:0c:05:49:c9:5b:b2:d7:21:19:
01:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:F2:CE:09:C4:32:D4:D4:5C:AA:57:80:51:EA:6C:7E:F3:63:8E:AD
X509v3 Authority Key Identifier:
keyid:B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/CfLOCcQy1NRcqleAUepsfvNjjq0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.29.160.0/19
Signature Algorithm: sha256WithRSAEncryption
df:fc:99:a6:90:ff:69:85:03:7b:48:d3:e1:fd:6f:61:36:7e:
0c:72:6f:53:16:93:46:4c:6f:f2:60:f9:42:09:0c:33:1d:b2:
b0:85:ba:10:74:9b:46:a2:40:1e:ec:33:03:e4:a8:52:00:28:
24:c8:96:22:86:98:01:e1:17:1c:9d:cf:0f:e7:45:dd:54:81:
d2:88:df:92:f9:3d:a7:84:7e:cc:cc:76:be:af:33:c7:be:5c:
ff:07:2c:f9:74:56:d3:a9:ed:c7:8f:ed:f6:62:43:a8:ae:6e:
ac:aa:6d:fa:72:e7:81:53:48:d4:4e:c7:2a:cc:18:b8:83:b7:
5b:2d:f3:fb:b6:a7:60:7b:63:81:2e:a4:a7:6a:d7:bc:a0:f5:
97:f4:00:93:15:9d:81:62:7f:45:76:69:e1:1e:5f:a1:4c:1c:
18:ff:46:1a:03:d0:c0:e1:62:36:b3:d2:35:7c:e0:d1:31:2c:
96:c3:a2:96:2c:09:4c:06:d8:b5:ba:cc:11:01:52:cc:ab:af:
3c:27:8b:6a:b6:d3:7b:53:2f:fc:0e:5d:73:50:a2:55:e4:19:
a3:09:16:9e:d8:8c:1e:01:ba:4e:0b:0c:75:e7:54:88:d1:8f:
f6:9d:e5:d5:86:b9:96:cb:c1:9a:0d:77:f2:ee:7e:06:8b:a0:
cf:99:9a:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org