Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/urfOm35e40vmPhM8iqKdzEqA4bM.roa
File: urfOm35e40vmPhM8iqKdzEqA4bM.roa (raw, json)
Hash identifier: Vefb7OYmllhUtx13H7FFTPc0HyS8t2ppgVew+DJ6Auk=
Subject key identifier: BA:B7:CE:9B:7E:5E:E3:4B:E6:3E:13:3C:8A:A2:9D:CC:4A:80:E1:B3
Certificate issuer: /CN=896AD0B5160979FEAC50C6384CBFC162D403E78D
Certificate serial: 08B3
Authority key identifier: 89:6A:D0:B5:16:09:79:FE:AC:50:C6:38:4C:BF:C1:62:D4:03:E7:8D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/iWrQtRYJef6sUMY4TL_BYtQD540.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/urfOm35e40vmPhM8iqKdzEqA4bM.roa
Signing time: Sun 07 Feb 2021 12:40:57 +0000
ROA not before: Sun 07 Feb 2021 12:40:57 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 18042
IP address blocks: 103.123.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2227 (0x8b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=896AD0B5160979FEAC50C6384CBFC162D403E78D
Validity
Not Before: Feb 7 12:40:57 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=BAB7CE9B7E5EE34BE63E133C8AA29DCC4A80E1B3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:65:2a:f6:cb:ad:a6:93:1f:71:e1:bc:f4:43:
00:18:a7:13:7b:e2:19:b6:0b:0d:9f:31:d3:cc:21:
12:42:9f:6f:9a:7a:5c:49:3a:16:e7:bc:96:0a:c0:
95:bd:df:e3:ca:8b:1b:78:1b:31:c2:4f:92:36:4e:
e5:75:65:81:44:27:46:00:2f:17:d8:7e:19:be:ae:
85:8d:ad:3d:b5:3e:27:f6:ed:86:f0:8d:90:cb:b8:
c6:b6:32:8e:d0:3b:58:ae:f4:44:bc:06:2d:6f:a4:
f1:b8:39:75:51:72:7e:e9:89:6f:73:98:ec:53:78:
a9:41:2d:e3:df:c1:b7:13:6a:99:ad:91:ae:68:3b:
ba:70:a6:7d:75:4e:a8:04:a5:6d:73:22:7e:51:1a:
27:f1:20:e9:66:e9:cc:5b:f1:ba:7f:66:c9:f6:92:
3c:3a:e9:f2:02:7c:5d:ad:b0:a7:c7:63:e5:c3:15:
b0:af:ac:e7:00:d3:18:76:c3:a0:03:f7:b5:c5:03:
c0:92:9c:d7:38:be:df:e9:87:29:89:38:22:b0:ef:
47:77:59:9d:c8:33:36:42:ff:ac:51:b9:bb:96:b2:
15:68:56:30:e5:ae:54:a3:21:9b:1b:af:47:7f:a6:
7d:5f:70:39:4b:38:84:8b:33:eb:d4:b5:1d:46:14:
af:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:B7:CE:9B:7E:5E:E3:4B:E6:3E:13:3C:8A:A2:9D:CC:4A:80:E1:B3
X509v3 Authority Key Identifier:
keyid:89:6A:D0:B5:16:09:79:FE:AC:50:C6:38:4C:BF:C1:62:D4:03:E7:8D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/iWrQtRYJef6sUMY4TL_BYtQD540.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/iWrQtRYJef6sUMY4TL_BYtQD540.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINALIFE/urfOm35e40vmPhM8iqKdzEqA4bM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.123.188.0/24
Signature Algorithm: sha256WithRSAEncryption
69:21:df:6d:a8:de:0c:c1:42:7a:22:90:04:c0:b9:79:03:bb:
70:d9:3a:c7:d3:06:84:b2:54:f7:44:20:80:07:16:29:19:5b:
20:6d:a4:47:e1:66:aa:33:03:9f:a4:c2:22:73:f6:16:a7:d4:
b2:3b:8d:f4:8a:d6:52:9d:fc:25:fd:68:1f:29:db:be:7b:4e:
34:c9:b8:77:27:c6:f8:d3:e4:ee:51:27:46:94:ae:3d:0e:50:
49:d1:75:94:17:d5:bc:67:ef:f4:01:e3:21:3e:7c:9d:73:74:
1a:2c:ee:52:1a:53:fe:71:d8:ec:82:ec:ec:e2:67:3f:8e:15:
ee:c3:d9:81:0e:42:8c:d6:f5:22:81:ad:57:01:fb:c8:61:a6:
07:8f:ba:9d:f9:63:09:e8:a8:86:20:35:66:63:27:7a:a4:e1:
05:c8:51:b6:c7:ea:f1:a9:a8:48:d4:b5:0c:1d:65:8c:af:4a:
c9:25:e0:24:7c:cf:32:f0:e1:9f:5e:66:2a:28:bc:2b:8f:a5:
49:ac:00:04:5b:ff:8b:60:41:3b:c1:90:6b:2f:bd:3d:ce:7e:
a3:f6:54:43:2c:6e:41:84:4c:45:99:b2:cf:38:cf:fc:c2:97:
f5:1a:54:0d:5d:35:c9:cd:a6:3b:66:a3:83:a2:97:c8:7d:74:
4f:47:a5:b6
-----BEGIN CERTIFICATE-----
MIIE2DCCA8CgAwIBAgICCLMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODk2
QUQwQjUxNjA5NzlGRUFDNTBDNjM4NENCRkMxNjJENDAzRTc4RDAeFw0yMTAyMDcx
MjQwNTdaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEJBQjdDRTlCN0U1RUUz
NEJFNjNFMTMzQzhBQTI5RENDNEE4MEUxQjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDTZSr2y62mkx9x4bz0QwAYpxN74hm2Cw2fMdPMIRJCn2+aelxJ
OhbnvJYKwJW93+PKixt4GzHCT5I2TuV1ZYFEJ0YALxfYfhm+roWNrT21Pif27Ybw
jZDLuMa2Mo7QO1iu9ES8Bi1vpPG4OXVRcn7piW9zmOxTeKlBLePfwbcTapmtka5o
O7pwpn11TqgEpW1zIn5RGifxIOlm6cxb8bp/Zsn2kjw66fICfF2tsKfHY+XDFbCv
rOcA0xh2w6AD97XFA8CSnNc4vt/phymJOCKw70d3WZ3IMzZC/6xRubuWshVoVjDl
rlSjIZsbr0d/pn1fcDlLOISLM+vUtR1GFK9dAgMBAAGjggH0MIIB8DAdBgNVHQ4E
FgQUurfOm35e40vmPhM8iqKdzEqA4bMwHwYDVR0jBBgwFoAUiWrQtRYJef6sUMY4
TL/BYtQD540wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg
UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJTkFM
SUZFL2lXclF0UllKZWY2c1VNWTRUTF9CWXRRRDU0MC5jcmwwYAYIKwYBBQUHAQEE
VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX
TklDQ0EvaVdyUXRSWUplZjZzVU1ZNFRMX0JZdFFENTQwLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw
a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJTkFMSUZFL3VyZk9tMzVlNDB2
bVBoTThpcUtkekVxQTRiTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50
d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBABne7wwDQYJKoZIhvcNAQELBQADggEBAGkh322o3gzBQnoikATAuXkDu3DZ
OsfTBoSyVPdEIIAHFikZWyBtpEfhZqozA5+kwiJz9han1LI7jfSK1lKd/CX9aB8p
2757TjTJuHcnxvjT5O5RJ0aUrj0OUEnRdZQX1bxn7/QB4yE+fJ1zdBos7lIaU/5x
2OyC7OziZz+OFe7D2YEOQozW9SKBrVcB+8hhpgePup35YwnoqIYgNWZjJ3qk4QXI
UbbH6vGpqEjUtQwdZYyvSskl4CR8zzLw4Z9eZioovCuPpUmsAARb/4tgQTvBkGsv
vT3OfqP2VEMsbkGETEWZss84z/zCl/UaVA1dNcnNpjtmo4Oil8h9dE9HpbY=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:35:13 2025 by rpki-client