Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/RVus98ZjkKmD3qAQLSgaHSR3syg.roa
File: RVus98ZjkKmD3qAQLSgaHSR3syg.roa (raw, json)
Hash identifier: YMiQWAupYCK/7OgT0GyaPjbaG2v5W7OGMyd+n66qpCw=
Subject key identifier: 45:5B:AC:F7:C6:63:90:A9:83:DE:A0:10:2D:28:1A:1D:24:77:B3:28
Certificate issuer: /CN=896AD0B5160979FEAC50C6384CBFC162D403E78D
Certificate serial: 0953
Authority key identifier: 89:6A:D0:B5:16:09:79:FE:AC:50:C6:38:4C:BF:C1:62:D4:03:E7:8D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/iWrQtRYJef6sUMY4TL_BYtQD540.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/RVus98ZjkKmD3qAQLSgaHSR3syg.roa
Signing time: Wed 29 Sep 2021 02:39:15 +0000
ROA not before: Wed 29 Sep 2021 02:39:15 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9924
IP address blocks: 103.123.189.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2387 (0x953)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=896AD0B5160979FEAC50C6384CBFC162D403E78D
Validity
Not Before: Sep 29 02:39:15 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=455BACF7C66390A983DEA0102D281A1D2477B328
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:27:79:f5:da:31:6d:e1:3c:8a:a4:64:2f:a1:
74:56:36:29:29:6d:21:b8:4f:51:8f:7d:b4:bd:3f:
8f:32:70:70:23:24:80:f5:cb:59:3c:c0:f0:e9:45:
c9:e9:d3:bb:4d:d7:d3:fc:57:8e:ed:a7:20:9f:e3:
8b:51:5b:a8:8a:76:4f:24:5a:7e:80:ae:78:b1:b5:
0c:90:7c:c2:6c:34:01:07:27:7e:8b:1d:94:80:e1:
8c:c0:f5:bf:cf:09:78:08:6e:c8:40:a6:65:a6:de:
43:bf:a3:87:ac:2b:7b:8e:46:3b:bf:71:a6:bf:32:
3a:e2:01:d9:5a:82:17:bc:df:0c:c1:c7:7f:95:6e:
57:26:bd:9e:52:c1:22:3e:66:fe:f3:7d:fb:69:54:
72:48:c1:e6:26:22:ef:66:0c:c5:ba:5b:3c:e3:fb:
4d:0f:d5:01:3b:7c:48:ce:19:f9:2b:da:bb:ce:c1:
08:2a:23:cc:c2:95:bc:87:e4:67:91:7e:c0:f7:e4:
75:fe:6c:e6:34:37:38:5b:69:bd:6a:52:a3:39:4d:
92:ab:1d:56:0a:e8:ed:03:9b:5e:7f:99:4a:7d:a0:
7b:52:0e:c6:de:68:b9:7f:7a:eb:19:90:cc:d8:14:
cc:8b:b9:f9:7f:6b:9e:7f:81:6b:39:33:8b:31:31:
c5:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:5B:AC:F7:C6:63:90:A9:83:DE:A0:10:2D:28:1A:1D:24:77:B3:28
X509v3 Authority Key Identifier:
keyid:89:6A:D0:B5:16:09:79:FE:AC:50:C6:38:4C:BF:C1:62:D4:03:E7:8D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/iWrQtRYJef6sUMY4TL_BYtQD540.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/iWrQtRYJef6sUMY4TL_BYtQD540.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/RVus98ZjkKmD3qAQLSgaHSR3syg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.189.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:53:30:0e:4b:25:90:e4:83:6f:da:35:99:7b:08:6c:0c:63:
99:89:fd:cd:6b:d2:de:b9:af:ea:f4:f4:fa:da:f1:1a:92:6d:
72:08:be:f9:46:2a:3c:eb:82:26:b8:3a:18:a9:19:11:5e:78:
02:29:de:56:cc:c2:e2:98:e0:9f:14:2f:35:91:eb:5d:fd:14:
1d:3f:58:e2:a4:fa:af:b0:a2:89:5f:7b:e9:b4:ac:f6:ce:2c:
f0:33:3f:37:c6:7b:e2:30:dd:f3:44:c6:0a:fa:8a:8b:34:b0:
a2:63:1f:3f:0d:f7:b4:f6:8d:c9:b4:7c:22:eb:24:ed:24:55:
94:08:78:fa:02:2a:b8:dc:3c:f0:9f:fe:9b:d3:35:c3:31:00:
d3:3b:0a:a9:8f:20:8d:ff:c3:fe:23:f4:fc:4d:24:6f:7c:17:
87:28:2d:e3:ef:7a:42:27:98:5e:f9:4b:61:35:d2:01:58:03:
40:28:cf:28:80:c7:6f:ca:5e:c3:83:7d:3a:f8:a1:cc:77:cb:
b8:fb:3c:55:68:b7:25:c8:34:1d:79:34:36:61:ff:29:fd:79:
fb:34:ca:23:8f:b0:b0:3a:84:06:6c:37:bc:ab:33:dd:f9:d2:
8b:ca:7a:ca:bb:4d:ec:95:d7:ff:90:33:3a:6c:d8:07:9b:c8:
81:7c:e6:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org