Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/YlVWyxg5k4AemiA08mPZoP9MYhI.roa
File: YlVWyxg5k4AemiA08mPZoP9MYhI.roa (raw, json)
Hash identifier: GXbjo0KfxCZVkzeda+KCBwP3h8fZ7kQy9tiIxe3myXw=
Subject key identifier: 62:55:56:CB:18:39:93:80:1E:9A:20:34:F2:63:D9:A0:FF:4C:62:12
Certificate issuer: /CN=896AD0B5160979FEAC50C6384CBFC162D403E78D
Certificate serial: 0C27
Authority key identifier: 89:6A:D0:B5:16:09:79:FE:AC:50:C6:38:4C:BF:C1:62:D4:03:E7:8D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/iWrQtRYJef6sUMY4TL_BYtQD540.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/YlVWyxg5k4AemiA08mPZoP9MYhI.roa
Signing time: Mon 26 Aug 2024 05:11:12 +0000
ROA not before: Mon 26 Aug 2024 05:11:12 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 9924
IP address blocks: 103.123.190.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 14:24:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3111 (0xc27)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=896AD0B5160979FEAC50C6384CBFC162D403E78D
Validity
Not Before: Aug 26 05:11:12 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=625556CB183993801E9A2034F263D9A0FF4C6212
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:4b:dc:45:7f:f2:5e:7a:91:3d:53:11:49:bf:
c9:83:79:06:13:18:f2:ac:96:7e:75:dc:7c:28:c5:
19:e8:55:99:a3:37:20:ac:73:f0:bc:bb:8c:81:8b:
24:90:b2:59:fb:6b:bd:5d:dc:9b:6a:8d:21:e8:b6:
5b:6e:63:1e:7a:ce:c3:6b:f3:1c:c8:07:d1:58:67:
06:c4:6d:f4:b5:30:c3:a7:dd:84:93:3c:58:e5:43:
8a:e7:76:b5:d8:d6:5b:8f:d6:e5:c7:22:c8:b2:37:
6e:36:6a:9b:83:20:78:b8:e3:9d:0a:c9:da:5a:81:
f4:46:4a:80:28:33:cd:61:c8:e1:5d:dc:71:c6:00:
64:94:b4:ea:f1:a1:64:89:de:2a:f2:95:bb:f4:56:
6a:0a:2d:87:bc:c3:6e:39:a1:6b:86:4a:ed:9f:d9:
08:70:e3:65:8a:bb:91:c4:ab:5a:13:d7:a0:45:08:
8c:bc:74:62:5b:23:69:dd:be:8f:43:39:e4:bc:d2:
6a:96:f9:26:29:f2:70:8d:d2:9a:c4:5c:85:fb:c7:
dc:05:ae:b3:a2:b5:12:a8:5e:eb:95:f6:93:11:86:
25:c6:3e:26:60:00:04:0c:3c:4d:75:bc:08:13:50:
5d:8d:92:fb:51:5a:0e:1f:1f:e1:dd:75:99:0b:b4:
44:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:55:56:CB:18:39:93:80:1E:9A:20:34:F2:63:D9:A0:FF:4C:62:12
X509v3 Authority Key Identifier:
keyid:89:6A:D0:B5:16:09:79:FE:AC:50:C6:38:4C:BF:C1:62:D4:03:E7:8D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/iWrQtRYJef6sUMY4TL_BYtQD540.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/iWrQtRYJef6sUMY4TL_BYtQD540.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/YlVWyxg5k4AemiA08mPZoP9MYhI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.190.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:9d:f1:05:aa:8e:1f:06:fa:4f:7d:e2:70:00:25:22:46:8d:
b9:85:b1:75:10:7a:fe:76:93:72:35:35:7e:5f:23:98:a2:f6:
3f:e6:94:7b:20:30:b6:d5:95:d9:0c:6d:3e:8a:e8:c8:e1:42:
91:a8:b1:57:23:b6:20:cd:a2:18:6f:74:3f:01:46:43:c7:8d:
8a:3f:7c:47:4b:3a:51:80:02:d9:01:0f:ab:58:70:f6:b7:ec:
4f:d1:67:80:e0:4f:dd:fb:0d:59:42:2f:99:62:f4:81:60:2f:
b0:78:8e:a3:0b:f6:f1:d1:ae:46:55:c2:81:1f:95:d6:52:12:
dc:2a:5a:e1:e1:8a:da:73:fb:95:19:81:2d:e3:67:af:65:95:
9a:79:ab:20:a0:6d:17:99:bc:13:f3:3d:af:2b:03:ee:8f:cd:
bb:cd:5c:0a:b7:1a:a9:e2:4b:b4:70:19:d4:be:e4:bf:47:87:
31:1f:ff:45:b1:f8:97:3d:d2:0c:36:12:1a:11:57:2e:1e:68:
ca:60:ec:76:64:4d:32:91:1e:9d:10:c0:a5:4a:a9:4a:65:46:
11:3a:a5:dc:af:11:a3:5e:95:a2:48:06:df:e6:83:63:d1:d2:
47:53:66:72:dc:70:53:ba:68:1a:b6:c2:bf:4d:b1:91:6a:ac:
36:da:9a:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 16:09:37 2025 by rpki-client