Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MERCYCAT/aRrp4emZnzLTlVNKUOxl4Jyv1F8.roa
File: aRrp4emZnzLTlVNKUOxl4Jyv1F8.roa (raw, json)
Hash identifier: 7XHeKUntH93vgRpfvflOxEM0QP5xx79JUwPoTj+d7go=
Subject key identifier: 69:1A:E9:E1:E9:99:9F:32:D3:95:53:4A:50:EC:65:E0:9C:AF:D4:5F
Certificate issuer: /CN=D2A09CE42809F4DA9D7B1C4473DDF2F436A599C4
Certificate serial: FA
Authority key identifier: D2:A0:9C:E4:28:09:F4:DA:9D:7B:1C:44:73:DD:F2:F4:36:A5:99:C4
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0qCc5CgJ9NqdexxEc93y9DalmcQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MERCYCAT/aRrp4emZnzLTlVNKUOxl4Jyv1F8.roa
Signing time: Tue 16 Aug 2022 03:09:43 +0000
ROA not before: Tue 16 Aug 2022 03:09:43 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 396998
IP address blocks: 103.172.126.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 250 (0xfa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D2A09CE42809F4DA9D7B1C4473DDF2F436A599C4
Validity
Not Before: Aug 16 03:09:43 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=691AE9E1E9999F32D395534A50EC65E09CAFD45F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:58:70:db:40:02:71:f0:03:a4:a5:16:e7:64:
03:b1:15:b8:a8:6c:9d:be:f6:f9:69:35:6d:46:66:
3b:61:2a:72:bc:06:e8:ff:6a:af:30:f1:67:d4:f2:
9a:76:9f:47:3c:0e:af:30:43:03:c0:ac:7a:a3:9c:
bd:69:be:27:ca:a4:df:36:45:94:81:76:fc:6e:e6:
b8:53:d7:e0:4f:2c:62:73:14:df:43:20:43:1e:88:
a9:5c:8e:4b:69:d7:61:99:10:de:ba:8f:7d:42:09:
a9:7d:47:ad:f5:ff:92:30:59:ba:99:bf:25:b0:f7:
49:4f:ca:88:b1:82:18:63:63:89:54:6c:e1:23:1c:
89:9c:55:83:61:75:53:74:dd:2d:59:b3:9a:85:62:
03:e5:e1:5d:dc:9b:84:03:c8:3f:cf:50:8f:e0:b2:
7c:72:c8:33:c2:d5:f4:0e:77:c3:ac:de:af:97:7e:
98:dd:df:58:b6:44:77:ee:22:dd:a2:fb:9e:85:ac:
da:3e:be:00:80:2c:0e:7b:4c:a8:01:50:a6:08:71:
6d:1a:1d:9f:5c:1a:98:6e:ab:64:f5:3f:0a:33:1d:
3a:80:f9:cb:ff:b4:10:7d:b5:c8:f9:21:23:5f:72:
02:78:58:94:ae:24:dc:bc:bc:8c:f4:1d:4f:5f:c8:
8e:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:1A:E9:E1:E9:99:9F:32:D3:95:53:4A:50:EC:65:E0:9C:AF:D4:5F
X509v3 Authority Key Identifier:
keyid:D2:A0:9C:E4:28:09:F4:DA:9D:7B:1C:44:73:DD:F2:F4:36:A5:99:C4
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MERCYCAT/0qCc5CgJ9NqdexxEc93y9DalmcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0qCc5CgJ9NqdexxEc93y9DalmcQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MERCYCAT/aRrp4emZnzLTlVNKUOxl4Jyv1F8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.172.126.0/23
Signature Algorithm: sha256WithRSAEncryption
59:d5:43:11:3e:b7:e0:16:e1:38:5a:f1:03:0e:1a:22:40:26:
cd:77:9a:ab:55:f0:ae:65:ee:11:c0:ae:b1:05:fa:c8:06:7b:
6a:15:45:f2:74:4e:9e:1d:8b:ec:21:51:5b:78:84:f8:b3:cc:
43:4a:65:b1:db:67:cc:97:f4:f7:89:3f:33:d4:18:7f:f4:01:
c2:4b:9b:db:ab:15:15:c0:17:73:2f:4f:dc:cc:4a:c1:85:73:
08:06:29:25:fa:8d:f7:c9:d5:fc:be:60:69:1f:9f:cd:8a:13:
85:6a:be:13:2b:ec:11:e0:e5:b3:55:2c:a6:c4:34:d7:64:22:
5a:fe:d4:54:81:00:74:fc:13:7e:99:8f:aa:a4:df:55:79:bc:
9a:77:fd:02:c4:ea:8a:97:7f:fc:1a:09:3e:dd:75:db:e2:d3:
a0:4f:21:b8:df:ed:eb:26:cc:6e:a1:a1:21:f4:77:ff:1f:88:
25:d6:4b:88:7a:e9:f2:d9:73:da:d3:3c:60:e0:a0:ed:df:32:
b3:60:ac:a6:df:a2:d1:ab:7c:7c:8b:57:c8:3b:ac:8d:28:50:
34:3a:62:3e:90:db:ac:4a:9a:73:ac:21:35:3a:f0:24:98:ea:
83:c5:a9:2a:6a:28:a9:9c:24:4a:03:9c:ff:8b:f3:54:2d:af:
36:f7:da:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:22:01 2025 by rpki-client