Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MERCYCAT/hXuROQUiAyx4-HRDOPMgGlBcJDU.roa
File: hXuROQUiAyx4-HRDOPMgGlBcJDU.roa (raw, json)
Hash identifier: VpBAN8WqzmYBEOSk8nX7g71Y2fJ0n0/bE6PvvzzMwsw=
Subject key identifier: 85:7B:91:39:05:22:03:2C:78:F8:74:43:38:F3:20:1A:50:5C:24:35
Certificate issuer: /CN=D2A09CE42809F4DA9D7B1C4473DDF2F436A599C4
Certificate serial: 018B
Authority key identifier: D2:A0:9C:E4:28:09:F4:DA:9D:7B:1C:44:73:DD:F2:F4:36:A5:99:C4
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0qCc5CgJ9NqdexxEc93y9DalmcQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MERCYCAT/hXuROQUiAyx4-HRDOPMgGlBcJDU.roa
Signing time: Thu 16 Mar 2023 15:44:37 +0000
ROA not before: Thu 16 Mar 2023 15:44:37 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 36231
IP address blocks: 103.172.127.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 395 (0x18b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D2A09CE42809F4DA9D7B1C4473DDF2F436A599C4
Validity
Not Before: Mar 16 15:44:37 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=857B91390522032C78F8744338F3201A505C2435
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:59:30:e4:81:06:08:64:ec:7b:a0:dc:cf:ac:
d4:4c:d3:0b:ee:e7:20:33:90:c4:b8:25:66:11:ec:
83:e1:d5:88:39:cb:50:cb:99:4d:fe:23:e4:f7:fa:
14:7f:46:1d:3b:04:13:6a:3d:c1:26:b4:ab:98:af:
96:9b:4a:99:54:63:14:15:bc:5b:5c:1b:67:c6:36:
d7:e0:5b:3a:48:d4:c8:94:ce:76:43:e9:bd:b1:3c:
ef:8e:aa:79:36:c5:6a:13:3d:2b:15:1b:c0:88:1f:
ef:dd:b9:75:1a:cf:e0:e9:ae:ce:18:ed:ce:4e:6d:
4c:63:5b:c2:8f:8b:9e:65:a1:64:03:3a:38:ad:72:
fd:bc:c1:69:83:c1:2c:95:ef:a1:a6:6c:63:4b:7b:
91:df:1f:d3:d2:58:0c:d9:31:0e:4b:ca:bf:ea:f3:
82:7a:f0:44:2e:9a:27:b4:31:a9:8a:5d:13:60:97:
8e:ee:72:fd:90:62:dd:dc:c2:93:23:f9:5a:23:4d:
4c:9d:6f:ec:4b:98:4b:7e:77:65:e7:da:08:f3:49:
8f:94:4a:5f:87:d7:21:c0:7b:ad:33:b7:17:5b:62:
de:ef:56:a8:26:a3:38:28:88:3b:9b:31:0a:51:7a:
b6:b8:d9:91:87:ed:42:0a:e0:3a:ed:39:a0:76:f3:
08:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:7B:91:39:05:22:03:2C:78:F8:74:43:38:F3:20:1A:50:5C:24:35
X509v3 Authority Key Identifier:
keyid:D2:A0:9C:E4:28:09:F4:DA:9D:7B:1C:44:73:DD:F2:F4:36:A5:99:C4
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MERCYCAT/0qCc5CgJ9NqdexxEc93y9DalmcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0qCc5CgJ9NqdexxEc93y9DalmcQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MERCYCAT/hXuROQUiAyx4-HRDOPMgGlBcJDU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.172.127.0/24
Signature Algorithm: sha256WithRSAEncryption
24:47:5f:07:7e:59:31:30:c0:1d:36:91:55:b8:b8:cc:87:17:
18:fd:a1:69:23:73:68:11:82:b7:2b:6c:cf:ea:65:f5:a9:34:
f5:71:31:c2:a3:38:ef:42:0b:06:3c:fa:7e:94:d3:2d:24:e6:
30:87:9f:57:92:14:e0:a8:04:3f:b6:3e:08:6a:69:87:a2:89:
1b:5e:8e:70:70:ac:57:94:05:4b:1a:98:4a:f0:81:03:d5:f9:
ca:17:c5:64:d4:83:5e:89:3d:55:3c:24:cc:55:e3:7f:83:dc:
49:0f:25:b9:63:c9:74:73:e7:57:02:a6:ca:f4:2c:e4:c9:ae:
3d:67:39:7a:76:cd:1a:da:57:e7:80:36:d9:1e:75:c6:e6:48:
dc:e4:b1:22:9a:1f:48:e3:61:44:d1:70:a4:c4:75:7a:87:cc:
75:93:c5:4d:53:9b:b4:bd:c2:b3:a9:77:82:17:56:90:ae:37:
1e:0b:13:6e:10:0e:a5:a9:b1:47:79:fd:41:62:e6:ca:09:ac:
c5:91:ad:08:5d:cc:a3:37:db:2d:38:e4:8b:6c:06:a2:69:ea:
b1:bb:a6:b2:d9:c3:87:47:b9:c3:00:09:bc:a2:8e:c6:09:ef:
8f:a7:23:52:84:88:fd:fa:39:a3:5d:45:2c:5a:91:6c:9a:5f:
ec:74:a8:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:11 2024 by rpki-client on console-ams.rpki-client.org