Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/XKd5O_OAalf5oehwMnDBH2zcyys.roa
File: XKd5O_OAalf5oehwMnDBH2zcyys.roa (raw, json)
Hash identifier: HJ3cxyfP4tKFLSgXEHkQJuVKjVHYlL4q6+udqvvEbow=
Subject key identifier: 5C:A7:79:3B:F3:80:6A:57:F9:A1:E8:70:32:70:C1:1F:6C:DC:CB:2B
Certificate issuer: /CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90
Certificate serial: 0CD1
Authority key identifier: B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/XKd5O_OAalf5oehwMnDBH2zcyys.roa
Signing time: Mon 26 Aug 2024 05:27:01 +0000
ROA not before: Mon 26 Aug 2024 05:27:01 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24157
IP address blocks: 43.255.88.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 13:58:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3281 (0xcd1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90
Validity
Not Before: Aug 26 05:27:01 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=5CA7793BF3806A57F9A1E8703270C11F6CDCCB2B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:50:a3:db:5e:4c:31:0a:51:ed:e7:13:2b:a1:
d2:91:71:de:df:b1:c9:43:47:73:e7:39:75:13:01:
4b:bc:1b:6c:75:01:99:b4:c2:b2:a6:be:53:a6:42:
cc:82:11:80:02:7f:9e:92:bd:1e:01:f2:68:ca:3c:
0a:4e:b1:db:25:b9:12:1c:47:71:ae:45:df:1c:2c:
8e:94:9d:cb:e0:4d:98:67:cf:9e:c3:82:71:aa:eb:
de:d5:d3:27:a4:24:87:a1:d6:54:16:42:03:4c:34:
eb:37:07:e9:a0:b6:5a:49:64:c8:94:f4:a2:cc:0a:
af:ab:5d:2f:b4:85:c4:6a:d2:7f:c7:3f:9c:1a:2c:
26:0a:96:72:e4:4f:11:1d:b0:98:f7:94:25:f7:92:
7f:f5:e4:64:66:44:35:ea:d5:80:96:66:60:2a:3d:
70:ac:01:d2:14:30:ca:9a:35:71:4a:8f:1a:f9:33:
01:f4:f3:86:f0:50:3a:81:a1:77:69:bf:b6:cc:20:
53:a1:6e:62:da:6d:6d:3b:f2:90:50:85:82:1e:a6:
51:02:ea:5b:2a:36:cc:3e:d4:3b:71:16:37:e7:5d:
c3:3a:92:bc:2e:4a:22:d4:e1:18:c2:e6:c0:f9:38:
9a:2b:2c:ce:a1:f1:b7:57:0e:1f:85:4d:99:3c:44:
b3:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:A7:79:3B:F3:80:6A:57:F9:A1:E8:70:32:70:C1:1F:6C:DC:CB:2B
X509v3 Authority Key Identifier:
keyid:B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/XKd5O_OAalf5oehwMnDBH2zcyys.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.255.88.0/22
Signature Algorithm: sha256WithRSAEncryption
da:53:40:8a:64:42:b8:02:25:6d:ed:f4:1b:4d:43:32:62:90:
68:bc:3b:6c:ba:f9:0b:1c:7c:5d:67:e8:13:b4:8a:03:2e:39:
ee:dd:15:fc:21:76:73:8c:8b:11:50:ad:20:78:f5:0f:c3:49:
2b:94:31:04:2c:9f:be:17:ff:70:49:40:ca:16:f7:2b:35:dc:
b4:c4:f1:f6:d8:61:78:01:19:7d:5d:ad:cb:77:7a:db:f7:5e:
8f:6a:26:f6:5e:10:6a:10:55:e6:ca:4d:5a:0d:4f:53:4a:25:
5d:ca:e7:28:15:5b:bb:d6:69:ef:40:26:36:1f:c4:04:20:47:
ce:53:31:8a:d9:e9:ae:0d:4e:1b:f3:d3:31:99:0d:11:62:48:
72:dd:e1:1d:41:0a:da:e1:72:0d:12:02:7b:74:e8:3c:63:fb:
af:49:bf:5e:a0:dc:e7:75:63:fc:dd:79:38:74:2c:0a:a0:5e:
87:a6:6f:88:0d:34:2c:bb:8c:19:cf:01:0a:57:62:65:ff:50:
dc:1c:f7:f3:cd:56:c1:20:4e:9a:86:94:40:f7:04:c3:c4:52:
f4:ed:3c:43:3c:d3:63:e3:3a:8c:2c:65:94:b4:36:9e:e3:5c:
04:ad:dd:e8:c2:ab:49:ce:79:2e:16:68:b7:18:3d:46:90:ea:
b7:9b:9c:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:37:13 2025 by rpki-client