Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/0dxmyQPKsAznZ5X7QlzYZs90XGk.roa
File: 0dxmyQPKsAznZ5X7QlzYZs90XGk.roa (raw, json)
Hash identifier: Ow33TB16BECDApapcArTjLP0N35Gcjk5n8iI5CyuZkA=
Subject key identifier: D1:DC:66:C9:03:CA:B0:0C:E7:67:95:FB:42:5C:D8:66:CF:74:5C:69
Certificate issuer: /CN=802BA6123EA123F439DA91CA3DE5A5AE0AA41378
Certificate serial: 0951
Authority key identifier: 80:2B:A6:12:3E:A1:23:F4:39:DA:91:CA:3D:E5:A5:AE:0A:A4:13:78
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gCumEj6hI_Q52pHKPeWlrgqkE3g.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/0dxmyQPKsAznZ5X7QlzYZs90XGk.roa
Signing time: Wed 29 Sep 2021 02:42:24 +0000
ROA not before: Wed 29 Sep 2021 02:42:24 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 47582
IP address blocks: 103.100.124.0/22 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2385 (0x951)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=802BA6123EA123F439DA91CA3DE5A5AE0AA41378
Validity
Not Before: Sep 29 02:42:24 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D1DC66C903CAB00CE76795FB425CD866CF745C69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:14:65:99:9d:64:c9:08:4b:81:e0:90:9a:26:
7a:c9:dc:32:8c:5c:f9:b0:20:97:ae:f7:0c:12:bb:
f4:d6:86:ae:f9:bd:0e:cf:b8:e6:76:af:cf:57:f9:
6a:88:11:13:4f:ba:1e:cf:16:cb:6a:f8:5a:f3:5a:
b6:e1:55:3d:79:25:fe:50:03:4c:94:44:81:52:e8:
e2:57:4e:32:96:79:c3:bd:95:85:e3:0e:34:d1:57:
95:dc:9d:44:c7:7e:b7:de:81:26:f9:c0:d2:f0:7a:
7a:8b:54:a8:23:9d:a0:8e:93:e9:e7:d5:ad:a4:8c:
0f:a3:5b:db:c8:18:99:f0:49:9f:6f:28:c8:e5:cf:
3d:b5:0f:54:bc:3c:49:2d:81:cb:8c:ac:2c:64:8c:
cf:c4:20:45:2a:ea:a0:4e:14:3e:71:78:eb:03:bc:
f8:24:b5:06:31:73:1f:ce:0d:5d:2d:36:cd:36:59:
0c:c6:4d:da:24:3b:51:4f:eb:ac:fc:b4:31:62:04:
1b:33:f2:64:6c:dc:37:07:81:9c:e4:27:b9:85:d2:
b9:6a:b2:f6:67:1e:f0:90:13:01:ef:b1:49:05:a8:
e1:2f:91:1a:05:87:60:e4:b5:91:93:5c:de:48:bf:
10:14:5b:73:10:b1:07:ac:ff:56:56:56:25:91:42:
2d:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:DC:66:C9:03:CA:B0:0C:E7:67:95:FB:42:5C:D8:66:CF:74:5C:69
X509v3 Authority Key Identifier:
keyid:80:2B:A6:12:3E:A1:23:F4:39:DA:91:CA:3D:E5:A5:AE:0A:A4:13:78
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/gCumEj6hI_Q52pHKPeWlrgqkE3g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gCumEj6hI_Q52pHKPeWlrgqkE3g.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/0dxmyQPKsAznZ5X7QlzYZs90XGk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.100.124.0/22
Signature Algorithm: sha256WithRSAEncryption
0f:65:f6:64:bf:6e:e1:70:3a:a0:f5:71:32:3c:4e:e0:59:9a:
32:6b:d1:39:c0:cc:1f:e3:76:81:d5:cc:fd:15:04:46:24:08:
b5:00:4a:b4:5f:12:c2:49:d8:19:81:b8:30:71:55:de:ed:1c:
7f:d0:30:92:18:2c:fb:11:dc:45:c2:b6:44:c1:73:83:2e:21:
08:f6:24:a9:27:f3:30:06:93:f3:05:2b:0c:72:87:48:dc:a5:
9e:5e:7f:99:13:c9:b2:91:d5:ec:d8:33:a2:ed:2d:6c:a5:09:
90:29:a7:bc:5d:94:a4:ef:c3:56:1b:d1:ab:0e:4a:a0:31:15:
c2:4e:2b:31:2c:be:df:6f:ca:3e:b3:1a:e7:8f:40:1e:e1:0e:
a6:86:ee:d0:a7:09:fc:f0:7a:70:07:e9:5e:19:82:9e:9a:42:
14:f0:a9:90:9d:da:c5:6e:a0:39:5b:ac:90:97:4c:39:c9:5a:
3b:36:44:53:fd:7f:f4:99:36:17:b7:8b:a3:66:c4:78:06:9b:
d1:ba:51:1b:de:0c:ce:fd:71:28:ec:7f:97:25:bf:80:11:44:
be:7c:17:74:6c:bc:9f:f3:94:39:a4:45:47:02:32:f7:32:a3:
e4:b9:7a:d7:bd:f2:e2:14:96:a1:73:3f:51:3b:e1:76:1c:ad:
b4:99:22:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:30 2024 by rpki-client on console-fra.rpki-client.org