Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/4TyMFPwBPnAwaJhLpJocTugeceQ.roa
File: 4TyMFPwBPnAwaJhLpJocTugeceQ.roa (raw, json)
Hash identifier: HSR3Ocvts7Ff51nviZOV+CqH43Q8JgB5UUvaRowM0Nw=
Subject key identifier: E1:3C:8C:14:FC:01:3E:70:30:68:98:4B:A4:9A:1C:4E:E8:1E:71:E4
Certificate issuer: /CN=802BA6123EA123F439DA91CA3DE5A5AE0AA41378
Certificate serial: 0954
Authority key identifier: 80:2B:A6:12:3E:A1:23:F4:39:DA:91:CA:3D:E5:A5:AE:0A:A4:13:78
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gCumEj6hI_Q52pHKPeWlrgqkE3g.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/4TyMFPwBPnAwaJhLpJocTugeceQ.roa
Signing time: Wed 29 Sep 2021 02:42:24 +0000
ROA not before: Wed 29 Sep 2021 02:42:24 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131610
IP address blocks: 103.100.124.0/22 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2388 (0x954)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=802BA6123EA123F439DA91CA3DE5A5AE0AA41378
Validity
Not Before: Sep 29 02:42:24 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=E13C8C14FC013E703068984BA49A1C4EE81E71E4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:73:36:1f:b7:96:85:09:34:ce:93:f5:cd:0c:
96:6c:31:5a:3b:d6:2c:eb:3c:a1:0a:24:64:57:39:
f4:14:58:1d:c1:d6:23:ea:41:07:3c:e8:ae:d4:34:
89:a6:6c:3c:6e:4f:95:1b:fc:7f:e4:0d:94:18:a6:
78:2a:e7:15:fc:6c:1c:75:e0:40:ab:07:3a:f2:18:
37:4e:fe:b8:b2:48:28:a0:31:71:59:cd:87:a1:9c:
42:4a:6a:0a:3a:b4:e5:da:02:d0:3d:a1:a7:85:27:
50:0b:5b:06:44:c1:9f:4b:fc:ab:9f:b5:61:9c:d8:
b1:04:71:03:31:86:a3:f3:01:c8:2b:dd:6f:63:c3:
16:a7:a3:02:c8:cf:33:43:71:5c:a7:1c:5e:97:94:
55:dd:45:9e:ac:e5:2c:6d:6e:27:61:94:2c:81:3e:
7f:18:23:81:86:2e:2e:72:b4:bc:f6:e4:07:e6:37:
95:18:ad:e1:19:8c:1c:b0:f1:06:8c:fe:e2:8d:92:
ca:12:3e:e4:90:ef:2a:96:07:5f:f4:79:76:94:a3:
7d:94:f7:df:7a:f9:cc:6a:c7:dd:1b:cc:7e:e1:84:
92:70:43:4f:ea:5d:27:6a:c5:11:1c:3f:fc:28:10:
d3:88:87:82:78:b6:51:b0:84:fe:be:11:9d:bb:c3:
95:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:3C:8C:14:FC:01:3E:70:30:68:98:4B:A4:9A:1C:4E:E8:1E:71:E4
X509v3 Authority Key Identifier:
keyid:80:2B:A6:12:3E:A1:23:F4:39:DA:91:CA:3D:E5:A5:AE:0A:A4:13:78
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/gCumEj6hI_Q52pHKPeWlrgqkE3g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gCumEj6hI_Q52pHKPeWlrgqkE3g.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/4TyMFPwBPnAwaJhLpJocTugeceQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.100.124.0/22
Signature Algorithm: sha256WithRSAEncryption
38:28:b4:03:64:ed:80:c7:a5:8d:76:98:6a:7c:8c:65:55:36:
a9:85:9d:9d:c0:01:34:eb:3a:71:a7:2d:cd:1c:8f:51:75:f1:
ce:8e:23:4d:97:36:10:e8:e4:08:63:cb:d9:d5:44:a2:4e:18:
cb:66:8f:d7:a7:06:8b:5d:74:05:f7:35:41:67:b3:1e:d5:9c:
5c:b9:09:8b:0d:e1:0a:da:2d:fd:a2:9a:6e:b9:ea:62:14:7e:
2b:71:99:af:0d:e4:68:d5:9b:6b:53:5e:09:9c:e3:06:5d:5c:
a6:a3:08:09:43:eb:70:a3:f4:1b:c8:4d:40:17:bc:d8:7e:c5:
24:24:a0:3c:66:8f:b7:d6:22:f1:11:f1:f3:81:4a:a1:36:55:
f8:55:3c:1c:80:6e:cb:de:56:55:45:65:d3:04:a5:96:47:f6:
ff:ad:f6:b7:34:03:a2:7d:56:44:06:96:2f:31:01:95:c6:ea:
4b:f0:4b:e1:43:81:fe:52:d0:5a:54:63:95:66:3f:0c:44:dd:
ad:46:06:2e:5a:e4:30:b6:05:d5:16:82:88:ca:59:16:66:c6:
e3:8b:5a:85:3a:25:d5:b2:fe:bc:85:d0:11:23:d4:29:49:e1:
cb:88:f7:1c:50:68:38:db:91:99:fa:59:d6:21:65:a8:6f:0d:
97:96:f8:ea
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICCVQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODAy
QkE2MTIzRUExMjNGNDM5REE5MUNBM0RFNUE1QUUwQUE0MTM3ODAeFw0yMTA5Mjkw
MjQyMjRaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEUxM0M4QzE0RkMwMTNF
NzAzMDY4OTg0QkE0OUExQzRFRTgxRTcxRTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCUczYft5aFCTTOk/XNDJZsMVo71izrPKEKJGRXOfQUWB3B1iPq
QQc86K7UNImmbDxuT5Ub/H/kDZQYpngq5xX8bBx14ECrBzryGDdO/riySCigMXFZ
zYehnEJKago6tOXaAtA9oaeFJ1ALWwZEwZ9L/KuftWGc2LEEcQMxhqPzAcgr3W9j
wxanowLIzzNDcVynHF6XlFXdRZ6s5SxtbidhlCyBPn8YI4GGLi5ytLz25AfmN5UY
reEZjByw8QaM/uKNksoSPuSQ7yqWB1/0eXaUo32U9996+cxqx90bzH7hhJJwQ0/q
XSdqxREcP/woENOIh4J4tlGwhP6+EZ27w5X9AgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQU4TyMFPwBPnAwaJhLpJocTugeceQwHwYDVR0jBBgwFoAUgCumEj6hI/Q52pHK
PeWlrgqkE3gwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQU5TT05O
RVQvZ0N1bUVqNmhJX1E1MnBIS1BlV2xyZ3FrRTNnLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9nQ3VtRWo2aElfUTUycEhLUGVXbHJncWtFM2cuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9BTlNPTk5FVC80VHlNRlB3QlBuQXdh
SmhMcEpvY1R1Z2VjZVEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQCZ2R8MA0GCSqGSIb3DQEBCwUAA4IBAQA4KLQDZO2Ax6WNdphqfIxlVTaphZ2d
wAE06zpxpy3NHI9RdfHOjiNNlzYQ6OQIY8vZ1USiThjLZo/XpwaLXXQF9zVBZ7Me
1ZxcuQmLDeEK2i39oppuuepiFH4rcZmvDeRo1ZtrU14JnOMGXVymowgJQ+two/Qb
yE1AF7zYfsUkJKA8Zo+31iLxEfHzgUqhNlX4VTwcgG7L3lZVRWXTBKWWR/b/rfa3
NAOifVZEBpYvMQGVxupL8EvhQ4H+UtBaVGOVZj8MRN2tRgYuWuQwtgXVFoKIylkW
Zsbji1qFOiXVsv68hdARI9QpSeHLiPccUGg425GZ+lnWIWWobw2Xlvjq
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:30 2024 by rpki-client on console-fra.rpki-client.org