Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/p1cIs0ZJSUPaKucbKkQ8bhRyw5Q.roa
File: p1cIs0ZJSUPaKucbKkQ8bhRyw5Q.roa (raw, json)
Hash identifier: njt4rYSrxLWPtrxM0P37SgmzIKgABrWYdOkvsmCHB7E=
Subject key identifier: A7:57:08:B3:46:49:49:43:DA:2A:E7:1B:2A:44:3C:6E:14:72:C3:94
Certificate issuer: /CN=802BA6123EA123F439DA91CA3DE5A5AE0AA41378
Certificate serial: 0A3E
Authority key identifier: 80:2B:A6:12:3E:A1:23:F4:39:DA:91:CA:3D:E5:A5:AE:0A:A4:13:78
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gCumEj6hI_Q52pHKPeWlrgqkE3g.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/p1cIs0ZJSUPaKucbKkQ8bhRyw5Q.roa
Signing time: Thu 15 Sep 2022 02:42:19 +0000
ROA not before: Thu 15 Sep 2022 02:42:19 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131610
IP address blocks: 103.100.124.0/22 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2622 (0xa3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=802BA6123EA123F439DA91CA3DE5A5AE0AA41378
Validity
Not Before: Sep 15 02:42:19 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=A75708B346494943DA2AE71B2A443C6E1472C394
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:90:3c:c2:2c:27:d4:f5:87:00:28:70:be:6b:
f2:a1:35:44:06:d4:b2:23:f4:00:ac:bd:b2:42:97:
d5:2d:5d:83:f7:08:bb:9d:5f:2a:dc:d9:6f:c6:8b:
9a:5c:c2:78:0b:8f:61:cf:7d:5f:d4:5d:eb:6b:74:
d8:59:70:48:5c:64:07:e2:1e:58:af:f8:bf:f3:89:
04:74:d0:db:f8:fa:57:d2:1f:b8:62:95:45:ab:10:
ea:77:b5:1c:5d:fe:e2:bd:c8:88:02:da:af:5d:9d:
50:43:d5:06:f0:5e:4d:5c:bf:91:b6:37:81:64:dc:
b2:2f:b2:64:4f:e4:23:5b:b8:7d:da:51:52:31:82:
b8:80:e6:d0:54:31:e1:49:cd:fd:e0:44:d2:23:f2:
59:d8:2f:ee:36:af:e1:03:7b:f7:21:c1:6a:1f:58:
9e:81:93:d5:15:bd:6e:3f:7d:4b:97:1c:a9:f8:d9:
8f:31:81:95:95:3a:f4:51:a0:3f:65:e4:f8:6b:3f:
62:44:c8:92:99:68:6d:ed:94:80:53:35:c8:4d:8e:
d1:2c:2e:5c:63:58:7e:4e:cd:21:82:53:1f:51:63:
f4:72:24:c1:55:02:b3:eb:95:b7:23:8c:79:8c:b8:
cf:d2:5d:95:22:3a:41:b9:38:6f:62:d2:0f:03:4b:
70:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:57:08:B3:46:49:49:43:DA:2A:E7:1B:2A:44:3C:6E:14:72:C3:94
X509v3 Authority Key Identifier:
keyid:80:2B:A6:12:3E:A1:23:F4:39:DA:91:CA:3D:E5:A5:AE:0A:A4:13:78
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/gCumEj6hI_Q52pHKPeWlrgqkE3g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gCumEj6hI_Q52pHKPeWlrgqkE3g.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/p1cIs0ZJSUPaKucbKkQ8bhRyw5Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.100.124.0/22
Signature Algorithm: sha256WithRSAEncryption
4c:13:53:54:4e:3f:76:e7:d5:de:db:77:88:ab:9e:74:64:df:
ae:d7:5c:36:60:e8:d6:dc:8b:9d:c8:7e:c2:8a:5d:bf:dd:81:
d0:93:fb:f8:2c:66:c5:c0:a3:90:60:f3:e4:fb:34:28:ad:c9:
b7:01:1b:9f:5c:93:0d:44:39:a8:c4:27:a2:f7:34:ff:ef:76:
f8:7f:71:c7:34:4a:e9:75:4c:b9:37:89:26:ab:6c:17:f1:40:
ce:9f:2a:27:76:56:ce:74:2f:de:f1:4b:1c:eb:d2:0a:24:a1:
4b:55:d7:b2:b5:c6:0a:ec:d4:4f:fa:a0:75:de:9b:19:b4:51:
fc:2d:7d:4c:92:ed:0e:9a:a9:4c:4e:66:63:14:36:1e:0a:55:
2b:01:c3:51:15:0f:f0:67:61:fb:0a:a9:5b:91:71:c3:ce:69:
75:3c:5a:85:31:e2:51:91:6c:24:0a:95:cc:d3:18:e0:cb:d7:
b4:03:3c:96:53:98:a2:1b:36:7b:4a:2f:a4:de:b0:cd:6b:d3:
4b:23:60:b5:29:bd:d7:7f:34:72:6b:05:9a:91:f2:47:cf:b5:
e8:12:92:55:bb:6e:36:a0:b4:b7:5e:8d:86:22:1c:d7:0b:70:
01:b2:a4:56:98:f0:d1:9d:ac:fb:61:a5:76:ae:0f:e3:98:3b:
b4:e6:83:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:59:59 2024 by rpki-client on console-ams.rpki-client.org