Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MERCYCAT/DGvS4LyOlwVmq8SksWhFGT-H94g.roa
File: DGvS4LyOlwVmq8SksWhFGT-H94g.roa (raw, json)
Hash identifier: Mo2RsYvCwOx64N3MmJNLglOy8fqJa22s2mH4tF1iDA0=
Subject key identifier: 0C:6B:D2:E0:BC:8E:97:05:66:AB:C4:A4:B1:68:45:19:3F:87:F7:88
Certificate issuer: /CN=D2A09CE42809F4DA9D7B1C4473DDF2F436A599C4
Certificate serial: 14
Authority key identifier: D2:A0:9C:E4:28:09:F4:DA:9D:7B:1C:44:73:DD:F2:F4:36:A5:99:C4
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0qCc5CgJ9NqdexxEc93y9DalmcQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MERCYCAT/DGvS4LyOlwVmq8SksWhFGT-H94g.roa
Signing time: Wed 15 Sep 2021 15:26:03 +0000
ROA not before: Wed 15 Sep 2021 15:26:03 +0000
ROA not after: Tue 30 Aug 2022 03:11:34 +0000
asID: 396998
IP address blocks: 103.172.126.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20 (0x14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D2A09CE42809F4DA9D7B1C4473DDF2F436A599C4
Validity
Not Before: Sep 15 15:26:03 2021 GMT
Not After : Aug 30 03:11:34 2022 GMT
Subject: CN=0C6BD2E0BC8E970566ABC4A4B16845193F87F788
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:8f:d7:93:ff:62:ab:ff:d8:c9:fd:26:af:34:
0c:1e:f9:2b:3c:ed:b2:99:88:ec:da:bb:30:61:53:
db:b6:17:51:18:d6:45:fd:94:77:b0:65:00:ea:d7:
4b:90:d1:9a:7f:49:2c:f4:dc:05:85:96:19:79:76:
ad:a7:0e:60:fc:48:42:d2:54:53:91:bb:e9:70:9e:
4c:a9:0a:99:98:78:d4:7a:d4:9f:8c:f5:51:d5:f9:
e0:04:32:8b:e9:f5:23:4e:90:39:a0:a4:d2:9a:3f:
86:ca:e6:40:76:b7:f6:66:a7:b0:1c:16:93:ef:64:
00:a8:7d:04:61:80:3e:a0:37:7e:d3:bb:f7:ca:84:
97:33:45:83:31:b8:12:fe:aa:a0:92:f1:8a:d0:0d:
7b:10:98:bd:bc:ad:a1:50:c7:65:ab:5a:23:ff:9e:
84:4c:e9:b8:d8:11:2a:b2:6d:6b:c9:98:73:53:ff:
89:d7:9b:8f:68:2a:ff:c9:7f:0c:82:b0:bd:96:c9:
c2:33:2b:79:3f:a9:19:8d:be:bd:65:30:51:c4:b2:
2e:40:3e:82:35:d3:db:17:2d:bd:ff:e6:e3:d3:7e:
41:78:63:3f:e6:8d:2c:3c:d4:3c:6a:e2:c3:05:6f:
7c:ec:87:15:50:2e:6c:3e:aa:0e:3b:8d:08:3b:2c:
9f:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:6B:D2:E0:BC:8E:97:05:66:AB:C4:A4:B1:68:45:19:3F:87:F7:88
X509v3 Authority Key Identifier:
keyid:D2:A0:9C:E4:28:09:F4:DA:9D:7B:1C:44:73:DD:F2:F4:36:A5:99:C4
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MERCYCAT/0qCc5CgJ9NqdexxEc93y9DalmcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0qCc5CgJ9NqdexxEc93y9DalmcQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MERCYCAT/DGvS4LyOlwVmq8SksWhFGT-H94g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.172.126.0/23
Signature Algorithm: sha256WithRSAEncryption
a2:64:05:ad:93:b8:ea:5c:5b:9a:4c:2d:5a:e4:96:26:dc:be:
5e:77:ea:1a:64:af:74:dc:4b:9b:68:09:20:bd:f9:04:2a:9e:
84:bf:a2:3a:05:93:58:e0:2f:68:fc:f8:83:69:4c:1c:e1:a8:
59:09:8c:9f:e6:0e:e7:17:39:61:2d:f7:90:f2:4c:91:cb:f6:
a6:35:1d:66:3f:93:3f:18:4f:d1:b2:da:bd:62:76:60:83:ec:
5f:fd:11:08:d6:44:2d:23:f6:a6:54:93:03:44:55:4d:6e:5d:
7c:2a:ab:dc:80:ae:58:13:2f:7d:11:22:fa:25:0b:45:1f:69:
fc:3e:82:ba:86:c8:7b:75:14:49:55:56:45:2e:9b:37:e5:44:
90:3c:a6:f1:fe:7e:94:40:70:59:ff:27:54:bd:a6:e5:09:7d:
57:5b:5d:bb:31:59:e7:4a:1d:28:40:8a:09:c4:ff:a8:f3:0c:
48:93:ea:1b:fd:27:69:0e:9e:dc:00:61:fb:9a:7b:a4:7b:a0:
11:72:70:d7:4f:4c:fc:4f:84:70:dc:03:d3:f6:c6:dc:d4:13:
2b:94:91:83:63:33:aa:c1:7b:34:ed:d5:11:3b:de:e5:13:81:
06:a3:9d:12:2f:e7:de:b6:db:2c:93:7f:ce:54:e9:f9:bd:97:
51:25:c4:f9
-----BEGIN CERTIFICATE-----
MIIE1TCCA72gAwIBAgIBFDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEMkEw
OUNFNDI4MDlGNERBOUQ3QjFDNDQ3M0RERjJGNDM2QTU5OUM0MB4XDTIxMDkxNTE1
MjYwM1oXDTIyMDgzMDAzMTEzNFowMzExMC8GA1UEAxMoMEM2QkQyRTBCQzhFOTcw
NTY2QUJDNEE0QjE2ODQ1MTkzRjg3Rjc4ODCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBANeP15P/Yqv/2Mn9Jq80DB75KzztspmI7Nq7MGFT27YXURjWRf2U
d7BlAOrXS5DRmn9JLPTcBYWWGXl2racOYPxIQtJUU5G76XCeTKkKmZh41HrUn4z1
UdX54AQyi+n1I06QOaCk0po/hsrmQHa39mansBwWk+9kAKh9BGGAPqA3ftO798qE
lzNFgzG4Ev6qoJLxitANexCYvbytoVDHZataI/+ehEzpuNgRKrJta8mYc1P/ideb
j2gq/8l/DIKwvZbJwjMreT+pGY2+vWUwUcSyLkA+gjXT2xctvf/m49N+QXhjP+aN
LDzUPGriwwVvfOyHFVAubD6qDjuNCDssn10CAwEAAaOCAfIwggHuMB0GA1UdDgQW
BBQMa9LgvI6XBWarxKSxaEUZP4f3iDAfBgNVHSMEGDAWgBTSoJzkKAn02p17HERz
3fL0NqWZxDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF4GA1UdHwRXMFUwU6BR
oE+GTXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9NRVJDWUNB
VC8wcUNjNUNnSjlOcWRleHhFYzkzeTlEYWxtY1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBLzBxQ2M1Q2dKOU5xZGV4eEVjOTN5OURhbG1jUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGeBggrBgEFBQcBCwSBkTCBjjBZBggrBgEFBQcwC4ZNcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL01FUkNZQ0FUL0RHdlM0THlPbHdWbXE4
U2tzV2hGR1QtSDk0Zy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25p
Yy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAFnrH4wDQYJKoZIhvcNAQELBQADggEBAKJkBa2TuOpcW5pMLVrklibcvl536hpk
r3TcS5toCSC9+QQqnoS/ojoFk1jgL2j8+INpTBzhqFkJjJ/mDucXOWEt95DyTJHL
9qY1HWY/kz8YT9Gy2r1idmCD7F/9EQjWRC0j9qZUkwNEVU1uXXwqq9yArlgTL30R
IvolC0Ufafw+grqGyHt1FElVVkUumzflRJA8pvH+fpRAcFn/J1S9puUJfVdbXbsx
WedKHShAignE/6jzDEiT6hv9J2kOntwAYfuae6R7oBFycNdPTPxPhHDcA9P2xtzU
EyuUkYNjM6rBezTt1RE73uUTgQajnRIv59622yyTf85U6fm9l1ElxPk=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org