Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/2m7OswomF73dPOTfC4O_UGfj-2c.roa
File: 2m7OswomF73dPOTfC4O_UGfj-2c.roa (raw, json)
Hash identifier: wIQNyeFPyR7od909gvkrd3EqcXaRWhO1zKebbQbG/Bk=
Subject key identifier: DA:6E:CE:B3:0A:26:17:BD:DD:3C:E4:DF:0B:83:BF:50:67:E3:FB:67
Certificate issuer: /CN=896AD0B5160979FEAC50C6384CBFC162D403E78D
Certificate serial: 0A3D
Authority key identifier: 89:6A:D0:B5:16:09:79:FE:AC:50:C6:38:4C:BF:C1:62:D4:03:E7:8D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/iWrQtRYJef6sUMY4TL_BYtQD540.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/2m7OswomF73dPOTfC4O_UGfj-2c.roa
Signing time: Thu 15 Sep 2022 02:39:30 +0000
ROA not before: Thu 15 Sep 2022 02:39:30 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9924
IP address blocks: 103.123.190.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2621 (0xa3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=896AD0B5160979FEAC50C6384CBFC162D403E78D
Validity
Not Before: Sep 15 02:39:30 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=DA6ECEB30A2617BDDD3CE4DF0B83BF5067E3FB67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a8:64:da:81:f5:00:9e:8f:af:ae:b2:1f:b3:
66:96:4d:3a:cb:ed:4c:16:4d:ff:f1:ff:67:33:cf:
ea:b4:6b:c3:ae:80:5d:e5:e0:85:de:d1:3e:8a:22:
0c:48:9a:3d:8a:32:12:81:29:5e:48:a1:8f:1a:5a:
3d:e7:dd:ba:79:3e:ca:3f:e2:84:8e:22:f4:7d:b0:
ec:5d:86:3d:55:0e:1f:b5:72:f2:e0:2f:49:a2:7b:
dc:83:17:b0:25:2d:f6:d4:07:3f:dd:4a:46:94:84:
43:c5:20:6c:48:af:61:34:01:b5:18:e5:de:a2:af:
f6:3e:ac:6c:ad:e2:3c:42:43:cd:5b:c9:82:b6:48:
4e:28:67:df:b7:cf:cd:4a:c8:6b:09:82:92:f2:68:
31:09:7e:e1:9e:93:32:c1:2b:20:a0:aa:34:41:d9:
d7:4c:ee:0e:d0:38:45:ca:15:99:12:d7:36:b2:e6:
f6:b3:1d:98:8f:a9:87:38:7b:2b:c6:a9:c2:69:04:
1c:7c:e1:83:9c:a4:a0:7f:24:23:43:4c:e4:f2:ae:
73:ac:f7:8e:2e:fb:9f:0c:b2:f7:c8:ce:62:fa:20:
21:d0:97:3d:11:a5:fc:5f:d8:57:9c:0d:49:dd:74:
94:de:8d:5d:d5:f9:49:a9:fb:ee:e8:3b:da:78:27:
bf:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:6E:CE:B3:0A:26:17:BD:DD:3C:E4:DF:0B:83:BF:50:67:E3:FB:67
X509v3 Authority Key Identifier:
keyid:89:6A:D0:B5:16:09:79:FE:AC:50:C6:38:4C:BF:C1:62:D4:03:E7:8D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/iWrQtRYJef6sUMY4TL_BYtQD540.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/iWrQtRYJef6sUMY4TL_BYtQD540.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/2m7OswomF73dPOTfC4O_UGfj-2c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.190.0/24
Signature Algorithm: sha256WithRSAEncryption
29:52:40:68:57:50:fb:09:4d:3b:2e:12:b9:e0:f1:8a:5b:84:
be:e7:c7:30:d6:65:f7:97:06:35:fc:d7:98:f0:6f:12:83:be:
c5:e9:4a:66:77:01:c1:a1:c6:3f:39:d2:0f:70:59:b8:44:7e:
d8:ce:43:34:c1:a9:b7:95:b3:4b:2d:32:73:e6:d4:5d:4b:f3:
8b:34:ed:73:d2:70:79:f5:89:f5:6c:8e:4c:19:02:d5:f5:e9:
fe:30:41:b8:46:3f:57:25:4c:84:c5:8b:ed:92:bb:c5:32:07:
90:88:11:d5:bf:7f:3a:23:8b:44:3a:c0:03:16:5e:3c:9b:65:
0a:6b:1c:90:ba:7f:44:34:e2:f7:e0:51:3b:2c:77:c2:04:22:
51:1e:70:a6:96:d1:3e:d7:1b:8c:6e:56:c8:6d:1b:13:9d:d0:
eb:17:da:23:6f:ae:12:ab:3a:94:20:4f:c2:e9:88:59:93:22:
7c:b1:ee:f6:d0:40:a3:80:38:3c:58:ba:fc:e2:07:36:19:9e:
7e:3c:fc:53:04:63:67:8f:8f:49:8c:0d:ac:b8:d5:04:d0:ad:
d0:20:55:44:07:96:cd:99:6a:ec:35:6e:fe:ae:cc:e3:9a:84:
66:44:62:5f:cc:9e:74:18:79:d9:3b:7d:7b:60:d6:4e:52:a6:
c9:01:2e:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:43:01 2025 by rpki-client