Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MERCYCAT/sJma3MsZpmN-B8c8VoCPx7fBVto.roa
File: sJma3MsZpmN-B8c8VoCPx7fBVto.roa (raw, json)
Hash identifier: nvwABaKcjuKkzw11W66LkBW4lTAadMR0IlMeW3k+TQ8=
Subject key identifier: B0:99:9A:DC:CB:19:A6:63:7E:07:C7:3C:56:80:8F:C7:B7:C1:56:DA
Certificate issuer: /CN=D2A09CE42809F4DA9D7B1C4473DDF2F436A599C4
Certificate serial: 010F
Authority key identifier: D2:A0:9C:E4:28:09:F4:DA:9D:7B:1C:44:73:DD:F2:F4:36:A5:99:C4
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0qCc5CgJ9NqdexxEc93y9DalmcQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MERCYCAT/sJma3MsZpmN-B8c8VoCPx7fBVto.roa
Signing time: Thu 15 Sep 2022 02:41:58 +0000
ROA not before: Thu 15 Sep 2022 02:41:58 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 36231
IP address blocks: 103.172.126.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 271 (0x10f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D2A09CE42809F4DA9D7B1C4473DDF2F436A599C4
Validity
Not Before: Sep 15 02:41:58 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=B0999ADCCB19A6637E07C73C56808FC7B7C156DA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ae:6a:bc:36:2b:5b:d6:ff:0c:2b:2c:5d:3a:
ca:9f:4f:4e:96:43:82:90:c4:11:af:12:7e:95:77:
90:fe:12:e8:9a:44:fa:56:a0:d7:bd:82:be:d1:1e:
1c:78:92:6c:11:cb:73:0b:f6:c2:dc:94:ad:7e:60:
a9:a2:2c:62:c8:98:0c:3d:a4:b7:07:17:9e:1d:7e:
77:ed:47:65:cd:fb:64:e3:98:cf:34:70:88:b4:01:
ed:84:57:c2:66:cd:be:b6:14:0d:31:83:7e:41:83:
0d:fc:07:1a:f3:10:62:7e:bb:2c:af:3a:e2:09:4e:
55:ae:71:18:1e:d1:01:77:4f:56:4d:06:fc:c0:0b:
f6:c4:13:38:0b:1d:19:c6:bc:f6:9e:00:6a:74:4b:
0e:a1:ee:4b:96:8e:fd:0c:f5:1f:ce:13:7e:29:02:
76:5b:90:85:ad:5c:72:0b:3b:b7:6f:c4:c4:23:3a:
c8:6e:f0:ab:03:6d:62:34:db:94:6a:94:db:1d:95:
5c:8b:89:ba:8d:2d:ab:46:15:c5:e4:50:44:98:c0:
88:e1:df:8f:b5:06:62:20:e8:93:a3:96:e8:6f:bd:
dc:d4:69:cd:d7:0d:e2:41:de:a5:9a:35:c3:e6:52:
ae:f1:1a:b2:24:7b:aa:a3:74:32:40:06:6c:1f:e8:
76:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:99:9A:DC:CB:19:A6:63:7E:07:C7:3C:56:80:8F:C7:B7:C1:56:DA
X509v3 Authority Key Identifier:
keyid:D2:A0:9C:E4:28:09:F4:DA:9D:7B:1C:44:73:DD:F2:F4:36:A5:99:C4
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MERCYCAT/0qCc5CgJ9NqdexxEc93y9DalmcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0qCc5CgJ9NqdexxEc93y9DalmcQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MERCYCAT/sJma3MsZpmN-B8c8VoCPx7fBVto.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.172.126.0/23
Signature Algorithm: sha256WithRSAEncryption
a3:42:0e:66:3c:a4:04:46:54:ac:eb:78:7e:3d:0a:c4:54:fe:
29:9a:f7:5a:5e:10:e4:71:11:2b:37:ee:8b:fb:6a:b3:56:76:
96:03:26:35:1e:1d:74:87:fd:7e:40:a8:e5:b6:c8:da:64:15:
a4:ae:b8:95:3a:7e:ce:54:dd:cc:c9:82:e4:e3:ad:30:09:8f:
98:64:cf:c5:b7:8c:99:b2:e7:22:aa:b5:52:d4:99:94:5c:37:
84:9d:1b:d0:6c:72:83:ed:b4:b6:88:cd:49:35:19:81:d0:d0:
52:9b:ec:25:f1:f3:2a:b1:3b:ce:dd:47:2e:72:5c:dc:50:b1:
55:3a:2e:66:c6:c0:c4:82:ff:81:bb:d9:ab:a3:ff:e7:ab:62:
aa:75:15:aa:40:a5:24:08:aa:55:01:e7:00:b5:0d:38:7e:eb:
25:0b:1a:fe:f6:03:ef:fe:7c:d5:57:c3:99:9d:e0:71:ce:25:
33:1b:f7:c4:19:25:94:cf:6c:11:e2:74:52:e0:4d:95:1b:37:
7c:5f:ac:7c:98:00:9f:9a:11:c5:2a:ff:e5:c1:52:59:61:05:
fc:92:94:ba:33:38:d5:e0:02:79:22:cf:22:fd:79:04:6c:77:
68:81:6c:4a:61:01:b9:3b:7e:85:bd:b0:8e:d4:71:f5:1d:71:
40:2f:e6:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:22:30 2025 by rpki-client