Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/4XWdNSK8qM-qqs1d--YwwZpWlSc.roa
File: 4XWdNSK8qM-qqs1d--YwwZpWlSc.roa (raw, json)
Hash identifier: rTVX0M8OXDUVYSzbj83RriR19DqONUdEHsFy3SEWwTE=
Subject key identifier: E1:75:9D:35:22:BC:A8:CF:AA:AA:CD:5D:FB:E6:30:C1:9A:56:95:27
Certificate issuer: /CN=802BA6123EA123F439DA91CA3DE5A5AE0AA41378
Certificate serial: 0772
Authority key identifier: 80:2B:A6:12:3E:A1:23:F4:39:DA:91:CA:3D:E5:A5:AE:0A:A4:13:78
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gCumEj6hI_Q52pHKPeWlrgqkE3g.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/4XWdNSK8qM-qqs1d--YwwZpWlSc.roa
Signing time: Tue 29 Sep 2020 09:51:28 +0000
ROA not before: Tue 29 Sep 2020 09:51:28 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 136162
IP address blocks: 103.100.124.0/22 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1906 (0x772)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=802BA6123EA123F439DA91CA3DE5A5AE0AA41378
Validity
Not Before: Sep 29 09:51:28 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=E1759D3522BCA8CFAAAACD5DFBE630C19A569527
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ff:43:03:91:06:44:b1:38:1a:f2:eb:f2:bc:
9c:21:97:3e:01:ed:e9:ff:b9:ac:ee:f5:a3:a6:4e:
2c:a3:dc:e8:d0:66:91:aa:07:01:39:d2:2f:00:63:
c0:0c:dd:dd:d1:30:d1:ed:98:07:31:19:00:e7:86:
73:5b:b3:df:41:0a:b6:87:92:04:7c:d8:a0:d2:64:
b0:ea:67:1b:94:73:06:f0:bb:22:1a:63:38:23:ac:
b4:04:f7:58:14:9e:c5:49:d4:00:a1:d7:8a:ee:53:
a8:fb:94:df:fb:db:b5:05:f6:35:e8:99:a0:67:60:
37:62:e4:86:42:92:29:17:4e:65:1b:f1:69:b2:c8:
55:bd:9f:dd:49:ec:cf:5a:b4:c2:66:89:18:37:8e:
04:68:ad:5d:b4:62:c0:9b:15:b3:75:7c:7a:39:7c:
ae:5b:90:d8:cd:56:c3:1b:5a:94:dc:fb:8c:76:7a:
ca:3f:63:84:64:2b:71:e8:d0:50:38:13:17:d6:2f:
2c:3d:79:3e:ef:0f:3b:41:25:79:78:da:c2:81:c8:
cb:1f:82:18:8d:ac:25:01:70:c0:8f:3c:3a:7b:cc:
96:89:43:30:cc:3e:ac:51:0c:6c:d8:7b:fa:92:51:
b7:1e:43:25:2a:06:9f:e9:7a:e2:51:18:8e:0a:43:
68:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:75:9D:35:22:BC:A8:CF:AA:AA:CD:5D:FB:E6:30:C1:9A:56:95:27
X509v3 Authority Key Identifier:
keyid:80:2B:A6:12:3E:A1:23:F4:39:DA:91:CA:3D:E5:A5:AE:0A:A4:13:78
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/gCumEj6hI_Q52pHKPeWlrgqkE3g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gCumEj6hI_Q52pHKPeWlrgqkE3g.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/4XWdNSK8qM-qqs1d--YwwZpWlSc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.100.124.0/22
Signature Algorithm: sha256WithRSAEncryption
a2:cd:44:b6:88:ca:74:08:94:cd:88:82:77:54:36:c4:df:84:
f9:a9:ac:40:15:74:fc:12:c0:c0:0a:3f:c2:15:ce:f3:76:af:
2d:ac:ee:79:96:5c:f9:dc:d9:d8:66:1f:f4:c8:9c:bd:83:88:
08:cb:69:e4:ba:01:42:6b:ef:2b:85:c6:03:00:17:45:a2:31:
47:9e:b2:0f:0d:bd:a4:e7:86:b5:48:f3:e3:7c:73:0d:6e:d9:
87:75:9c:9c:13:68:f5:c6:dd:b9:70:3d:b2:e5:b1:39:74:53:
26:ee:c1:ac:f4:b8:44:80:19:f2:f5:a8:01:cf:e9:e0:07:da:
ac:27:8c:e8:c3:3a:d6:c9:97:c3:03:1a:4c:28:87:e8:91:40:
e1:23:1e:8d:ed:c1:e6:6e:b5:7e:f2:cb:ff:12:db:3a:e2:e6:
37:dc:e8:e0:8f:7b:b7:cd:cf:98:6a:64:21:84:8d:da:6d:5b:
f6:d0:09:05:70:0b:7b:1a:1e:bc:ce:d0:64:b4:9a:83:04:2c:
64:85:9f:3e:0a:61:c2:ea:fa:91:b6:ee:d5:f9:ba:5f:79:d9:
40:0a:aa:f3:5f:5b:84:1f:90:17:d1:6e:2d:2b:06:89:1c:97:
7b:a1:ee:10:3b:4c:ad:17:37:b8:a2:bf:e3:29:87:46:5b:03:
92:6c:4c:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:59:59 2024 by rpki-client on console-ams.rpki-client.org