Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/ZQU1CXhoABuW6082feCRGi7dqLM.roa
File: ZQU1CXhoABuW6082feCRGi7dqLM.roa (raw, json)
Hash identifier: P/GH3C7zYWZMulrNEy5DYRbZ3fyGQ4V7Nnd0FlhUEUA=
Subject key identifier: 65:05:35:09:78:68:00:1B:96:EB:4F:36:7D:E0:91:1A:2E:DD:A8:B3
Certificate issuer: /CN=896AD0B5160979FEAC50C6384CBFC162D403E78D
Certificate serial: 0A3D
Authority key identifier: 89:6A:D0:B5:16:09:79:FE:AC:50:C6:38:4C:BF:C1:62:D4:03:E7:8D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/iWrQtRYJef6sUMY4TL_BYtQD540.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/ZQU1CXhoABuW6082feCRGi7dqLM.roa
Signing time: Thu 15 Sep 2022 02:39:30 +0000
ROA not before: Thu 15 Sep 2022 02:39:30 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18042
IP address blocks: 103.123.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2621 (0xa3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=896AD0B5160979FEAC50C6384CBFC162D403E78D
Validity
Not Before: Sep 15 02:39:30 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=650535097868001B96EB4F367DE0911A2EDDA8B3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:4c:cf:a8:e1:71:22:6f:7c:7d:7e:d8:bf:40:
21:43:93:5c:37:11:e0:0b:b4:4f:d0:fc:6a:8a:9d:
96:42:eb:a9:f4:d5:a3:f4:b8:ab:77:4f:ce:e1:de:
4e:49:a3:e8:1f:93:71:a9:70:4f:e5:7f:ce:9e:eb:
25:d6:2b:a6:04:51:15:64:a5:e9:c8:61:5e:f1:df:
78:5d:bf:83:33:c6:d0:b9:aa:27:f9:3f:13:9a:e1:
e0:1c:86:60:c7:64:a1:06:ac:3d:7c:15:9b:5e:5a:
b1:98:28:3c:57:85:b5:fa:a8:69:72:d1:cc:b6:eb:
80:4a:44:56:3f:a3:85:b0:14:34:72:dd:52:10:ab:
02:8e:e4:02:a1:35:d7:a6:b4:2a:0f:a0:8f:67:e4:
7b:e7:ae:2a:93:f8:9c:05:cd:f8:0a:7a:63:73:58:
ee:a0:43:65:c4:28:16:73:3b:24:2e:57:90:2f:70:
18:f3:05:47:48:14:df:eb:3e:f0:97:86:e7:f9:30:
0a:81:de:a4:c9:b1:cb:06:6c:9f:ce:4e:4e:d8:5d:
7b:5b:73:ab:d0:ee:a0:3c:e3:73:a6:4f:c2:15:0c:
f0:26:fc:07:4f:38:f4:44:8f:bc:61:8e:52:3e:56:
20:62:21:cf:24:db:f2:8c:a0:b8:48:c1:9c:4e:37:
e2:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:05:35:09:78:68:00:1B:96:EB:4F:36:7D:E0:91:1A:2E:DD:A8:B3
X509v3 Authority Key Identifier:
keyid:89:6A:D0:B5:16:09:79:FE:AC:50:C6:38:4C:BF:C1:62:D4:03:E7:8D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/iWrQtRYJef6sUMY4TL_BYtQD540.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/iWrQtRYJef6sUMY4TL_BYtQD540.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/ZQU1CXhoABuW6082feCRGi7dqLM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.188.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:3f:4e:04:a7:71:94:b0:3c:ac:68:20:ff:f1:57:76:3e:92:
f4:7f:e6:23:25:a1:5b:15:45:44:ad:3a:3d:0c:5c:1f:b6:21:
6d:5e:35:89:ca:b4:a7:97:12:59:2e:96:ad:5a:19:ac:87:8a:
b8:62:ae:3f:b4:1f:2f:94:c6:58:c1:ec:3d:cd:5f:b4:fb:69:
08:67:aa:53:d4:69:e8:47:fb:cb:67:da:80:0d:66:45:b8:88:
aa:b1:e2:12:f5:fc:d4:6d:63:dd:33:12:5c:9a:ca:d1:37:8b:
a8:5f:a9:d5:ff:90:52:de:21:a4:91:a3:e5:74:1b:72:c0:84:
32:ee:71:e6:2b:41:2b:64:38:37:4a:03:b1:c9:6a:b0:e9:b5:
64:59:72:d5:fc:b0:6c:b6:29:b4:87:3b:0e:f9:32:d2:89:11:
0d:9b:0d:34:05:5b:e9:c7:74:7c:70:4f:b3:02:41:5d:b7:6f:
04:2f:08:2e:84:e2:43:9a:e4:56:bb:40:0c:1d:6f:65:6f:f5:
ea:b5:44:54:86:6a:a1:c5:5c:2c:c9:43:03:ce:3f:99:55:83:
39:b3:e3:26:4e:79:09:60:30:ec:2c:cf:18:d3:d0:97:24:cd:
75:3d:67:2c:8f:26:47:1b:4d:9d:c1:78:c1:16:96:ba:ad:46:
24:9e:08:5d
-----BEGIN CERTIFICATE-----
MIIE2DCCA8CgAwIBAgICCj0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODk2
QUQwQjUxNjA5NzlGRUFDNTBDNjM4NENCRkMxNjJENDAzRTc4RDAeFw0yMjA5MTUw
MjM5MzBaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDY1MDUzNTA5Nzg2ODAw
MUI5NkVCNEYzNjdERTA5MTFBMkVEREE4QjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDDTM+o4XEib3x9fti/QCFDk1w3EeALtE/Q/GqKnZZC66n01aP0
uKt3T87h3k5Jo+gfk3GpcE/lf86e6yXWK6YEURVkpenIYV7x33hdv4MzxtC5qif5
PxOa4eAchmDHZKEGrD18FZteWrGYKDxXhbX6qGly0cy264BKRFY/o4WwFDRy3VIQ
qwKO5AKhNdemtCoPoI9n5HvnriqT+JwFzfgKemNzWO6gQ2XEKBZzOyQuV5AvcBjz
BUdIFN/rPvCXhuf5MAqB3qTJscsGbJ/OTk7YXXtbc6vQ7qA843OmT8IVDPAm/AdP
OPREj7xhjlI+ViBiIc8k2/KMoLhIwZxON+LVAgMBAAGjggH0MIIB8DAdBgNVHQ4E
FgQUZQU1CXhoABuW6082feCRGi7dqLMwHwYDVR0jBBgwFoAUiWrQtRYJef6sUMY4
TL/BYtQD540wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg
UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJTkFM
SUZFL2lXclF0UllKZWY2c1VNWTRUTF9CWXRRRDU0MC5jcmwwYAYIKwYBBQUHAQEE
VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX
TklDQ0EvaVdyUXRSWUplZjZzVU1ZNFRMX0JZdFFENTQwLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw
a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJTkFMSUZFL1pRVTFDWGhvQUJ1
VzYwODJmZUNSR2k3ZHFMTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50
d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBABne7wwDQYJKoZIhvcNAQELBQADggEBAKw/TgSncZSwPKxoIP/xV3Y+kvR/
5iMloVsVRUStOj0MXB+2IW1eNYnKtKeXElkulq1aGayHirhirj+0Hy+UxljB7D3N
X7T7aQhnqlPUaehH+8tn2oANZkW4iKqx4hL1/NRtY90zElyaytE3i6hfqdX/kFLe
IaSRo+V0G3LAhDLuceYrQStkODdKA7HJarDptWRZctX8sGy2KbSHOw75MtKJEQ2b
DTQFW+nHdHxwT7MCQV23bwQvCC6E4kOa5Fa7QAwdb2Vv9eq1RFSGaqHFXCzJQwPO
P5lVgzmz4yZOeQlgMOwszxjT0JckzXU9ZyyPJkcbTZ3BeMEWlrqtRiSeCF0=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:04 2024 by rpki-client on console-ams.rpki-client.org