Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/_6NxWBzSyDbz0h6JhVl_V0u-y-Q.roa
File: _6NxWBzSyDbz0h6JhVl_V0u-y-Q.roa (raw, json)
Hash identifier: U/P5tzDvX1XOuGZj+1hE+PcSjPDo8xl09Ajh4RH3i7c=
Subject key identifier: FF:A3:71:58:1C:D2:C8:36:F3:D2:1E:89:85:59:7F:57:4B:BE:CB:E4
Certificate issuer: /CN=896AD0B5160979FEAC50C6384CBFC162D403E78D
Certificate serial: 0772
Authority key identifier: 89:6A:D0:B5:16:09:79:FE:AC:50:C6:38:4C:BF:C1:62:D4:03:E7:8D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/iWrQtRYJef6sUMY4TL_BYtQD540.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/_6NxWBzSyDbz0h6JhVl_V0u-y-Q.roa
Signing time: Tue 29 Sep 2020 10:02:45 +0000
ROA not before: Tue 29 Sep 2020 10:02:45 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18042
IP address blocks: 103.123.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1906 (0x772)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=896AD0B5160979FEAC50C6384CBFC162D403E78D
Validity
Not Before: Sep 29 10:02:45 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=FFA371581CD2C836F3D21E8985597F574BBECBE4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:61:19:85:64:a9:ab:ef:df:25:ff:30:a4:3b:
08:7b:40:77:ca:f8:d2:2b:56:d3:8e:cd:79:8c:6b:
f9:db:d5:9d:2e:8b:6a:ce:32:22:2b:92:ce:f9:d0:
2d:af:e4:36:e8:60:1d:d2:c1:a0:39:54:2e:33:60:
0f:05:eb:dd:37:51:50:fc:9d:76:d5:b5:a0:e2:13:
49:94:e8:67:24:bf:3a:39:cd:a7:f5:15:52:02:a4:
a5:61:6a:e7:df:97:85:32:ba:29:12:5c:7c:22:d2:
cc:db:f0:b0:ea:7b:0d:58:7f:59:fa:cc:63:e7:9e:
8e:7a:cc:b3:c1:11:76:2f:12:ae:ba:8d:99:91:ba:
81:73:d4:e9:4a:a3:02:f0:3e:0c:3e:4e:06:2f:8f:
75:90:17:b8:b0:28:dd:0f:61:1d:c5:9c:e6:80:21:
ab:eb:85:3c:83:cb:1d:a3:6a:49:0c:3d:d3:da:ee:
0a:82:8c:11:67:82:91:3f:74:7f:f9:2d:e1:18:c8:
7f:72:f6:6e:c6:0d:cd:b2:81:4d:05:e5:0c:76:67:
17:10:66:f0:9a:0d:52:b8:67:16:55:c1:b3:74:1d:
d6:29:50:26:a7:e3:3a:e7:0a:46:94:38:89:f3:e2:
f1:4b:88:be:7b:55:b5:b5:a3:21:16:f8:6d:0a:0b:
50:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:A3:71:58:1C:D2:C8:36:F3:D2:1E:89:85:59:7F:57:4B:BE:CB:E4
X509v3 Authority Key Identifier:
keyid:89:6A:D0:B5:16:09:79:FE:AC:50:C6:38:4C:BF:C1:62:D4:03:E7:8D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/iWrQtRYJef6sUMY4TL_BYtQD540.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/iWrQtRYJef6sUMY4TL_BYtQD540.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/_6NxWBzSyDbz0h6JhVl_V0u-y-Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.188.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:83:fd:60:c8:a8:25:0e:61:37:44:ca:c3:a4:69:96:d1:d7:
fe:54:11:10:7e:e3:09:fc:2f:32:84:9e:fb:b3:22:2a:5a:55:
fa:6e:c3:6c:d7:55:50:17:bf:b1:56:60:bf:07:42:9e:81:6d:
fc:af:6e:1c:fe:62:3d:1c:44:2d:5a:ad:94:9a:fd:16:73:78:
36:f0:a0:ea:45:2e:39:14:4a:f4:49:d1:00:b2:6c:79:88:92:
ff:db:03:e8:0c:48:ec:96:b6:06:a9:a8:bb:10:58:c4:c4:82:
43:c3:7e:7a:d2:ef:1d:35:dd:96:5c:30:f9:19:3c:5b:b8:d1:
43:fb:a8:f2:f1:0f:df:77:6e:bd:e5:4d:97:b4:6d:dd:c7:88:
21:2a:c3:03:79:a1:25:d4:db:d6:ea:ff:63:b0:3a:1c:53:bf:
a5:a3:0b:78:c0:c2:35:d2:05:6b:53:5b:54:61:49:e9:f7:fe:
4a:90:01:59:81:7f:c5:d3:79:6e:e1:e8:da:29:9a:a9:50:19:
b0:66:92:11:f8:53:14:25:54:21:b0:3a:ac:71:53:79:a4:26:
3d:ed:1b:24:bb:76:45:6e:34:77:2d:2c:97:40:21:be:64:fd:
30:d4:4d:45:d4:6e:aa:21:44:3a:6d:a9:03:c0:0b:10:43:05:
2b:9e:f5:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org