Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MERCYCAT/gcwYHLfkXBN09gOjKoZCNZIzMAo.roa
File: gcwYHLfkXBN09gOjKoZCNZIzMAo.roa (raw, json)
Hash identifier: EI3db6aOsoh8dfZ/62S4kHI9ysTJjWo3Behp+C+OWBc=
Subject key identifier: 81:CC:18:1C:B7:E4:5C:13:74:F6:03:A3:2A:86:42:35:92:33:30:0A
Certificate issuer: /CN=D2A09CE42809F4DA9D7B1C4473DDF2F436A599C4
Certificate serial: 01A7
Authority key identifier: D2:A0:9C:E4:28:09:F4:DA:9D:7B:1C:44:73:DD:F2:F4:36:A5:99:C4
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0qCc5CgJ9NqdexxEc93y9DalmcQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MERCYCAT/gcwYHLfkXBN09gOjKoZCNZIzMAo.roa
Signing time: Mon 10 Apr 2023 07:40:10 +0000
ROA not before: Mon 10 Apr 2023 07:40:10 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18428
IP address blocks: 2407:d240::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 423 (0x1a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D2A09CE42809F4DA9D7B1C4473DDF2F436A599C4
Validity
Not Before: Apr 10 07:40:10 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=81CC181CB7E45C1374F603A32A8642359233300A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:a1:f4:42:28:57:54:87:03:98:df:2a:3e:00:
a7:9b:e1:36:4f:52:ab:9e:5e:9d:2a:67:e3:d6:7b:
3d:05:dd:46:1e:dd:48:a5:56:b0:d7:99:19:9b:41:
56:6f:8a:70:68:c2:e4:18:47:b0:05:19:4f:d4:00:
06:41:f3:e6:02:80:1b:b4:27:ff:38:5c:8c:5a:25:
f2:20:4f:90:b7:42:83:ce:54:9b:ec:15:f3:29:77:
c1:2a:bf:e6:4d:cb:90:58:b1:b8:65:71:21:61:e7:
d2:bd:d1:67:ab:9b:53:1e:32:e1:8f:b9:62:12:11:
f3:6f:93:f7:dc:75:4e:de:15:ec:d4:8a:85:76:19:
25:c6:bc:60:f1:df:34:a3:3e:f3:d3:34:0c:da:0e:
b5:08:82:f6:ad:28:07:94:0c:95:e9:7a:6f:b5:2f:
1f:e3:6a:58:e4:44:54:e8:b9:42:f9:4f:10:6e:12:
c8:c6:d4:02:61:db:e5:8a:68:c2:b3:42:df:e4:dd:
04:f2:f9:5f:ac:ec:e4:e1:da:95:d0:4c:43:27:db:
91:3b:45:07:83:2d:88:94:e4:d6:75:a0:90:a6:e4:
f0:07:85:c0:21:1a:c7:e8:25:5d:70:4f:61:e1:a9:
a0:6c:5a:3a:b6:d4:78:2f:76:10:b6:12:f2:cb:2d:
73:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:CC:18:1C:B7:E4:5C:13:74:F6:03:A3:2A:86:42:35:92:33:30:0A
X509v3 Authority Key Identifier:
keyid:D2:A0:9C:E4:28:09:F4:DA:9D:7B:1C:44:73:DD:F2:F4:36:A5:99:C4
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MERCYCAT/0qCc5CgJ9NqdexxEc93y9DalmcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0qCc5CgJ9NqdexxEc93y9DalmcQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MERCYCAT/gcwYHLfkXBN09gOjKoZCNZIzMAo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2407:d240::/32
Signature Algorithm: sha256WithRSAEncryption
61:d0:cd:53:06:ff:c0:2a:13:78:e4:27:a9:6e:72:81:ce:59:
50:0f:6e:0e:06:f2:b4:38:f1:87:40:9d:ef:4a:0c:42:6e:85:
03:cc:9f:39:2b:fe:07:c7:03:dc:31:b5:da:dd:59:f5:4d:14:
6e:14:11:41:93:cc:e8:04:88:0a:44:c7:28:f5:ba:99:23:fa:
d8:59:ed:e0:d2:81:91:bf:d1:9b:fb:58:d6:ff:b8:9b:11:f7:
8a:10:d8:ee:dd:c2:b2:03:4a:e6:3a:ce:6b:1e:3f:5d:bf:24:
5b:e7:4e:71:54:09:5b:b4:b4:0e:fb:14:8d:ec:35:bf:cd:d8:
48:c3:5e:f0:4d:28:d0:71:a5:ec:5a:d9:ee:b8:35:d2:2b:cf:
d0:e4:45:39:d4:5a:04:31:8c:cc:e4:39:c9:98:b6:38:9f:56:
66:f1:d6:1e:e1:bc:30:58:c1:84:a0:a2:68:a5:f4:0c:c9:b3:
73:66:ce:fe:a0:29:94:25:d0:89:86:95:27:02:e7:6b:13:93:
27:7d:a0:a8:6a:ef:03:38:8d:87:13:1b:e8:6e:e5:07:7f:8f:
25:ae:eb:48:cb:a7:53:22:67:1b:61:34:e7:62:88:06:f4:a0:
38:74:42:81:ab:6c:d9:de:d0:c6:ba:07:86:ff:2f:e6:ab:08:
ac:2e:b8:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org