Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/gv5DHscTty1MkJKy0AANXQyrhbU.roa
File: gv5DHscTty1MkJKy0AANXQyrhbU.roa (raw, json)
Hash identifier: ZBOOtgU/U3m2rwDQSsOWAnj9xQG6BId6TdloGpacnKk=
Subject key identifier: 82:FE:43:1E:C7:13:B7:2D:4C:90:92:B2:D0:00:0D:5D:0C:AB:85:B5
Certificate issuer: /CN=896AD0B5160979FEAC50C6384CBFC162D403E78D
Certificate serial: 0952
Authority key identifier: 89:6A:D0:B5:16:09:79:FE:AC:50:C6:38:4C:BF:C1:62:D4:03:E7:8D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/iWrQtRYJef6sUMY4TL_BYtQD540.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/gv5DHscTty1MkJKy0AANXQyrhbU.roa
Signing time: Wed 29 Sep 2021 02:39:15 +0000
ROA not before: Wed 29 Sep 2021 02:39:15 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 9924
IP address blocks: 103.123.190.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2386 (0x952)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=896AD0B5160979FEAC50C6384CBFC162D403E78D
Validity
Not Before: Sep 29 02:39:15 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=82FE431EC713B72D4C9092B2D0000D5D0CAB85B5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:b4:95:f3:cb:78:d2:17:1d:05:4c:d8:38:6d:
57:a9:20:75:c4:ee:bc:b2:07:77:c7:54:4e:a9:b8:
01:8e:5e:3a:88:27:1a:5d:7f:d9:f9:1c:95:8d:13:
5f:e5:9e:27:39:73:f6:d0:2f:b3:a8:fb:fb:58:03:
b0:ba:7a:0e:e3:b4:24:a9:48:96:36:a6:7f:3a:0f:
fd:e2:d8:58:1e:d1:3a:8a:72:16:0c:1a:2c:2b:ad:
c9:c1:96:21:5a:b4:00:24:db:aa:03:b6:8d:c7:fe:
51:70:32:14:2f:e8:61:3e:5b:57:6b:e8:09:73:34:
31:aa:c8:fb:63:3a:2d:62:ce:43:85:b8:6f:cd:5c:
a7:94:45:f5:09:e1:dd:f9:3f:ef:79:d8:a7:4d:57:
18:7b:55:c7:5a:b8:0c:8b:c2:05:7e:a8:4c:ae:06:
20:9b:56:2e:96:31:e9:3b:87:9c:63:f5:8d:09:6d:
42:07:f0:2e:76:c1:0c:6a:c1:cc:ad:cc:0c:0a:ee:
6d:a2:3e:bc:3f:72:0f:c3:29:93:cf:cb:99:39:37:
de:b2:26:46:aa:17:bd:97:b6:91:7f:c7:c9:c6:33:
2b:10:3d:42:38:9c:97:33:92:eb:59:d5:53:47:1a:
ff:d1:c1:ab:b4:18:2c:0d:8d:b5:18:53:5d:1f:80:
3c:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:FE:43:1E:C7:13:B7:2D:4C:90:92:B2:D0:00:0D:5D:0C:AB:85:B5
X509v3 Authority Key Identifier:
keyid:89:6A:D0:B5:16:09:79:FE:AC:50:C6:38:4C:BF:C1:62:D4:03:E7:8D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/iWrQtRYJef6sUMY4TL_BYtQD540.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/iWrQtRYJef6sUMY4TL_BYtQD540.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/gv5DHscTty1MkJKy0AANXQyrhbU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.190.0/24
Signature Algorithm: sha256WithRSAEncryption
17:68:91:63:3d:fb:3b:03:5f:94:85:9d:3f:a4:00:2c:9b:be:
95:c7:5c:3b:71:5e:6c:96:13:39:bf:cb:1e:4e:6d:90:7b:64:
ff:ce:19:5f:48:63:9b:00:89:76:70:b7:55:7b:00:52:30:a1:
4e:45:46:2e:48:ad:fc:f4:13:89:a0:3a:d6:f8:3c:9d:03:12:
3c:1c:7c:10:c3:64:c5:ef:86:23:51:8b:69:59:5e:23:fc:09:
12:15:cf:a6:5c:96:da:8d:63:d2:0d:90:d4:42:1b:a9:95:6b:
c0:11:a3:a5:28:0b:cf:2a:11:b8:e5:fa:4d:d4:88:66:03:96:
16:f5:37:22:85:bf:cb:6e:a0:7e:97:52:99:7e:86:63:b0:2a:
c4:7d:7a:35:39:6b:e5:c3:78:dc:f3:da:b9:cd:e1:4f:e4:dd:
6a:5b:8e:70:03:fc:8e:26:d2:c7:67:b6:32:a1:08:fb:06:22:
81:24:21:c0:af:31:a9:70:17:18:21:a0:92:fd:8d:1d:56:15:
95:3f:f4:63:a8:0c:4b:c2:b7:7d:0a:69:f8:1e:ee:40:46:08:
ee:b1:a7:32:2e:ea:26:6c:f0:90:9a:35:fd:c8:96:f8:33:66:
6d:9d:1a:09:bc:83:f8:38:cc:1b:69:50:2f:bb:33:ba:95:c6:
af:20:fb:d2
-----BEGIN CERTIFICATE-----
MIIE2DCCA8CgAwIBAgICCVIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODk2
QUQwQjUxNjA5NzlGRUFDNTBDNjM4NENCRkMxNjJENDAzRTc4RDAeFw0yMTA5Mjkw
MjM5MTVaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDgyRkU0MzFFQzcxM0I3
MkQ0QzkwOTJCMkQwMDAwRDVEMENBQjg1QjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDJtJXzy3jSFx0FTNg4bVepIHXE7ryyB3fHVE6puAGOXjqIJxpd
f9n5HJWNE1/lnic5c/bQL7Oo+/tYA7C6eg7jtCSpSJY2pn86D/3i2Fge0TqKchYM
GiwrrcnBliFatAAk26oDto3H/lFwMhQv6GE+W1dr6AlzNDGqyPtjOi1izkOFuG/N
XKeURfUJ4d35P+952KdNVxh7VcdauAyLwgV+qEyuBiCbVi6WMek7h5xj9Y0JbUIH
8C52wQxqwcytzAwK7m2iPrw/cg/DKZPPy5k5N96yJkaqF72XtpF/x8nGMysQPUI4
nJczkutZ1VNHGv/Rwau0GCwNjbUYU10fgDwpAgMBAAGjggH0MIIB8DAdBgNVHQ4E
FgQUgv5DHscTty1MkJKy0AANXQyrhbUwHwYDVR0jBBgwFoAUiWrQtRYJef6sUMY4
TL/BYtQD540wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg
UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJTkFM
SUZFL2lXclF0UllKZWY2c1VNWTRUTF9CWXRRRDU0MC5jcmwwYAYIKwYBBQUHAQEE
VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX
TklDQ0EvaVdyUXRSWUplZjZzVU1ZNFRMX0JZdFFENTQwLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw
a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJTkFMSUZFL2d2NURIc2NUdHkx
TWtKS3kwQUFOWFF5cmhiVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50
d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBABne74wDQYJKoZIhvcNAQELBQADggEBABdokWM9+zsDX5SFnT+kACybvpXH
XDtxXmyWEzm/yx5ObZB7ZP/OGV9IY5sAiXZwt1V7AFIwoU5FRi5Irfz0E4mgOtb4
PJ0DEjwcfBDDZMXvhiNRi2lZXiP8CRIVz6ZcltqNY9INkNRCG6mVa8ARo6UoC88q
Ebjl+k3UiGYDlhb1NyKFv8tuoH6XUpl+hmOwKsR9ejU5a+XDeNzz2rnN4U/k3Wpb
jnAD/I4m0sdntjKhCPsGIoEkIcCvMalwFxghoJL9jR1WFZU/9GOoDEvCt30Kafge
7kBGCO6xpzIu6iZs8JCaNf3IlvgzZm2dGgm8g/g4zBtpUC+7M7qVxq8g+9I=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:57:00 2025 by rpki-client