Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/Ph9MuPA9IqaemPJZ7Z3Bhub5cTg.roa
File: Ph9MuPA9IqaemPJZ7Z3Bhub5cTg.roa (raw, json)
Hash identifier: keo42J9U5/iNyPkQzCCOg1LBA/dYAHTioeaD5JpgGNw=
Subject key identifier: 3E:1F:4C:B8:F0:3D:22:A6:9E:98:F2:59:ED:9D:C1:86:E6:F9:71:38
Certificate issuer: /CN=802BA6123EA123F439DA91CA3DE5A5AE0AA41378
Certificate serial: 0771
Authority key identifier: 80:2B:A6:12:3E:A1:23:F4:39:DA:91:CA:3D:E5:A5:AE:0A:A4:13:78
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gCumEj6hI_Q52pHKPeWlrgqkE3g.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/Ph9MuPA9IqaemPJZ7Z3Bhub5cTg.roa
Signing time: Tue 29 Sep 2020 09:51:28 +0000
ROA not before: Tue 29 Sep 2020 09:51:28 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131610
IP address blocks: 103.100.124.0/22 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1905 (0x771)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=802BA6123EA123F439DA91CA3DE5A5AE0AA41378
Validity
Not Before: Sep 29 09:51:28 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=3E1F4CB8F03D22A69E98F259ED9DC186E6F97138
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:e2:23:77:91:08:f7:75:25:8d:7d:1c:3a:bd:
a3:b2:cb:95:10:a7:90:1d:31:4d:cd:bb:c7:6c:55:
21:e1:be:f5:8b:7f:b1:91:ac:25:f3:fd:0b:fe:23:
f2:ea:6e:db:52:e8:ae:1f:32:98:93:33:13:c9:0e:
86:82:db:fd:43:08:1d:41:60:95:82:65:a1:c0:f0:
63:e2:6d:0e:72:82:16:f8:1f:b1:9f:b3:eb:d3:1e:
43:bc:99:f0:e1:58:95:26:d4:47:fa:47:a1:40:10:
a6:91:7d:23:6c:13:4e:e1:1a:76:3f:f1:e4:ac:70:
82:17:64:ce:ae:26:0b:80:cd:51:d3:0f:94:53:98:
51:65:c9:55:0b:72:ca:0e:09:64:60:50:65:9f:bc:
cd:dc:0f:d3:7e:b8:61:4b:1f:8a:e2:44:6f:e3:71:
8a:65:93:e9:f5:a3:0d:70:53:67:f1:15:3b:59:d7:
66:51:59:df:8e:83:ce:51:ce:4f:35:ff:bd:c1:7b:
63:fe:7b:2b:01:02:a6:45:b1:68:c2:1b:07:e7:79:
91:a6:ef:73:c3:1c:3c:3e:d1:5d:f6:8c:83:a3:7a:
f9:0e:69:ee:19:f9:9e:e8:ca:68:5d:6d:25:22:a2:
0e:4b:04:a8:06:3a:ed:7f:bf:f4:42:d2:64:07:51:
66:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:1F:4C:B8:F0:3D:22:A6:9E:98:F2:59:ED:9D:C1:86:E6:F9:71:38
X509v3 Authority Key Identifier:
keyid:80:2B:A6:12:3E:A1:23:F4:39:DA:91:CA:3D:E5:A5:AE:0A:A4:13:78
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/gCumEj6hI_Q52pHKPeWlrgqkE3g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gCumEj6hI_Q52pHKPeWlrgqkE3g.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/Ph9MuPA9IqaemPJZ7Z3Bhub5cTg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.100.124.0/22
Signature Algorithm: sha256WithRSAEncryption
95:0b:a8:0a:35:99:86:32:5e:67:1e:30:3f:a0:4d:c7:d1:4b:
18:99:38:88:d7:8c:ce:15:d7:07:75:d6:6c:2f:1a:b6:2b:cc:
23:09:bd:fe:d9:b4:f6:32:fa:50:c3:ef:76:8f:85:75:75:be:
e2:f0:c0:88:c6:b8:8b:8e:61:07:b2:f2:f8:d1:ab:f4:d3:49:
5a:59:57:9b:a9:6f:ca:e1:aa:5d:d8:00:1e:35:e4:b6:f7:f4:
ce:7c:19:80:fb:7e:7d:4e:37:8d:0a:db:af:9a:93:f6:35:ff:
de:44:bd:5e:4c:1a:da:2e:67:c7:6a:59:b6:22:71:7e:63:4a:
c6:65:5b:d6:6a:ef:73:59:2c:02:9c:79:24:2a:42:9a:13:31:
a8:91:7c:ea:28:ce:b0:02:a9:0d:95:51:49:a9:c1:65:ba:26:
46:64:c1:f7:e4:fa:0b:be:3d:af:63:9a:ab:6c:47:4b:be:1d:
00:64:97:a0:88:15:13:e4:02:9a:48:89:2e:b7:8a:04:a2:88:
bf:aa:8c:17:5b:3e:55:50:e6:52:de:4d:0c:1e:0e:eb:17:c5:
b5:89:51:d9:f2:5c:7c:30:bb:c9:52:69:38:4d:e4:cf:94:99:
61:f7:76:6b:4f:b0:39:fd:b1:01:4e:58:de:3b:4c:13:d3:2f:
93:79:4c:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:30:16 2025 by rpki-client