Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/CHINALIFE/0/3130332e3132332e3139302e302f32342d3234203d3e2039393234.roa
File: 3130332e3132332e3139302e302f32342d3234203d3e2039393234.roa (raw, json)
Hash identifier: MkYfWxcvdtrJJbnLts1+66GKlU7GZ8ty9L0jiRzo53o=
Subject key identifier: EB:72:DA:BD:21:9F:CC:C6:D0:17:B0:F7:43:A9:C6:EC:37:2F:2B:07
Certificate issuer: /CN=CE5A8100BA0994A2B807F5F4FB741C528EEACCDD
Certificate serial: 0732E4D456FE491C840C8ED9F83363410271CFF7
Authority key identifier: CE:5A:81:00:BA:09:94:A2:B8:07:F5:F4:FB:74:1C:52:8E:EA:CC:DD
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CE5A8100BA0994A2B807F5F4FB741C528EEACCDD.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/CHINALIFE/0/3130332e3132332e3139302e302f32342d3234203d3e2039393234.roa
Signing time: Mon 11 May 2026 17:04:13 +0000
ROA not before: Mon 11 May 2026 16:59:13 +0000
ROA not after: Mon 10 May 2027 17:04:13 +0000
asID: 9924
IP address blocks: 103.123.190.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:32:e4:d4:56:fe:49:1c:84:0c:8e:d9:f8:33:63:41:02:71:cf:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CE5A8100BA0994A2B807F5F4FB741C528EEACCDD
Validity
Not Before: May 11 16:59:13 2026 GMT
Not After : May 10 17:04:13 2027 GMT
Subject: CN=EB72DABD219FCCC6D017B0F743A9C6EC372F2B07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:eb:f9:fc:0c:d2:c9:11:68:e7:39:6c:c1:75:
a3:fa:c5:d9:44:c4:88:0e:30:78:bd:25:ba:2c:5d:
9d:c4:00:75:1b:2a:df:0e:31:a7:b7:ee:1c:5c:85:
be:5a:2c:11:4a:50:95:90:61:0e:d9:2b:6a:f2:23:
3a:9f:9c:e1:a8:35:46:00:7a:15:5f:3d:94:c4:97:
2c:b6:bc:90:07:ee:88:8a:f6:28:ce:ca:9a:08:e8:
e3:48:c1:ce:73:f2:f9:0a:55:de:5a:ba:a3:9b:26:
bc:2c:3b:bc:81:01:a2:19:cc:0c:11:14:90:fa:34:
0a:ae:68:b5:a5:7a:eb:76:6b:40:7c:b6:68:ca:03:
b9:bf:c3:e9:76:1d:3a:eb:70:e5:02:44:99:c5:36:
07:c9:6e:81:ef:f0:92:b0:df:7b:54:7f:ee:21:34:
af:58:e6:30:4b:9f:00:26:7f:52:18:84:b7:59:62:
f7:ef:a5:5a:c4:a6:65:bd:4f:b8:4d:75:94:93:79:
9d:4b:6f:e2:cb:70:8c:dc:bb:7f:b6:22:30:ad:b3:
e6:18:8b:ef:fa:a0:2b:de:e2:e4:aa:15:66:79:7a:
23:6c:4d:cf:a3:9e:14:8a:da:7d:ea:4a:bc:cf:52:
23:f7:17:dd:68:48:32:2f:6a:30:6d:22:73:df:f1:
ac:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:72:DA:BD:21:9F:CC:C6:D0:17:B0:F7:43:A9:C6:EC:37:2F:2B:07
X509v3 Authority Key Identifier:
keyid:CE:5A:81:00:BA:09:94:A2:B8:07:F5:F4:FB:74:1C:52:8E:EA:CC:DD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/CHINALIFE/0/CE5A8100BA0994A2B807F5F4FB741C528EEACCDD.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CE5A8100BA0994A2B807F5F4FB741C528EEACCDD.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CHINALIFE/0/3130332e3132332e3139302e302f32342d3234203d3e2039393234.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.123.190.0/24
Signature Algorithm: sha256WithRSAEncryption
88:dd:a0:8b:54:c3:84:4c:54:c9:37:69:55:70:bb:3b:0e:28:
7f:06:45:cd:d6:85:21:e4:5c:b3:bb:2d:f1:54:be:79:2a:26:
de:e1:5b:32:85:6b:d6:c6:2c:fb:69:9f:9d:0b:54:ed:71:f1:
c6:9c:bc:3c:ab:34:a0:99:4a:8d:8c:5c:19:60:dc:6d:bc:3d:
57:09:cd:ca:77:5c:d1:8b:81:8d:e7:f3:ee:97:0d:2a:38:47:
2f:f7:41:4b:cc:e9:d1:b1:ed:b3:0f:f0:66:99:69:b2:76:95:
4f:b4:b0:84:76:43:44:3c:c8:f2:ab:a9:20:13:34:18:09:4c:
9b:5e:a8:5a:f8:56:40:1c:e4:c2:09:47:ee:ca:6b:1d:d1:fd:
a3:b6:2e:26:64:f1:e0:04:04:a4:21:c5:50:28:db:a2:55:a9:
ff:99:05:1c:93:e5:d3:59:6b:58:e9:ba:5b:31:93:5f:53:c9:
4a:13:24:de:3d:dd:62:74:b3:8c:ad:06:45:2c:2d:95:c5:29:
44:f3:89:f8:09:df:91:f5:d3:f0:05:15:de:3f:6d:6d:92:94:
5b:50:d5:94:45:1e:07:0b:65:95:c1:eb:45:99:c3:82:ab:33:
b5:8d:ca:02:72:06:56:f1:f1:2b:f2:fd:d0:71:c2:34:b4:c6:
2d:a7:c1:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:26:43 2026 by rpki-client