Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/IWJFzC2rlWv2aO0lhDH_4WavjF0.roa
File: IWJFzC2rlWv2aO0lhDH_4WavjF0.roa (raw, json)
Hash identifier: kOSW0C9w0VlhRiIG+9Fi45DmEOl/3uzPV2zWSmPpbgs=
Subject key identifier: 21:62:45:CC:2D:AB:95:6B:F6:68:ED:25:84:31:FF:E1:66:AF:8C:5D
Certificate issuer: /CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90
Certificate serial: 09AF
Authority key identifier: B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/IWJFzC2rlWv2aO0lhDH_4WavjF0.roa
Signing time: Wed 29 Sep 2021 02:56:03 +0000
ROA not before: Wed 29 Sep 2021 02:56:03 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24158
IP address blocks: 43.240.108.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2479 (0x9af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90
Validity
Not Before: Sep 29 02:56:03 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=216245CC2DAB956BF668ED258431FFE166AF8C5D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:71:5d:8f:6e:6e:fa:ec:04:29:27:69:8b:fc:
16:08:5b:ee:1a:bd:7f:fe:0e:09:6f:b4:68:53:c7:
ce:64:1c:bf:43:84:9c:6b:ee:d8:0f:3d:e8:d0:9e:
e8:d1:a2:3b:45:11:eb:15:62:0e:a9:4f:09:7e:c1:
89:47:96:1c:cf:4c:cc:a3:c4:26:47:8f:ce:4a:6f:
58:5d:c4:b1:7a:92:16:c0:c5:4f:61:be:b2:ad:f6:
c7:9e:0b:b9:28:89:9c:be:a8:11:65:87:b8:13:ba:
09:6c:00:c8:d5:dc:a3:46:a5:42:89:3d:35:e5:77:
7f:ba:98:c2:16:b0:22:35:dd:2d:ad:9f:f2:49:b1:
ab:9c:e5:1e:af:33:2d:2c:76:01:0b:78:41:9e:30:
6f:a1:ad:b7:74:78:ae:8c:82:b4:1b:76:0a:14:25:
97:18:89:e7:b2:c6:ad:ef:77:68:97:a3:42:bd:45:
bf:2a:a2:6d:96:3c:f4:b6:72:96:78:c0:a2:89:e1:
9f:43:56:2b:3b:1b:33:71:68:a7:88:62:a6:b8:81:
2b:28:cf:3f:be:1a:33:f5:6e:19:5a:58:d5:33:42:
59:b4:8e:4e:df:f1:6a:03:78:54:b5:78:a3:0a:dd:
0b:a0:50:dc:68:94:6f:77:36:a9:d0:e0:f4:b8:91:
c7:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:62:45:CC:2D:AB:95:6B:F6:68:ED:25:84:31:FF:E1:66:AF:8C:5D
X509v3 Authority Key Identifier:
keyid:B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/IWJFzC2rlWv2aO0lhDH_4WavjF0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.240.108.0/22
Signature Algorithm: sha256WithRSAEncryption
42:d8:19:5f:11:37:1a:e4:74:1a:eb:ba:e5:00:d0:43:56:21:
59:7c:ac:87:b1:1d:98:93:ba:50:2a:89:b8:75:65:ba:7f:4c:
26:7f:28:03:07:e6:f2:f7:c5:db:a8:03:c5:33:80:a8:5c:77:
e4:03:a2:ed:9c:f2:00:09:7b:9a:4a:3a:55:d8:15:25:9d:7f:
60:89:2d:a5:92:56:ce:6e:af:97:dd:07:16:fd:c8:e6:5a:78:
ad:44:89:6c:78:53:16:dd:f7:35:c3:47:77:aa:39:48:39:2a:
57:02:2e:3b:9b:6f:75:ae:a0:2c:af:11:df:3b:80:c4:0f:8f:
72:ba:bb:9e:c8:f6:cb:8b:fe:f1:05:87:49:3c:3d:72:e2:d3:
cb:a8:fc:66:dc:a3:65:06:63:61:b7:a7:6d:f6:6d:7f:12:33:
61:dc:09:c7:be:13:98:c5:af:ef:79:74:d2:6c:2f:9f:b0:40:
39:f7:0a:17:75:97:f1:71:85:e2:94:4e:a7:db:19:cf:74:27:
89:7f:94:b1:c6:27:41:0d:1b:38:a4:1d:1e:30:94:03:08:7d:
27:b7:55:7d:58:e6:ac:08:fc:fc:7f:dc:4e:e8:a9:32:59:e4:
16:17:76:8e:72:2d:59:68:6f:47:78:32:9c:cb:38:05:d8:90:
72:01:d7:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org