Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/q35FOq9EcG_QMVRTSB2aZmc1s7s.roa
File: q35FOq9EcG_QMVRTSB2aZmc1s7s.roa (raw, json)
Hash identifier: 6YjszpqOftlDnMkOUdMQWvlnGyHu0dcsW2ykodNwy28=
Subject key identifier: AB:7E:45:3A:AF:44:70:6F:D0:31:54:53:48:1D:9A:66:67:35:B3:BB
Certificate issuer: /CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90
Certificate serial: 0BA0
Authority key identifier: B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/q35FOq9EcG_QMVRTSB2aZmc1s7s.roa
Signing time: Fri 01 Sep 2023 09:58:59 +0000
ROA not before: Fri 01 Sep 2023 09:58:59 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24158
IP address blocks: 124.29.160.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2976 (0xba0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B2CA39D8D17B10D97D5A51E0EA2F9FB1BC40CD90
Validity
Not Before: Sep 1 09:58:59 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=AB7E453AAF44706FD0315453481D9A666735B3BB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:e7:03:5e:2f:56:dc:4c:11:8e:59:ae:9d:e2:
27:12:2a:fd:fa:f5:de:7c:65:ac:da:0a:e1:8a:b4:
dd:c2:4f:d9:4f:6d:a0:17:9a:6b:76:98:78:0d:23:
f2:a1:c8:47:51:f3:08:25:23:34:87:c8:f7:cd:3b:
7f:18:42:20:43:38:51:66:1f:91:0e:1b:04:c2:76:
38:e1:89:88:d4:b1:49:77:b5:56:00:1b:bf:33:a2:
f6:9e:8a:c9:ba:15:e6:fe:9b:61:b2:15:67:ce:fd:
0b:7e:f6:9e:55:a6:3b:23:ae:5d:27:65:df:97:17:
da:93:51:44:fd:49:39:eb:7e:ca:ba:f4:5d:ea:89:
c0:11:8e:7d:80:cc:1b:a4:47:2f:c6:d1:10:57:95:
3d:5e:10:dc:92:36:66:19:f8:1b:54:c1:ff:70:e4:
68:a4:c7:27:d4:b7:2c:b0:7c:e4:e7:ea:20:ba:d7:
f7:b8:53:0c:e9:b0:89:bb:39:99:37:77:dc:c2:27:
c7:f8:f4:30:68:df:9f:59:50:ea:33:4b:7f:5a:eb:
ae:37:02:8d:5b:9c:46:4f:f7:20:e0:81:f1:73:fb:
68:2b:e7:ee:2d:8f:e9:ca:ae:9a:55:b8:62:52:6b:
10:92:60:03:a6:aa:51:4e:6a:f2:9a:bd:c6:53:fc:
e8:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:7E:45:3A:AF:44:70:6F:D0:31:54:53:48:1D:9A:66:67:35:B3:BB
X509v3 Authority Key Identifier:
keyid:B2:CA:39:D8:D1:7B:10:D9:7D:5A:51:E0:EA:2F:9F:B1:BC:40:CD:90
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/sso52NF7ENl9WlHg6i-fsbxAzZA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/sso52NF7ENl9WlHg6i-fsbxAzZA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWANMOBILE/q35FOq9EcG_QMVRTSB2aZmc1s7s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.29.160.0/19
Signature Algorithm: sha256WithRSAEncryption
86:06:6a:aa:0d:24:d5:10:14:91:53:62:aa:39:b8:74:55:85:
62:da:29:d1:46:a2:83:82:ba:30:8e:18:94:23:46:45:34:68:
d9:69:09:8a:a0:c5:7d:32:b1:43:22:0b:d0:b0:df:f6:f3:e6:
0a:03:82:a5:de:46:42:b9:e1:48:b2:8a:f5:69:2b:ec:d5:1b:
b9:58:0c:e7:28:4d:2a:62:00:31:5c:f9:7c:90:c9:a5:69:fc:
1d:16:4a:f4:32:df:2f:71:6a:92:ec:cb:b9:15:a2:c6:b7:d3:
d7:af:20:26:b1:0b:e4:56:21:92:ab:43:97:66:04:78:43:18:
c9:d7:67:90:f9:3f:e0:e3:7e:ee:b8:e9:93:e0:90:39:f8:d2:
d2:23:9a:d9:04:86:8e:bc:95:22:02:ec:c5:8e:17:f7:1e:69:
6f:99:61:40:33:55:05:7e:a5:b9:ae:4d:96:5c:80:51:fa:eb:
d4:72:3d:92:ba:79:de:76:c5:90:92:fb:65:df:24:2b:4f:9b:
cc:ff:54:f5:d9:4d:66:1c:a2:e1:04:94:9f:34:c6:0e:3c:37:
57:6b:0d:8c:cf:89:7e:00:58:3f:bc:c6:0c:ad:b2:e6:d3:69:
03:77:04:85:51:78:57:8a:b3:9e:4d:9d:4b:71:be:e2:9a:88:
9b:b2:92:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:35:54 2025 by rpki-client