Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/gJTjQw8I0678ch7akqm8OUvCzz4.roa
File: gJTjQw8I0678ch7akqm8OUvCzz4.roa (raw, json)
Hash identifier: ugNokG3xTYzEHBJNUkJWWtxpdqKR5qkM7/PjmWtHb4s=
Subject key identifier: 80:94:E3:43:0F:08:D3:AE:FC:72:1E:DA:92:A9:BC:39:4B:C2:CF:3E
Certificate issuer: /CN=896AD0B5160979FEAC50C6384CBFC162D403E78D
Certificate serial: 0B2F
Authority key identifier: 89:6A:D0:B5:16:09:79:FE:AC:50:C6:38:4C:BF:C1:62:D4:03:E7:8D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/iWrQtRYJef6sUMY4TL_BYtQD540.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/gJTjQw8I0678ch7akqm8OUvCzz4.roa
Signing time: Fri 01 Sep 2023 08:29:48 +0000
ROA not before: Fri 01 Sep 2023 08:29:48 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9924
IP address blocks: 103.123.189.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2863 (0xb2f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=896AD0B5160979FEAC50C6384CBFC162D403E78D
Validity
Not Before: Sep 1 08:29:48 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=8094E3430F08D3AEFC721EDA92A9BC394BC2CF3E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:24:d6:74:5c:69:1f:28:b8:bb:ed:1f:7f:84:
97:aa:84:15:a4:0f:d9:e4:03:27:3b:40:7e:b1:54:
33:c5:2c:f4:37:cc:ae:9b:c8:41:d2:84:f7:f3:62:
02:56:12:5c:28:1b:43:03:cc:6e:48:db:0e:ca:73:
0c:85:1d:40:cb:83:e7:87:bf:f7:23:e7:ce:2e:a4:
47:16:e4:d9:0b:d3:0a:72:4f:2e:70:c9:68:a1:3a:
05:74:b9:ef:ac:70:3c:02:c6:30:cd:44:ae:c9:68:
0e:cc:71:7a:86:a6:95:e2:d5:63:27:85:bb:b0:9e:
d1:7a:f5:e1:4b:00:a8:b4:38:cf:ea:ff:be:41:9e:
49:f2:76:a9:9f:b3:69:48:18:38:6c:f7:1b:96:e8:
9d:9b:36:b1:06:87:e7:68:94:6f:fe:8d:07:0a:28:
3f:db:a0:a3:dc:b8:5c:42:d3:6a:da:ff:fe:82:fe:
bb:81:ec:6f:26:6d:89:ad:6b:ec:9c:e9:22:0c:21:
eb:26:08:e6:ca:9f:63:8b:ce:fb:27:13:e4:05:46:
a3:13:ad:2a:e4:c0:6e:5a:a9:e0:a9:d8:35:94:18:
9b:15:da:66:ab:69:16:64:7c:e5:15:84:c6:48:8c:
9f:08:e8:c5:cf:88:f0:24:31:d1:a5:a7:ae:03:33:
82:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:94:E3:43:0F:08:D3:AE:FC:72:1E:DA:92:A9:BC:39:4B:C2:CF:3E
X509v3 Authority Key Identifier:
keyid:89:6A:D0:B5:16:09:79:FE:AC:50:C6:38:4C:BF:C1:62:D4:03:E7:8D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/iWrQtRYJef6sUMY4TL_BYtQD540.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/iWrQtRYJef6sUMY4TL_BYtQD540.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/gJTjQw8I0678ch7akqm8OUvCzz4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.189.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:bc:2d:f6:6d:90:1e:25:cf:57:6f:4b:ee:8b:c7:a8:a4:06:
12:4f:3d:bb:1c:2d:24:39:a4:7d:d2:0d:5f:2c:3f:24:7c:b0:
12:47:2d:00:78:d3:6f:a5:a9:e9:00:69:b1:6a:cc:e9:e0:05:
39:79:0d:e6:fb:65:fe:4a:19:65:40:ff:86:8b:bd:c9:14:66:
eb:40:d4:d0:29:ea:92:4e:43:22:0f:ea:12:e2:dc:e4:db:70:
f7:4b:89:aa:dc:58:9c:5c:50:f6:82:03:7e:eb:a3:a9:c4:dd:
0b:01:ad:9f:b4:4c:30:de:dc:d7:82:ac:2b:b7:c1:f5:09:76:
33:84:56:72:2a:38:40:18:62:97:32:5b:c3:a7:69:b8:bd:a5:
8b:97:ee:10:68:f5:c3:46:2f:2c:eb:65:13:ed:4e:d1:89:75:
a1:20:32:33:71:75:fe:15:ab:dd:be:70:54:43:02:ed:da:44:
d4:d9:6a:ba:e0:c8:6c:d4:bf:d0:48:b6:ef:5a:97:10:26:f3:
96:29:80:cf:96:90:da:71:6c:98:04:fd:e5:76:a6:b3:fd:47:
16:94:d9:a1:b8:70:e7:4d:e6:7f:6a:87:a0:ac:2e:f5:8d:1e:
09:6d:32:61:20:fb:62:4a:a5:76:10:c0:d2:2e:6b:ae:80:04:
7d:95:ec:9f
-----BEGIN CERTIFICATE-----
MIIE2DCCA8CgAwIBAgICCy8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODk2
QUQwQjUxNjA5NzlGRUFDNTBDNjM4NENCRkMxNjJENDAzRTc4RDAeFw0yMzA5MDEw
ODI5NDhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDgwOTRFMzQzMEYwOEQz
QUVGQzcyMUVEQTkyQTlCQzM5NEJDMkNGM0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDQJNZ0XGkfKLi77R9/hJeqhBWkD9nkAyc7QH6xVDPFLPQ3zK6b
yEHShPfzYgJWElwoG0MDzG5I2w7KcwyFHUDLg+eHv/cj584upEcW5NkL0wpyTy5w
yWihOgV0ue+scDwCxjDNRK7JaA7McXqGppXi1WMnhbuwntF69eFLAKi0OM/q/75B
nknydqmfs2lIGDhs9xuW6J2bNrEGh+dolG/+jQcKKD/boKPcuFxC02ra//6C/ruB
7G8mbYmta+yc6SIMIesmCObKn2OLzvsnE+QFRqMTrSrkwG5aqeCp2DWUGJsV2mar
aRZkfOUVhMZIjJ8I6MXPiPAkMdGlp64DM4KfAgMBAAGjggH0MIIB8DAdBgNVHQ4E
FgQUgJTjQw8I0678ch7akqm8OUvCzz4wHwYDVR0jBBgwFoAUiWrQtRYJef6sUMY4
TL/BYtQD540wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg
UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJTkFM
SUZFL2lXclF0UllKZWY2c1VNWTRUTF9CWXRRRDU0MC5jcmwwYAYIKwYBBQUHAQEE
VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX
TklDQ0EvaVdyUXRSWUplZjZzVU1ZNFRMX0JZdFFENTQwLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw
a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJTkFMSUZFL2dKVGpRdzhJMDY3
OGNoN2FrcW04T1V2Q3p6NC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50
d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBABne70wDQYJKoZIhvcNAQELBQADggEBAB68LfZtkB4lz1dvS+6Lx6ikBhJP
PbscLSQ5pH3SDV8sPyR8sBJHLQB402+lqekAabFqzOngBTl5Deb7Zf5KGWVA/4aL
vckUZutA1NAp6pJOQyIP6hLi3OTbcPdLiarcWJxcUPaCA37ro6nE3QsBrZ+0TDDe
3NeCrCu3wfUJdjOEVnIqOEAYYpcyW8Onabi9pYuX7hBo9cNGLyzrZRPtTtGJdaEg
MjNxdf4Vq92+cFRDAu3aRNTZarrgyGzUv9BItu9alxAm85YpgM+WkNpxbJgE/eV2
prP9RxaU2aG4cOdN5n9qh6CsLvWNHgltMmEg+2JKpXYQwNIua66ABH2V7J8=
-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:11 2024 by rpki-client on console-ams.rpki-client.org