Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/cozwhMMu7pHipfUKYfVTwtvlJd4.roa
File: cozwhMMu7pHipfUKYfVTwtvlJd4.roa (raw, json)
Hash identifier: p91yM5JzaLqkuJvMrKy8O5mTQNC/h3gNlIGtmbwl4rs=
Subject key identifier: 72:8C:F0:84:C3:2E:EE:91:E2:A5:F5:0A:61:F5:53:C2:DB:E5:25:DE
Certificate issuer: /CN=896AD0B5160979FEAC50C6384CBFC162D403E78D
Certificate serial: 0770
Authority key identifier: 89:6A:D0:B5:16:09:79:FE:AC:50:C6:38:4C:BF:C1:62:D4:03:E7:8D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/iWrQtRYJef6sUMY4TL_BYtQD540.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/cozwhMMu7pHipfUKYfVTwtvlJd4.roa
Signing time: Tue 29 Sep 2020 10:02:44 +0000
ROA not before: Tue 29 Sep 2020 10:02:44 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 103.123.190.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1904 (0x770)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=896AD0B5160979FEAC50C6384CBFC162D403E78D
Validity
Not Before: Sep 29 10:02:44 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=728CF084C32EEE91E2A5F50A61F553C2DBE525DE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:ba:94:e6:7e:a8:a6:57:f8:61:83:dd:7c:41:
2e:34:0c:6b:54:66:3e:98:bb:59:50:35:66:70:43:
68:ba:bb:c8:22:fd:a6:02:2d:af:1c:ed:48:39:d8:
d6:e1:f7:b1:b5:56:c7:73:4e:e4:6c:bd:29:f0:e6:
27:71:19:c4:bd:74:97:57:5c:6a:2f:fa:18:1d:10:
30:2a:b5:50:4b:54:05:88:e3:f0:ed:4a:75:85:df:
f4:10:81:12:95:16:ba:0a:e0:11:6f:e4:f6:bb:2c:
0c:c3:53:13:25:f8:1a:c9:59:4a:05:60:7c:2b:92:
74:af:01:71:79:31:dc:c5:f8:2d:02:f0:99:43:4b:
b7:ca:5b:c9:5b:48:05:3b:fd:59:fa:9f:78:c1:21:
0f:19:da:63:2a:7e:89:70:12:d7:72:84:db:9f:97:
98:aa:8b:8b:b1:16:f0:ee:6c:c3:ce:80:1b:8b:4a:
5c:48:f9:d1:db:4b:40:32:c0:6b:5e:18:d8:56:47:
57:4e:f4:b2:76:d9:8d:8f:f1:78:88:1f:f2:da:52:
1f:b7:db:b8:ae:bc:dc:ee:d4:29:a5:87:d6:58:0b:
34:72:87:cc:a6:bf:df:5a:d7:31:ec:eb:cd:1e:6e:
29:74:70:d4:bf:bd:15:7c:5f:cd:a5:19:32:26:fd:
b9:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:8C:F0:84:C3:2E:EE:91:E2:A5:F5:0A:61:F5:53:C2:DB:E5:25:DE
X509v3 Authority Key Identifier:
keyid:89:6A:D0:B5:16:09:79:FE:AC:50:C6:38:4C:BF:C1:62:D4:03:E7:8D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/iWrQtRYJef6sUMY4TL_BYtQD540.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/iWrQtRYJef6sUMY4TL_BYtQD540.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/cozwhMMu7pHipfUKYfVTwtvlJd4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.190.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:b5:9e:f5:7e:bc:50:c5:27:33:52:54:8a:7e:93:8b:7b:64:
6b:50:63:79:b9:cd:fe:32:18:97:66:af:f6:fd:ba:ff:de:db:
f9:34:3b:e3:d1:5b:f8:f4:2f:85:e4:31:7d:d7:05:57:98:57:
c7:33:20:e5:78:a8:3e:e5:12:8a:8f:d9:4a:9c:e2:18:35:2a:
a0:f6:b6:55:5f:3f:fb:06:9f:2b:1f:a7:0a:43:9c:bd:b8:80:
ff:bb:a2:9b:17:a9:46:cf:54:a7:18:41:0f:48:96:d9:57:fa:
93:36:ab:39:2b:f5:c4:d3:6c:77:c8:7d:f3:5e:0a:9f:51:7d:
04:27:16:72:ed:e0:55:e4:d1:d6:a0:fa:eb:fc:54:3d:1f:e1:
06:11:be:12:eb:d9:5d:97:7b:6a:a0:d1:cf:ac:20:b3:98:fc:
3c:e8:d5:a2:26:c5:34:49:c0:e0:b4:97:47:3b:a9:41:1d:1c:
95:cb:65:d4:73:b1:ae:a4:ce:2c:e8:99:69:fd:3d:0d:2e:3e:
6e:0a:d1:58:70:59:08:3a:88:61:2e:06:73:0e:ec:b4:01:35:
65:0d:8e:09:86:41:3a:8c:cb:1e:bd:39:80:ec:22:6c:0e:51:
75:aa:46:58:44:de:80:3b:4a:c0:66:b0:19:b1:1e:42:d8:53:
b0:21:a3:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org