Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MERCYCAT/nJkOiNCmpdNktZ3wbAJhvNTCrfE.roa
File: nJkOiNCmpdNktZ3wbAJhvNTCrfE.roa (raw, json)
Hash identifier: Sb6JqkB68kvqcFED4SxHWbz10IApd/kvneq3y3i8LfY=
Subject key identifier: 9C:99:0E:88:D0:A6:A5:D3:64:B5:9D:F0:6C:02:61:BC:D4:C2:AD:F1
Certificate issuer: /CN=D2A09CE42809F4DA9D7B1C4473DDF2F436A599C4
Certificate serial: 01A3
Authority key identifier: D2:A0:9C:E4:28:09:F4:DA:9D:7B:1C:44:73:DD:F2:F4:36:A5:99:C4
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0qCc5CgJ9NqdexxEc93y9DalmcQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MERCYCAT/nJkOiNCmpdNktZ3wbAJhvNTCrfE.roa
Signing time: Mon 10 Apr 2023 07:39:24 +0000
ROA not before: Mon 10 Apr 2023 07:39:24 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18428
IP address blocks: 103.172.126.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 419 (0x1a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D2A09CE42809F4DA9D7B1C4473DDF2F436A599C4
Validity
Not Before: Apr 10 07:39:24 2023 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=9C990E88D0A6A5D364B59DF06C0261BCD4C2ADF1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:f5:9b:c5:b9:b0:10:1e:a6:bf:28:eb:4f:4e:
b1:9a:07:22:06:5c:fb:b6:26:1f:15:31:fb:00:f7:
94:4f:e2:ba:dc:92:60:9f:62:65:ee:6e:3d:ab:d6:
eb:ff:61:e5:9c:b8:f1:89:77:22:ac:8b:aa:79:88:
a4:ba:bd:65:a0:18:fd:82:e0:47:d9:44:1a:d6:6e:
b6:5a:57:08:24:f8:4a:93:b9:98:51:22:55:f0:b2:
7c:7f:4b:02:74:d5:00:4f:37:76:e6:4a:ea:ad:f8:
25:e1:b1:9b:74:23:72:02:13:9b:73:1b:92:8a:e0:
88:6e:ce:a3:82:a6:61:1c:16:40:ea:4f:3a:d9:64:
73:a2:b2:9f:cf:c9:56:bd:c6:4b:64:86:7a:7c:64:
ea:d0:02:93:c7:13:b1:df:b3:b5:89:7c:2c:30:8d:
23:9d:1e:52:7b:40:17:ba:33:a5:f0:af:85:a0:0a:
29:49:36:20:7b:c4:a0:a0:ea:05:c7:4f:ea:03:fc:
a9:77:05:dc:38:9c:1d:8a:0f:84:72:83:4a:f8:7a:
38:38:3e:27:d1:b1:7f:53:ed:04:09:06:da:f1:8e:
0e:78:12:58:93:b0:da:81:4a:0d:a7:71:07:76:6f:
c1:99:45:13:a1:fb:b3:d4:8a:53:0e:9a:d6:f5:5c:
af:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:99:0E:88:D0:A6:A5:D3:64:B5:9D:F0:6C:02:61:BC:D4:C2:AD:F1
X509v3 Authority Key Identifier:
keyid:D2:A0:9C:E4:28:09:F4:DA:9D:7B:1C:44:73:DD:F2:F4:36:A5:99:C4
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MERCYCAT/0qCc5CgJ9NqdexxEc93y9DalmcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0qCc5CgJ9NqdexxEc93y9DalmcQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MERCYCAT/nJkOiNCmpdNktZ3wbAJhvNTCrfE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.172.126.0/23
Signature Algorithm: sha256WithRSAEncryption
22:9e:fc:77:14:9b:20:71:bc:c1:e0:93:82:85:de:c6:7c:6b:
b4:1d:27:7b:0e:73:5e:8f:69:11:97:a5:c8:a4:46:31:58:18:
fd:eb:5f:3d:9b:0e:74:cb:bc:68:db:b4:e2:cb:c9:63:c9:73:
d9:1e:dc:9b:b1:7e:98:be:55:bc:b1:15:8c:66:e5:f2:a0:dc:
c5:88:4c:45:47:50:37:e5:4a:b9:62:cd:ae:9a:2d:7f:ac:c0:
b9:a1:86:5f:c1:d7:73:ae:60:a7:b8:80:6f:bc:95:fb:e5:5c:
a0:1c:f1:7d:bf:2c:95:41:82:30:9d:8b:b1:f7:0e:7e:4d:72:
66:00:a3:d8:a3:97:76:d4:17:07:cb:3b:af:96:78:fe:04:d6:
c1:30:f4:97:e9:62:62:79:74:26:fd:43:3f:26:67:1a:0e:50:
42:ce:36:ba:26:31:20:b9:9f:58:15:f3:da:36:bf:26:82:7f:
a6:47:00:d4:72:5d:08:67:64:f5:81:b3:5c:bd:98:e2:99:c0:
35:5b:f8:0e:b6:7f:2c:c2:aa:01:05:f7:f5:b7:5e:48:31:5f:
e4:92:50:74:a6:b2:3c:f0:64:51:7e:de:98:28:0b:db:fe:97:
56:06:0e:ef:0b:f7:5a:3c:5d:77:31:54:6f:4a:de:72:7e:26:
26:8f:7b:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:11 2024 by rpki-client on console-ams.rpki-client.org