Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/MSOf0jEvzafoGcF6bWlJYsj7f1E.roa
File: MSOf0jEvzafoGcF6bWlJYsj7f1E.roa (raw, json)
Hash identifier: oJjFa99uyMOFEXOKCzmMbkBMzdhZpatmwDvSnopCaCs=
Subject key identifier: 31:23:9F:D2:31:2F:CD:A7:E8:19:C1:7A:6D:69:49:62:C8:FB:7F:51
Certificate issuer: /CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90
Certificate serial: 08E8
Authority key identifier: B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/MSOf0jEvzafoGcF6bWlJYsj7f1E.roa
Signing time: Sun 07 Feb 2021 11:37:03 +0000
ROA not before: Sun 07 Feb 2021 11:37:03 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 24158
IP address blocks: 43.240.108.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2280 (0x8e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90
Validity
Not Before: Feb 7 11:37:03 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=31239FD2312FCDA7E819C17A6D694962C8FB7F51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:cb:aa:e0:46:4f:7d:5c:e4:61:cc:04:f3:64:
e8:77:d7:88:6a:b5:69:47:16:87:d6:a3:95:ad:62:
d8:49:31:57:33:78:20:2a:16:42:4e:79:0d:e7:8f:
7f:4f:62:c1:fb:ea:0a:ae:29:21:57:0f:a0:af:58:
9b:fe:54:0d:a5:64:6c:1f:1d:10:33:70:ca:86:3c:
50:a0:d2:b4:2e:33:58:17:8e:6e:a7:0a:9d:e6:04:
a3:cd:2b:22:ef:33:2a:1c:da:32:c3:c8:d6:f2:b5:
ba:1e:51:73:93:1b:e0:51:41:12:59:6c:1f:c9:80:
f9:ff:50:e6:f0:f2:40:22:df:c5:a9:51:09:bb:61:
60:39:23:e7:01:b0:0d:eb:9c:72:9d:b3:72:ce:8f:
d1:a2:74:f5:0b:96:6b:b0:db:30:e9:da:b6:18:ef:
05:83:e4:bd:73:f7:79:56:26:e3:f6:55:b9:dc:3e:
0f:53:d6:ff:27:6d:eb:10:39:d3:bc:83:d3:04:1a:
5e:08:d7:22:bf:b0:b3:e3:6c:11:2b:4b:56:65:bf:
35:41:94:02:58:34:4f:03:e9:ec:23:99:97:87:7a:
cc:03:8d:aa:4a:e5:cc:f8:ac:fb:1b:3a:98:a7:d0:
10:8e:b3:81:13:a7:4d:9a:17:8d:c8:58:16:08:98:
7b:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:23:9F:D2:31:2F:CD:A7:E8:19:C1:7A:6D:69:49:62:C8:FB:7F:51
X509v3 Authority Key Identifier:
keyid:B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/MSOf0jEvzafoGcF6bWlJYsj7f1E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.240.108.0/22
Signature Algorithm: sha256WithRSAEncryption
4d:6a:15:0c:23:58:92:86:19:5c:53:9d:e6:73:f6:d4:95:29:
a3:90:ad:99:e6:12:bf:6f:90:4f:03:61:50:31:ad:9a:c1:94:
b4:95:e4:71:3f:8e:9a:4e:61:80:69:98:9a:f7:63:c6:59:5f:
cf:d0:c0:62:1e:ca:d7:71:cc:a9:c3:16:67:a2:58:68:36:c6:
53:d1:cb:77:8e:2b:20:ec:16:f7:51:c6:20:b1:21:8a:2d:b8:
10:01:71:46:53:1c:87:0a:8e:3b:2b:53:c5:10:9b:f8:ef:61:
33:00:c1:44:f0:4a:66:fc:7d:3a:f3:20:f9:c5:3d:6b:ea:48:
2c:be:3f:4b:0d:48:34:e7:14:5d:78:99:2e:2c:ec:67:b5:bb:
f7:4a:64:b2:35:0f:66:b6:61:fc:5d:73:d2:ac:d0:f5:81:87:
89:99:e7:67:9d:bb:f2:b7:4d:d0:37:c0:89:09:74:a4:a8:13:
0a:2d:61:87:b1:a9:a9:3f:9c:55:81:0b:91:e1:f2:1f:53:ee:
a9:de:4f:c2:ea:f3:4d:4c:46:45:10:4a:32:c5:91:ee:c4:99:
70:1a:91:5c:ed:f5:7b:db:5c:a1:8c:04:61:a7:04:5e:3d:2c:
7e:3b:16:9f:18:9e:ef:0f:a8:3a:66:62:94:76:32:e1:ae:f9:
13:35:9f:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:17 2023 by rpki-client on console-fra.rpki-client.org