Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/JgQBlydYQf5VxrcYEidudJCEEZA.roa
File: JgQBlydYQf5VxrcYEidudJCEEZA.roa (raw, json)
Hash identifier: q+rk3P5xX2JZpH66xlA+tk6WWden0jnxfo3lWgBrqJE=
Subject key identifier: 26:04:01:97:27:58:41:FE:55:C6:B7:18:12:27:6E:74:90:84:11:90
Certificate issuer: /CN=802BA6123EA123F439DA91CA3DE5A5AE0AA41378
Certificate serial: 0773
Authority key identifier: 80:2B:A6:12:3E:A1:23:F4:39:DA:91:CA:3D:E5:A5:AE:0A:A4:13:78
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gCumEj6hI_Q52pHKPeWlrgqkE3g.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/JgQBlydYQf5VxrcYEidudJCEEZA.roa
Signing time: Tue 29 Sep 2020 09:51:28 +0000
ROA not before: Tue 29 Sep 2020 09:51:28 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 206819
IP address blocks: 103.100.124.0/22 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1907 (0x773)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=802BA6123EA123F439DA91CA3DE5A5AE0AA41378
Validity
Not Before: Sep 29 09:51:28 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=26040197275841FE55C6B71812276E7490841190
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:b2:ec:5c:dd:04:74:c7:2f:f8:c9:a3:14:88:
08:8a:44:2a:1f:06:de:34:10:a8:5d:d7:94:28:0d:
41:0b:67:29:48:6e:d2:27:c9:07:3b:2e:e1:93:ac:
56:ed:a6:c0:99:2c:f1:d0:0e:74:59:2b:c5:62:92:
c7:d7:76:21:8f:15:a5:0e:d8:a6:ce:6b:88:4f:db:
30:e0:63:96:40:a9:ba:29:b0:30:45:d2:37:f4:f5:
88:04:2e:b1:2b:fa:dd:78:f8:ff:63:27:87:5c:91:
4b:50:e8:eb:65:db:8e:d0:5e:84:3f:6c:bc:00:94:
4f:3c:eb:67:9f:ca:5b:eb:8b:98:e0:fc:cc:a2:2e:
c9:9a:24:32:df:f1:ac:bc:50:f5:dc:3b:a1:18:06:
17:4c:e6:b1:a2:9d:fc:24:10:b9:fa:03:f4:c7:87:
cd:fb:c8:b2:f2:c8:4e:8d:12:84:01:bc:ca:d7:b1:
f5:02:29:6b:b3:40:bf:4b:ac:6a:9a:99:61:7a:a6:
5b:e8:1d:3e:be:30:57:a9:b2:48:b5:64:e9:9d:49:
ec:54:bf:c4:61:dd:0d:a2:28:e3:e1:1b:3d:03:e0:
81:f0:b0:dd:59:11:fc:21:91:1e:13:f6:df:97:a0:
e9:10:b4:1f:4a:98:70:af:ae:49:7b:90:e4:27:0e:
04:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:04:01:97:27:58:41:FE:55:C6:B7:18:12:27:6E:74:90:84:11:90
X509v3 Authority Key Identifier:
keyid:80:2B:A6:12:3E:A1:23:F4:39:DA:91:CA:3D:E5:A5:AE:0A:A4:13:78
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/gCumEj6hI_Q52pHKPeWlrgqkE3g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gCumEj6hI_Q52pHKPeWlrgqkE3g.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/JgQBlydYQf5VxrcYEidudJCEEZA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.100.124.0/22
Signature Algorithm: sha256WithRSAEncryption
60:ae:4d:94:1b:2f:d9:91:5c:41:ba:14:6d:b6:66:89:d0:76:
d2:68:3d:f6:5b:82:61:f8:04:01:54:39:67:6f:2b:36:b8:d5:
b2:1b:12:7a:cb:fc:88:da:06:76:8b:a3:7b:9e:4c:dd:cb:f6:
e2:24:9b:a9:05:50:88:5b:e9:32:e7:92:c4:75:6f:e9:8b:3c:
cd:2f:e0:97:c8:0f:5a:4a:dd:36:14:31:4d:5f:9c:d7:72:6c:
0e:fe:ba:69:dd:ca:9d:38:d5:8b:4f:2f:8b:bd:53:d7:f4:6d:
a8:68:74:55:de:84:93:82:33:17:b2:0b:28:78:b6:94:e0:d7:
1e:58:d5:ca:ea:00:49:7d:c2:2b:75:92:e2:3c:47:91:f7:7b:
f1:a3:3e:0f:92:90:a7:78:04:a0:96:48:76:e1:f1:b0:8e:8d:
ca:6d:d7:0e:c0:6d:49:48:c5:40:61:4b:0c:1c:71:3a:24:ad:
e1:04:8b:89:bf:e7:42:d3:fc:26:f9:87:3c:e4:39:cd:72:44:
8c:d3:82:7e:af:0a:aa:5f:1d:46:48:db:ba:d4:ae:52:c2:a4:
19:37:a7:5f:58:e7:1d:7b:21:71:d1:49:27:da:4d:78:52:1d:
52:42:72:70:2f:1e:92:5a:42:47:7e:53:45:b9:64:bc:20:7c:
39:9e:9f:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:59:59 2024 by rpki-client on console-ams.rpki-client.org