Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/DxL8qxiCDQ6mANtZz5yVbqFAmvA.roa
File: DxL8qxiCDQ6mANtZz5yVbqFAmvA.roa (raw, json)
Hash identifier: uGicro/IPC+5sTOXijtEiYZldVA6cIVlo1WWYMQCAw0=
Subject key identifier: 0F:12:FC:AB:18:82:0D:0E:A6:00:DB:59:CF:9C:95:6E:A1:40:9A:F0
Certificate issuer: /CN=802BA6123EA123F439DA91CA3DE5A5AE0AA41378
Certificate serial: 0A3E
Authority key identifier: 80:2B:A6:12:3E:A1:23:F4:39:DA:91:CA:3D:E5:A5:AE:0A:A4:13:78
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gCumEj6hI_Q52pHKPeWlrgqkE3g.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/DxL8qxiCDQ6mANtZz5yVbqFAmvA.roa
Signing time: Thu 15 Sep 2022 02:42:18 +0000
ROA not before: Thu 15 Sep 2022 02:42:18 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 206819
IP address blocks: 103.100.124.0/22 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2622 (0xa3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=802BA6123EA123F439DA91CA3DE5A5AE0AA41378
Validity
Not Before: Sep 15 02:42:18 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=0F12FCAB18820D0EA600DB59CF9C956EA1409AF0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:52:dd:9c:e4:28:c5:5b:4a:b7:e2:8b:51:f3:
72:e3:4c:05:c4:d9:5f:fc:6d:f5:e4:5e:39:c9:cc:
2c:e0:49:e2:28:6c:1f:ef:92:98:8a:16:5f:24:77:
b0:b1:fc:d6:bc:f3:e3:d0:e0:29:b6:97:3e:c4:03:
43:2c:74:da:a8:bf:c2:5f:38:3b:62:33:45:14:17:
89:1e:c9:a4:d1:58:2b:39:10:c6:d6:be:4e:86:de:
d2:b2:4d:78:b5:04:a3:ec:30:75:5f:eb:10:2e:56:
e5:2d:6e:ff:88:5e:30:55:52:2b:c8:e2:81:25:9c:
3b:68:4d:19:6a:c5:fb:41:d5:84:de:2e:64:5c:ea:
df:b8:02:67:bd:d3:aa:76:7d:2c:0e:55:98:ee:15:
20:c1:76:e7:43:e0:fd:f5:87:bb:2c:d4:37:f6:a4:
d5:1c:c5:e3:a8:62:10:cc:fe:60:66:7f:b1:28:68:
1f:62:a9:f9:10:e2:c9:77:bb:18:cc:b7:76:b4:68:
74:2c:93:4f:2f:18:b0:0c:00:36:8a:e9:b4:e3:61:
58:21:03:1b:ca:e0:61:56:f2:cc:3f:43:b1:00:17:
d2:50:d9:66:2c:8a:28:de:86:f9:5d:2f:8b:ba:b1:
c5:c9:e5:0b:a5:e7:38:4f:53:22:d3:a5:6a:6a:07:
ee:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:12:FC:AB:18:82:0D:0E:A6:00:DB:59:CF:9C:95:6E:A1:40:9A:F0
X509v3 Authority Key Identifier:
keyid:80:2B:A6:12:3E:A1:23:F4:39:DA:91:CA:3D:E5:A5:AE:0A:A4:13:78
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/gCumEj6hI_Q52pHKPeWlrgqkE3g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gCumEj6hI_Q52pHKPeWlrgqkE3g.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/DxL8qxiCDQ6mANtZz5yVbqFAmvA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.100.124.0/22
Signature Algorithm: sha256WithRSAEncryption
4a:bf:06:73:82:0d:52:38:31:e9:aa:55:c6:b3:46:62:92:21:
55:04:96:67:de:7d:f1:36:9c:22:cc:b7:7e:a8:79:7b:35:b3:
af:98:da:b4:8c:9e:5d:99:d9:b7:61:21:6a:10:8b:b1:30:df:
46:1e:3a:5c:a3:85:ab:c2:e8:0e:0b:b5:0c:db:eb:14:1d:8d:
15:4f:73:05:38:2b:be:3a:a5:15:90:48:44:c2:aa:97:07:24:
1c:93:c7:e2:e0:3e:cd:7a:c7:db:ef:03:a3:bf:a8:dc:71:39:
8c:9b:45:74:54:e9:77:1f:8b:c0:62:07:6e:8b:33:5a:a7:8c:
47:a9:e2:6f:65:b9:b8:47:7f:4d:97:83:b4:e9:a9:12:c9:69:
0f:a3:f2:e7:b2:eb:95:96:f6:92:ca:59:1f:81:4b:95:04:4f:
02:33:dc:f2:a4:0f:cf:ec:90:82:a4:94:9b:71:94:a6:dd:9a:
5f:4c:cc:30:b4:d9:f6:63:b8:e8:26:b0:06:04:08:6d:d0:ca:
53:f4:f3:a2:3f:33:31:53:7b:44:5f:c8:19:d6:19:eb:e7:5c:
f1:6e:35:5f:67:2e:77:29:98:de:cf:36:7b:05:b4:9b:7c:74:
4f:33:cb:46:3a:cc:46:35:76:19:f0:e1:1a:50:35:46:13:2f:
5d:a9:9e:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:59:59 2024 by rpki-client on console-ams.rpki-client.org