Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/MUZfyM2PbsRJzAhB3CWraotJSBA.roa
File: MUZfyM2PbsRJzAhB3CWraotJSBA.roa (raw, json)
Hash identifier: mDQZxviC+tM620LMjY29fxo3eAn4PQ6uUCu7bssxoRM=
Subject key identifier: 31:46:5F:C8:CD:8F:6E:C4:49:CC:08:41:DC:25:AB:6A:8B:49:48:10
Certificate issuer: /CN=802BA6123EA123F439DA91CA3DE5A5AE0AA41378
Certificate serial: 08B1
Authority key identifier: 80:2B:A6:12:3E:A1:23:F4:39:DA:91:CA:3D:E5:A5:AE:0A:A4:13:78
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gCumEj6hI_Q52pHKPeWlrgqkE3g.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/MUZfyM2PbsRJzAhB3CWraotJSBA.roa
Signing time: Sun 07 Feb 2021 11:32:48 +0000
ROA not before: Sun 07 Feb 2021 11:32:48 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 136162
IP address blocks: 103.100.124.0/22 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2225 (0x8b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=802BA6123EA123F439DA91CA3DE5A5AE0AA41378
Validity
Not Before: Feb 7 11:32:48 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=31465FC8CD8F6EC449CC0841DC25AB6A8B494810
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:6b:df:50:98:58:2c:8f:b3:3b:bf:a2:69:03:
de:16:a1:b2:d3:e2:ab:7d:74:64:60:16:6a:44:f4:
f6:5e:cd:0b:d6:a4:83:fc:48:d4:67:f9:d0:89:c7:
28:75:86:60:9d:2a:13:f0:db:61:86:ed:63:a5:24:
b8:51:6a:60:89:1e:e5:13:9d:c9:59:79:c0:84:79:
da:79:e0:cb:e6:06:57:40:7d:a3:26:23:77:24:70:
1f:94:1f:64:1b:ee:6b:c3:5e:aa:50:d0:06:53:95:
1f:49:be:7c:81:6b:99:0b:70:68:28:63:08:23:3e:
f9:e4:68:30:bc:bb:94:a8:bd:0a:6a:3f:0d:d6:66:
6b:6c:ff:f8:70:21:ff:cf:66:28:9e:97:16:f3:2d:
e4:dd:1b:e6:e2:54:a9:07:f2:06:e4:d6:bd:85:2f:
de:ff:7b:26:20:22:31:86:63:af:b9:8b:48:17:d4:
3b:d1:c6:51:b8:db:bb:7d:91:7f:3f:d5:dc:1e:4f:
e2:87:a9:0e:a4:52:ea:3b:c0:7c:95:c7:db:a1:0a:
e2:fb:26:e1:01:17:03:73:e2:2a:a3:8c:f4:b5:e5:
82:4c:dc:7c:65:6d:69:3c:87:f7:1b:7a:07:55:8f:
b6:dd:0d:6e:ef:55:cc:60:6f:bc:74:13:45:f4:52:
87:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:46:5F:C8:CD:8F:6E:C4:49:CC:08:41:DC:25:AB:6A:8B:49:48:10
X509v3 Authority Key Identifier:
keyid:80:2B:A6:12:3E:A1:23:F4:39:DA:91:CA:3D:E5:A5:AE:0A:A4:13:78
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/gCumEj6hI_Q52pHKPeWlrgqkE3g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gCumEj6hI_Q52pHKPeWlrgqkE3g.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/MUZfyM2PbsRJzAhB3CWraotJSBA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.100.124.0/22
Signature Algorithm: sha256WithRSAEncryption
a0:ef:29:52:b6:91:7f:89:47:83:76:47:88:aa:ca:57:93:bc:
b2:18:e9:21:da:b3:03:40:b9:93:bd:05:cd:bf:ec:79:24:0a:
c0:4f:09:dd:ef:72:21:65:05:a1:94:5c:01:8b:ef:0f:4b:57:
be:12:27:c7:17:de:67:4a:04:4f:69:64:71:c3:e4:b3:ab:f0:
96:ab:ff:5a:d7:6b:2b:cf:b7:cb:ed:42:20:d0:a0:f1:08:f0:
1b:bd:01:d2:ed:dc:b4:ee:dc:c9:ac:b2:d7:dc:90:98:62:f4:
a6:19:ab:67:a1:55:53:59:e3:43:96:08:c4:ad:58:8e:46:5f:
fc:40:25:f1:79:3c:d6:48:ff:79:0f:eb:29:6d:4a:c7:94:9a:
f0:3d:92:54:79:05:c8:f5:54:5c:bd:10:78:d3:99:46:2e:e2:
cf:ab:bb:5d:46:b8:f9:20:2d:9f:c4:ad:b3:df:22:41:3e:44:
e7:3e:97:10:b1:24:06:6f:a5:23:2c:bf:9f:3f:8f:38:a3:a6:
1a:ba:5f:62:66:fd:60:ce:3b:35:99:13:2e:25:89:f3:37:30:
eb:d5:6a:b3:11:2e:8c:06:d2:47:81:f7:50:8e:79:be:54:81:
c4:09:63:8c:41:3f:c5:28:76:df:2c:59:78:48:f5:93:49:70:
08:93:ac:98
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICCLEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODAy
QkE2MTIzRUExMjNGNDM5REE5MUNBM0RFNUE1QUUwQUE0MTM3ODAeFw0yMTAyMDcx
MTMyNDhaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDMxNDY1RkM4Q0Q4RjZF
QzQ0OUNDMDg0MURDMjVBQjZBOEI0OTQ4MTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC/a99QmFgsj7M7v6JpA94WobLT4qt9dGRgFmpE9PZezQvWpIP8
SNRn+dCJxyh1hmCdKhPw22GG7WOlJLhRamCJHuUTnclZecCEedp54MvmBldAfaMm
I3ckcB+UH2Qb7mvDXqpQ0AZTlR9JvnyBa5kLcGgoYwgjPvnkaDC8u5SovQpqPw3W
Zmts//hwIf/PZiielxbzLeTdG+biVKkH8gbk1r2FL97/eyYgIjGGY6+5i0gX1DvR
xlG427t9kX8/1dweT+KHqQ6kUuo7wHyVx9uhCuL7JuEBFwNz4iqjjPS15YJM3Hxl
bWk8h/cbegdVj7bdDW7vVcxgb7x0E0X0UoeBAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUMUZfyM2PbsRJzAhB3CWraotJSBAwHwYDVR0jBBgwFoAUgCumEj6hI/Q52pHK
PeWlrgqkE3gwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQU5TT05O
RVQvZ0N1bUVqNmhJX1E1MnBIS1BlV2xyZ3FrRTNnLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9nQ3VtRWo2aElfUTUycEhLUGVXbHJncWtFM2cuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9BTlNPTk5FVC9NVVpmeU0yUGJzUkp6
QWhCM0NXcmFvdEpTQkEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQCZ2R8MA0GCSqGSIb3DQEBCwUAA4IBAQCg7ylStpF/iUeDdkeIqspXk7yyGOkh
2rMDQLmTvQXNv+x5JArATwnd73IhZQWhlFwBi+8PS1e+EifHF95nSgRPaWRxw+Sz
q/CWq/9a12srz7fL7UIg0KDxCPAbvQHS7dy07tzJrLLX3JCYYvSmGatnoVVTWeND
lgjErViORl/8QCXxeTzWSP95D+spbUrHlJrwPZJUeQXI9VRcvRB405lGLuLPq7td
Rrj5IC2fxK2z3yJBPkTnPpcQsSQGb6UjLL+fP484o6Yaul9iZv1gzjs1mRMuJYnz
NzDr1WqzES6MBtJHgfdQjnm+VIHECWOMQT/FKHbfLFl4SPWTSXAIk6yY
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:30 2024 by rpki-client on console-fra.rpki-client.org