Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MERCYCAT/o28OC_G8wf0lkbvA9QkkFhaKdWw.roa
File: o28OC_G8wf0lkbvA9QkkFhaKdWw.roa (raw, json)
Hash identifier: E6RITEiICwBRiluo51Jm4Xn1DPylZJfjPuD9Gz492Ho=
Subject key identifier: A3:6F:0E:0B:F1:BC:C1:FD:25:91:BB:C0:F5:09:24:16:16:8A:75:6C
Certificate issuer: /CN=D2A09CE42809F4DA9D7B1C4473DDF2F436A599C4
Certificate serial: 010F
Authority key identifier: D2:A0:9C:E4:28:09:F4:DA:9D:7B:1C:44:73:DD:F2:F4:36:A5:99:C4
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0qCc5CgJ9NqdexxEc93y9DalmcQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MERCYCAT/o28OC_G8wf0lkbvA9QkkFhaKdWw.roa
Signing time: Thu 15 Sep 2022 02:41:58 +0000
ROA not before: Thu 15 Sep 2022 02:41:58 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 18428
IP address blocks: 103.172.126.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 271 (0x10f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D2A09CE42809F4DA9D7B1C4473DDF2F436A599C4
Validity
Not Before: Sep 15 02:41:58 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A36F0E0BF1BCC1FD2591BBC0F5092416168A756C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:b4:38:ea:16:7d:63:15:af:dc:cf:b7:ef:24:
25:85:1a:19:7e:92:8b:2b:1e:eb:53:26:81:8a:a8:
b5:2f:ac:d3:ee:43:14:e8:33:28:ce:b5:17:a6:20:
6b:40:56:0f:ef:80:7f:04:20:4c:cc:c0:b7:e6:cb:
77:b3:89:32:03:9d:00:70:7b:65:da:9b:ed:95:fb:
9f:e4:5e:d8:5b:c6:d9:b5:52:61:3c:4f:5f:40:a5:
ab:a6:23:1d:94:d0:8d:2d:06:e7:d8:d8:64:e6:12:
16:f1:d8:95:8c:e4:e7:5f:66:b7:98:1a:be:98:f7:
95:11:4f:94:6d:d2:12:4e:b5:26:3b:f2:08:e2:3c:
4b:b8:43:ce:7e:15:ea:d6:34:85:14:a0:5b:6a:83:
5a:a9:b8:d8:80:26:a7:8f:f3:b6:9e:ac:d2:4f:a5:
a4:42:a3:de:0b:f1:72:05:f3:79:a9:d7:d3:eb:0e:
dc:93:72:03:3f:c9:5e:3c:cb:30:94:f5:c9:fd:d2:
60:08:a7:5b:f7:87:8a:81:47:10:9f:9b:7a:1d:0f:
28:ee:fd:52:de:d7:7f:78:ed:3c:09:96:ea:07:ff:
79:12:fe:ac:47:3c:f0:86:cc:3a:7b:ec:ca:39:e1:
40:d8:99:8c:bc:18:cb:b6:35:3b:2c:29:c5:dc:fc:
a3:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:6F:0E:0B:F1:BC:C1:FD:25:91:BB:C0:F5:09:24:16:16:8A:75:6C
X509v3 Authority Key Identifier:
keyid:D2:A0:9C:E4:28:09:F4:DA:9D:7B:1C:44:73:DD:F2:F4:36:A5:99:C4
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MERCYCAT/0qCc5CgJ9NqdexxEc93y9DalmcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0qCc5CgJ9NqdexxEc93y9DalmcQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MERCYCAT/o28OC_G8wf0lkbvA9QkkFhaKdWw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.172.126.0/23
Signature Algorithm: sha256WithRSAEncryption
7d:6c:23:d4:e7:03:8d:d9:e2:e9:36:16:b5:33:95:c9:7a:08:
17:91:30:4e:be:02:10:cf:f6:ff:a4:e1:2a:78:90:d6:95:10:
f3:80:c7:a4:cb:a0:0f:a9:76:fd:28:8c:46:8e:30:d3:b3:80:
89:34:73:6e:3e:2f:6b:69:51:1c:71:22:af:25:8a:e3:c8:a6:
d2:69:ee:d6:31:d0:e2:f0:86:d5:01:ad:2c:51:0f:a8:d9:b7:
dd:d7:0e:ec:1e:6a:30:dd:88:7e:26:e9:3c:69:b1:fa:8c:64:
5d:36:b3:bd:2a:24:a2:6e:3e:1d:2e:5b:d4:a6:c8:a2:bc:59:
16:0b:12:3a:1c:9d:6b:db:18:1b:bf:5f:e0:df:27:30:0d:d7:
f0:43:b2:d7:78:8b:40:6e:6f:dc:62:0c:2f:11:9e:58:21:fe:
12:60:8c:5c:e5:85:f5:55:f7:54:60:dd:d4:dd:a1:e2:76:ec:
5a:d1:98:03:db:95:d1:aa:34:14:a0:e2:9f:ea:86:e0:c6:3f:
07:e9:d4:70:0f:85:13:0e:8f:c3:92:b4:e0:c7:07:6b:cf:2b:
89:ad:a0:0a:af:e4:f3:60:d9:f9:fd:c4:d0:36:56:60:5c:66:
04:95:82:13:98:48:af:7b:7b:44:af:65:5c:a2:84:3f:ec:ca:
48:6e:f1:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:11 2024 by rpki-client on console-ams.rpki-client.org