Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/hwoHrMJ-D4pFDi6oSWN_Dh1aqWA.roa
File: hwoHrMJ-D4pFDi6oSWN_Dh1aqWA.roa (raw, json)
Hash identifier: jU1NgXyEr3BVmIU9qjGYSBIfEDCPVpfDH6flSyeSGCA=
Subject key identifier: 87:0A:07:AC:C2:7E:0F:8A:45:0E:2E:A8:49:63:7F:0E:1D:5A:A9:60
Certificate issuer: /CN=802BA6123EA123F439DA91CA3DE5A5AE0AA41378
Certificate serial: 0A3E
Authority key identifier: 80:2B:A6:12:3E:A1:23:F4:39:DA:91:CA:3D:E5:A5:AE:0A:A4:13:78
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gCumEj6hI_Q52pHKPeWlrgqkE3g.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/hwoHrMJ-D4pFDi6oSWN_Dh1aqWA.roa
Signing time: Thu 15 Sep 2022 02:42:19 +0000
ROA not before: Thu 15 Sep 2022 02:42:19 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 47582
IP address blocks: 103.100.124.0/22 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2622 (0xa3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=802BA6123EA123F439DA91CA3DE5A5AE0AA41378
Validity
Not Before: Sep 15 02:42:19 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=870A07ACC27E0F8A450E2EA849637F0E1D5AA960
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:04:6d:df:10:f2:75:bd:0d:f0:6b:37:85:40:
00:68:31:fb:12:4f:7b:e5:92:7b:29:40:44:0b:70:
c6:61:0a:57:2e:1c:e2:3a:88:37:aa:53:7c:45:d9:
6b:0e:fe:72:9f:28:26:80:9e:9f:54:43:b7:79:f0:
67:43:a3:c5:21:f0:f1:e7:c2:1e:3f:2c:5a:cf:4c:
5a:1b:b2:83:3d:28:7a:99:f9:89:2f:77:b3:85:84:
c0:d7:2b:9b:87:e7:34:40:cb:44:d7:5e:78:53:73:
9d:46:76:f6:24:0a:58:0b:7c:41:ec:c2:37:94:7d:
c0:f8:4b:03:a7:4f:b9:16:3c:2a:b1:98:21:12:05:
34:c1:fe:62:23:89:69:c8:86:a4:f6:1a:33:a9:db:
7a:ca:50:ff:d6:95:a4:74:cb:f3:46:f8:68:9a:0a:
9d:eb:17:72:cd:13:64:7e:41:95:8e:74:23:06:40:
e3:2d:79:12:a4:03:2b:df:6d:a2:fa:1d:bf:e8:b3:
46:c6:31:a8:7a:c6:6e:35:da:af:45:ce:7a:0f:a5:
36:83:59:fb:03:f9:47:02:82:ac:c1:2d:65:e8:44:
6f:4c:3d:ca:e9:10:75:a6:b9:9f:0e:4a:91:a4:ca:
04:ef:dc:eb:aa:3a:46:21:e0:ba:f7:c8:18:2b:c3:
df:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:0A:07:AC:C2:7E:0F:8A:45:0E:2E:A8:49:63:7F:0E:1D:5A:A9:60
X509v3 Authority Key Identifier:
keyid:80:2B:A6:12:3E:A1:23:F4:39:DA:91:CA:3D:E5:A5:AE:0A:A4:13:78
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/gCumEj6hI_Q52pHKPeWlrgqkE3g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gCumEj6hI_Q52pHKPeWlrgqkE3g.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/hwoHrMJ-D4pFDi6oSWN_Dh1aqWA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.100.124.0/22
Signature Algorithm: sha256WithRSAEncryption
9d:7c:03:68:9c:7a:ca:10:38:b9:4d:40:37:08:17:91:9c:b9:
17:70:68:2a:58:77:d3:3f:9a:cb:09:d1:9d:23:b1:17:4d:d2:
a5:93:44:d1:8f:c0:d8:5c:b5:89:be:d5:aa:f0:3f:32:63:ef:
ab:61:7a:23:80:d6:d1:05:cd:4e:77:f4:22:5b:08:cd:ff:b6:
a2:ad:dd:b2:9d:2d:f6:58:00:fe:b3:0b:ed:af:16:dd:7b:7e:
d0:0d:3c:f3:32:6d:52:30:5a:ee:59:c4:95:6e:08:e1:0b:11:
7a:27:d9:ab:59:39:ed:7a:0c:b4:9e:6c:5b:ba:6d:03:bf:4c:
6f:ed:a8:42:4b:ff:82:6f:87:05:13:b8:36:91:89:1b:4b:d2:
f7:e7:b4:12:f4:c7:2c:eb:35:27:15:a5:12:4e:f7:a3:24:19:
17:6b:7b:81:d4:7b:23:8d:a2:63:f0:01:2b:68:dd:b7:b0:ec:
4b:52:88:d6:f3:11:de:19:57:c2:cd:30:f0:21:62:97:b0:df:
30:c0:43:7f:c6:80:89:89:aa:e7:4f:12:d3:d4:5b:99:20:a2:
52:19:91:21:8d:d3:5c:74:f4:21:d0:68:de:32:f7:1a:25:11:
a8:45:39:48:5a:1a:51:4c:28:c4:64:40:03:5a:c7:65:73:f6:
ec:0b:e9:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:59:59 2024 by rpki-client on console-ams.rpki-client.org