Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MERCYCAT/ZBU5YFQTYHZywhzvcv_vg5bTYXk.roa
File: ZBU5YFQTYHZywhzvcv_vg5bTYXk.roa (raw, json)
Hash identifier: 2Wqdnes+KXCvhVl/sU53WtjHJxpaYT7F2rQrZp2wGEQ=
Subject key identifier: 64:15:39:60:54:13:60:76:72:C2:1C:EF:72:FF:EF:83:96:D3:61:79
Certificate issuer: /CN=D2A09CE42809F4DA9D7B1C4473DDF2F436A599C4
Certificate serial: 48
Authority key identifier: D2:A0:9C:E4:28:09:F4:DA:9D:7B:1C:44:73:DD:F2:F4:36:A5:99:C4
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0qCc5CgJ9NqdexxEc93y9DalmcQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MERCYCAT/ZBU5YFQTYHZywhzvcv_vg5bTYXk.roa
Signing time: Wed 24 Nov 2021 12:18:53 +0000
ROA not before: Wed 24 Nov 2021 12:18:53 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 18428
IP address blocks: 103.172.126.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72 (0x48)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D2A09CE42809F4DA9D7B1C4473DDF2F436A599C4
Validity
Not Before: Nov 24 12:18:53 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=641539605413607672C21CEF72FFEF8396D36179
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:66:39:0c:4b:83:6f:77:43:f8:7b:70:3d:8c:
68:03:78:32:51:a9:7c:29:0e:3d:3c:b0:e6:5f:05:
d7:c6:7f:2a:73:63:ca:f6:96:53:8a:c3:28:5f:01:
16:9c:cb:3a:28:09:08:1e:fd:a5:c8:6b:6c:dc:cc:
3b:01:6a:10:17:f9:c0:28:b6:5c:59:6e:61:c6:88:
1f:0a:7a:19:90:e8:25:a3:03:b2:57:a8:ee:7b:10:
d5:bf:28:39:5c:f7:0d:05:21:98:f4:68:7b:eb:a6:
fe:50:b7:d2:ab:59:46:4a:1f:59:0b:40:87:ad:8f:
95:a5:5f:92:64:3f:59:00:9e:d1:f5:f2:84:18:12:
c4:b1:3c:d5:f5:e8:97:8a:05:29:1e:04:4f:a7:86:
02:dd:32:6d:7c:73:83:f6:b2:28:4d:4f:c4:09:23:
5c:11:d5:0c:37:5d:78:d9:a6:4e:ad:cf:f3:de:28:
5f:b7:13:98:3b:2c:40:5f:74:4b:f8:1a:75:94:bd:
89:58:4e:33:fe:d6:8b:38:1d:b8:31:09:61:d8:f4:
c6:ab:06:28:b0:4f:a8:40:41:ca:e0:b5:ef:f6:a4:
f0:e7:b2:b5:54:94:a8:dd:b5:b4:71:d6:59:f6:fc:
23:ea:66:e8:a6:e3:f1:3a:40:0e:4f:ab:26:eb:e7:
b7:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:15:39:60:54:13:60:76:72:C2:1C:EF:72:FF:EF:83:96:D3:61:79
X509v3 Authority Key Identifier:
keyid:D2:A0:9C:E4:28:09:F4:DA:9D:7B:1C:44:73:DD:F2:F4:36:A5:99:C4
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MERCYCAT/0qCc5CgJ9NqdexxEc93y9DalmcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0qCc5CgJ9NqdexxEc93y9DalmcQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MERCYCAT/ZBU5YFQTYHZywhzvcv_vg5bTYXk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.172.126.0/23
Signature Algorithm: sha256WithRSAEncryption
1e:8a:25:c6:03:ca:09:2a:c1:d6:58:9a:26:83:bf:7a:c9:a1:
fa:fc:4f:f7:f6:ff:64:3e:74:9d:64:8e:f4:f6:58:b5:12:f1:
fe:13:86:7c:3a:b5:33:e4:50:6c:74:05:15:a7:7d:ca:d4:4d:
cf:a1:18:7b:3f:43:17:03:0e:85:b8:6e:98:4c:d9:02:99:6b:
19:17:ff:e4:dd:4a:ba:49:29:7b:25:69:6d:75:db:2d:cc:d7:
34:1e:84:96:3d:a8:4d:71:3f:58:72:71:75:fc:db:d5:d8:7e:
00:25:b7:6a:6e:1f:aa:cb:c5:ff:d6:41:98:0a:65:72:d8:5d:
7d:7b:60:76:10:14:bc:49:69:bf:99:83:4c:7b:92:09:8a:c0:
c8:22:35:14:4a:1e:b9:0b:db:20:79:3c:56:78:75:5d:44:16:
90:e4:50:d9:5a:12:20:92:dd:8c:7a:a7:a0:c6:88:1e:75:41:
c4:d7:9e:24:41:c3:b7:18:3a:43:a5:02:34:40:91:52:f2:72:
e0:4d:54:aa:1f:d0:5f:b2:9c:5b:08:78:59:54:2e:fa:36:5d:
25:72:65:55:ac:2c:e5:d6:67:3a:56:66:71:12:32:d1:ba:ae:
33:3c:8c:ac:20:77:de:10:3a:98:13:0c:1c:a3:5a:e7:b7:0a:
2f:60:2a:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org