Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/C6rdP1qIJQDNwG91qghDyJ_35hM.roa
File: C6rdP1qIJQDNwG91qghDyJ_35hM.roa (raw, json)
Hash identifier: /kvhGUIzYMbmZ/qGT6Gn6x1tZAVbpRdJ7BLed0yfs1U=
Subject key identifier: 0B:AA:DD:3F:5A:88:25:00:CD:C0:6F:75:AA:08:43:C8:9F:F7:E6:13
Certificate issuer: /CN=896AD0B5160979FEAC50C6384CBFC162D403E78D
Certificate serial: 0A3D
Authority key identifier: 89:6A:D0:B5:16:09:79:FE:AC:50:C6:38:4C:BF:C1:62:D4:03:E7:8D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/iWrQtRYJef6sUMY4TL_BYtQD540.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/C6rdP1qIJQDNwG91qghDyJ_35hM.roa
Signing time: Thu 15 Sep 2022 02:39:31 +0000
ROA not before: Thu 15 Sep 2022 02:39:31 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 9924
IP address blocks: 103.123.189.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2621 (0xa3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=896AD0B5160979FEAC50C6384CBFC162D403E78D
Validity
Not Before: Sep 15 02:39:31 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=0BAADD3F5A882500CDC06F75AA0843C89FF7E613
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:03:cb:69:9b:33:e1:88:fb:aa:e4:9b:64:b6:
d6:67:f5:e8:31:4f:ad:e9:33:82:4d:bb:77:18:a4:
79:8f:67:17:3c:55:12:05:07:20:7f:bd:7e:32:51:
41:08:fa:ac:5a:a9:76:8d:81:af:37:93:9a:2f:a5:
13:c4:61:86:82:17:2b:54:96:98:62:39:ab:3b:7b:
0e:45:c7:8e:33:66:7d:ed:75:46:2d:f9:0c:5d:aa:
e7:55:6f:77:d9:ec:bf:4f:39:40:bf:4c:3d:4e:b0:
e5:88:6c:72:ee:78:09:df:d1:23:e6:81:b9:44:3e:
ff:fc:97:25:67:c9:88:45:dd:25:bf:b6:7b:57:02:
de:b3:09:61:83:88:f1:33:45:32:64:d7:8d:35:9a:
04:90:22:8c:69:a7:67:77:6e:af:93:02:3b:f8:17:
af:30:21:08:90:0e:f0:0a:44:63:44:c2:56:29:1f:
0f:d4:b5:40:93:7f:39:e7:bb:2e:14:a8:97:63:f0:
65:d2:0e:33:e7:08:8d:a1:4d:37:39:fd:7a:32:ef:
51:36:42:ee:a0:97:82:c6:6a:5b:ce:70:2e:84:21:
32:38:b2:9d:25:3e:51:3e:80:30:a5:a2:fd:b2:eb:
75:7c:a9:c7:96:df:b2:9e:6d:6b:16:88:9e:7b:e8:
2a:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:AA:DD:3F:5A:88:25:00:CD:C0:6F:75:AA:08:43:C8:9F:F7:E6:13
X509v3 Authority Key Identifier:
keyid:89:6A:D0:B5:16:09:79:FE:AC:50:C6:38:4C:BF:C1:62:D4:03:E7:8D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/iWrQtRYJef6sUMY4TL_BYtQD540.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/iWrQtRYJef6sUMY4TL_BYtQD540.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/C6rdP1qIJQDNwG91qghDyJ_35hM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.189.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:c5:b4:13:4c:23:29:7a:42:a4:d2:b8:70:55:81:6c:26:6c:
e6:9d:b4:d4:94:11:8e:37:0a:1c:5d:6d:b2:a0:c1:c2:dc:c7:
53:f8:ab:a6:f8:36:b5:a2:ba:fc:24:e8:dd:8d:6a:98:b3:4d:
20:d5:33:11:d1:d0:e7:e7:37:07:7a:a3:70:48:3f:a7:ef:ad:
b2:4c:bf:5a:ed:1b:c8:2e:41:77:69:bf:cb:d7:bc:12:51:c0:
21:e0:c5:f2:d7:ab:a7:03:84:d4:c7:aa:b1:a7:95:fc:3d:ea:
b9:60:92:0f:d4:92:33:27:ff:6b:63:c1:b7:b3:1a:04:03:bc:
ee:23:38:f0:cb:16:30:90:71:8a:de:e1:64:f5:81:64:8e:88:
2f:99:b5:87:7c:02:f7:ba:e4:ff:c8:93:f0:f5:1d:3e:9d:a1:
ff:18:55:ac:f7:a6:26:bb:ff:f8:97:6e:50:8b:81:d6:5c:11:
de:a9:f3:48:c3:a0:32:27:0b:9c:79:ab:1e:0b:23:fc:5d:6e:
75:98:9a:04:1e:ba:7e:b2:fe:db:fa:a6:dc:19:83:d5:45:45:
71:13:2d:d0:37:87:0d:db:d6:c0:4b:15:cf:74:50:4b:77:a7:
dc:c7:b1:c5:f9:e7:1f:25:ef:79:16:8b:0c:f1:82:7d:00:5e:
f6:17:38:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:46:52 2025 by rpki-client