Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/FI7Tu3o9YW_TBvnVq2yLnzfp7Mg.roa
File: FI7Tu3o9YW_TBvnVq2yLnzfp7Mg.roa (raw, json)
Hash identifier: 6RpAREmtv2wLnhUjz/YLVGXyf17TcZiKKLkVauCsPxo=
Subject key identifier: 14:8E:D3:BB:7A:3D:61:6F:D3:06:F9:D5:AB:6C:8B:9F:37:E9:EC:C8
Certificate issuer: /CN=802BA6123EA123F439DA91CA3DE5A5AE0AA41378
Certificate serial: 08AD
Authority key identifier: 80:2B:A6:12:3E:A1:23:F4:39:DA:91:CA:3D:E5:A5:AE:0A:A4:13:78
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gCumEj6hI_Q52pHKPeWlrgqkE3g.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/FI7Tu3o9YW_TBvnVq2yLnzfp7Mg.roa
Signing time: Sun 07 Feb 2021 11:32:45 +0000
ROA not before: Sun 07 Feb 2021 11:32:45 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131610
IP address blocks: 103.100.124.0/22 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2221 (0x8ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=802BA6123EA123F439DA91CA3DE5A5AE0AA41378
Validity
Not Before: Feb 7 11:32:45 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=148ED3BB7A3D616FD306F9D5AB6C8B9F37E9ECC8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:c7:8e:85:57:15:8a:98:64:2e:65:92:46:11:
e8:36:8e:50:46:a4:a6:a5:c8:71:90:14:4c:c7:b1:
7e:a8:c8:1a:e5:2c:6f:e2:16:6e:8e:ac:b4:84:77:
c6:32:68:1e:44:a6:2f:26:c8:b1:35:f3:3f:29:33:
46:a2:43:17:e1:0b:f3:4b:2a:b3:f2:b0:8e:27:12:
8f:97:a6:b8:26:57:69:34:89:3b:3e:ac:90:b0:df:
dd:d1:ba:c6:71:17:ec:c2:21:5e:fc:9a:4e:33:29:
57:c8:47:f9:f0:9f:00:76:7f:8c:b0:11:6a:36:50:
c2:97:a4:d4:dc:6d:6f:57:68:40:16:87:c7:4e:03:
a0:48:84:3b:bc:4e:16:e3:ec:2b:83:9c:93:00:5a:
41:ba:0b:38:4d:83:e7:3b:c6:33:a2:8d:c2:03:73:
e7:d6:47:e6:69:24:21:3a:12:50:45:1c:23:a1:3d:
d2:3e:8f:10:42:4d:d4:dd:7b:f6:9d:d0:87:27:4c:
8e:41:9b:8c:36:b2:80:45:3c:78:d4:42:62:f4:8f:
d3:f8:67:06:d3:43:86:6c:1f:9d:46:31:1d:67:d6:
ce:ba:c6:59:4b:61:2d:2d:e4:93:0a:75:e1:44:27:
c7:b1:41:7a:a6:79:c8:68:60:58:11:ea:1a:15:1e:
0c:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:8E:D3:BB:7A:3D:61:6F:D3:06:F9:D5:AB:6C:8B:9F:37:E9:EC:C8
X509v3 Authority Key Identifier:
keyid:80:2B:A6:12:3E:A1:23:F4:39:DA:91:CA:3D:E5:A5:AE:0A:A4:13:78
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/gCumEj6hI_Q52pHKPeWlrgqkE3g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gCumEj6hI_Q52pHKPeWlrgqkE3g.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/FI7Tu3o9YW_TBvnVq2yLnzfp7Mg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.100.124.0/22
Signature Algorithm: sha256WithRSAEncryption
86:2e:ee:2a:4e:67:d6:c9:e1:a2:f6:d6:a8:58:d8:b6:b9:40:
f2:51:ee:f0:f7:75:f2:fa:a7:30:78:cc:07:11:23:75:d1:58:
bb:ea:de:ee:5a:af:ef:a8:32:c2:d1:5c:e5:5f:43:90:bb:bb:
0b:62:8b:3b:55:27:6c:dc:4b:ea:ba:cd:12:16:d0:6d:7b:60:
0b:db:c2:da:95:c1:a9:69:93:20:d0:92:b4:2e:3a:97:7b:15:
60:fc:86:a1:f9:55:36:e4:69:0d:61:d5:38:80:84:01:71:29:
80:c2:35:45:3b:67:f3:c4:fe:8c:f7:e5:6f:6f:df:f0:34:07:
a9:4c:d4:3a:bb:8e:75:f1:09:b0:7e:4a:48:0a:03:ae:5b:54:
69:ec:b2:dd:0d:14:4c:35:de:30:17:a2:1f:f3:e7:40:17:b5:
a6:08:ef:b8:d2:56:0a:20:ec:04:5a:89:68:f0:26:52:d3:18:
5a:6d:7a:62:87:f6:80:7a:fb:19:38:f4:ab:d6:94:27:3a:94:
18:f9:e0:c4:77:c6:6a:73:67:dc:d0:65:81:a9:a3:00:1f:01:
30:1e:06:81:64:68:3c:d7:67:9c:d2:07:50:08:1c:b6:52:c0:
17:8e:d7:b4:f2:b4:d1:51:12:73:48:eb:e9:77:e8:ca:56:b4:
39:5c:cc:f5
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICCK0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODAy
QkE2MTIzRUExMjNGNDM5REE5MUNBM0RFNUE1QUUwQUE0MTM3ODAeFw0yMTAyMDcx
MTMyNDVaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDE0OEVEM0JCN0EzRDYx
NkZEMzA2RjlENUFCNkM4QjlGMzdFOUVDQzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDDx46FVxWKmGQuZZJGEeg2jlBGpKalyHGQFEzHsX6oyBrlLG/i
Fm6OrLSEd8YyaB5Epi8myLE18z8pM0aiQxfhC/NLKrPysI4nEo+XprgmV2k0iTs+
rJCw393RusZxF+zCIV78mk4zKVfIR/nwnwB2f4ywEWo2UMKXpNTcbW9XaEAWh8dO
A6BIhDu8Thbj7CuDnJMAWkG6CzhNg+c7xjOijcIDc+fWR+ZpJCE6ElBFHCOhPdI+
jxBCTdTde/ad0IcnTI5Bm4w2soBFPHjUQmL0j9P4ZwbTQ4ZsH51GMR1n1s66xllL
YS0t5JMKdeFEJ8exQXqmechoYFgR6hoVHgxBAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUFI7Tu3o9YW/TBvnVq2yLnzfp7MgwHwYDVR0jBBgwFoAUgCumEj6hI/Q52pHK
PeWlrgqkE3gwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQU5TT05O
RVQvZ0N1bUVqNmhJX1E1MnBIS1BlV2xyZ3FrRTNnLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9nQ3VtRWo2aElfUTUycEhLUGVXbHJncWtFM2cuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9BTlNPTk5FVC9GSTdUdTNvOVlXX1RC
dm5WcTJ5TG56ZnA3TWcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQCZ2R8MA0GCSqGSIb3DQEBCwUAA4IBAQCGLu4qTmfWyeGi9taoWNi2uUDyUe7w
93Xy+qcweMwHESN10Vi76t7uWq/vqDLC0VzlX0OQu7sLYos7VSds3Evqus0SFtBt
e2AL28LalcGpaZMg0JK0LjqXexVg/Iah+VU25GkNYdU4gIQBcSmAwjVFO2fzxP6M
9+Vvb9/wNAepTNQ6u4518QmwfkpICgOuW1Rp7LLdDRRMNd4wF6If8+dAF7WmCO+4
0lYKIOwEWolo8CZS0xhabXpih/aAevsZOPSr1pQnOpQY+eDEd8Zqc2fc0GWBqaMA
HwEwHgaBZGg812ec0gdQCBy2UsAXjte08rTRURJzSOvpd+jKVrQ5XMz1
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:30 2024 by rpki-client on console-fra.rpki-client.org