Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/BEYONDORBIT/2HVMjTua4Ac28hEAX3tUvnJnODM.roa
File: 2HVMjTua4Ac28hEAX3tUvnJnODM.roa (raw, json)
Hash identifier: oyd8UU8ukf/UsRItZaIlbq1e1gU8mOet2jRc2xufuko=
Subject key identifier: D8:75:4C:8D:3B:9A:E0:07:36:F2:11:00:5F:7B:54:BE:72:67:38:33
Certificate issuer: /CN=455CD50D82958499FDAFCB0ADF10251F4CAB3E2D
Certificate serial: 0E78
Authority key identifier: 45:5C:D5:0D:82:95:84:99:FD:AF:CB:0A:DF:10:25:1F:4C:AB:3E:2D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RVzVDYKVhJn9r8sK3xAlH0yrPi0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BEYONDORBIT/2HVMjTua4Ac28hEAX3tUvnJnODM.roa
Signing time: Wed 09 Mar 2022 21:31:54 +0000
ROA not before: Wed 09 Mar 2022 21:31:54 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 396982
IP address blocks: 103.132.46.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3704 (0xe78)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=455CD50D82958499FDAFCB0ADF10251F4CAB3E2D
Validity
Not Before: Mar 9 21:31:54 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D8754C8D3B9AE00736F211005F7B54BE72673833
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:12:d3:9b:f2:81:22:f0:cc:20:86:e5:e2:16:
cc:15:d8:b6:be:e9:ed:03:d1:9c:25:22:bc:c5:91:
34:ca:0e:43:32:76:20:b0:1c:c1:97:72:ec:b4:8f:
a4:3c:5f:db:f7:e6:27:45:a9:9a:0a:b8:bd:38:fd:
82:f3:e3:5f:36:51:d7:d5:ec:c9:5a:be:cd:40:65:
14:f2:8f:11:12:47:32:d4:b3:6f:d7:fe:4a:f7:1a:
88:83:7a:95:dd:a1:dc:16:e6:43:6b:a6:65:5a:b2:
32:53:3e:3c:2c:3b:c3:83:44:20:f6:ae:b5:45:a8:
fe:e2:cc:6c:d4:53:32:b0:57:02:af:62:aa:3b:32:
33:bf:63:a6:66:bc:4f:c8:db:ce:59:84:c1:41:56:
6d:c8:c6:6f:6a:d1:eb:61:07:0f:1e:e6:c5:4b:e9:
da:25:37:1e:eb:ff:12:63:e7:47:dd:a8:28:0f:d4:
6c:b7:1d:ec:8d:9c:e2:91:ca:d3:af:6b:7d:38:d3:
06:65:ba:ca:19:ea:0f:18:ec:83:42:4d:c4:88:7d:
84:37:e4:9b:37:cb:55:89:f8:a4:56:d9:20:d4:86:
97:05:5c:15:9a:d1:6c:05:27:2d:2c:47:18:4c:f4:
87:53:c5:0a:73:8f:d3:77:8c:06:70:60:42:fe:f4:
17:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:75:4C:8D:3B:9A:E0:07:36:F2:11:00:5F:7B:54:BE:72:67:38:33
X509v3 Authority Key Identifier:
keyid:45:5C:D5:0D:82:95:84:99:FD:AF:CB:0A:DF:10:25:1F:4C:AB:3E:2D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BEYONDORBIT/RVzVDYKVhJn9r8sK3xAlH0yrPi0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RVzVDYKVhJn9r8sK3xAlH0yrPi0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BEYONDORBIT/2HVMjTua4Ac28hEAX3tUvnJnODM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.132.46.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:dc:d7:04:8d:2f:dd:b1:d5:5c:57:e6:3b:7b:01:3c:bc:3d:
94:5d:da:36:0b:7c:c5:43:c2:f1:26:e2:c3:f3:e9:41:13:22:
f8:0b:3c:19:5f:85:c4:31:2e:f6:b2:1d:8b:a4:41:c6:f8:07:
d5:8c:ec:ab:f7:56:fa:bb:a6:86:1f:c3:16:73:9f:4d:de:26:
f8:03:a3:c2:40:ac:2a:ce:de:18:ac:04:11:07:2b:f0:4e:da:
09:6f:94:22:3f:81:a2:1e:81:b0:77:62:c1:48:60:f4:e1:8d:
f1:4a:e3:7c:fd:93:2a:6c:ac:21:54:0c:89:76:54:a0:e2:8c:
3c:c6:dd:fa:0e:3e:a9:28:8c:a2:4e:d9:20:50:d0:b5:ac:10:
6e:30:80:b9:c7:4f:c5:42:9a:ce:a3:b8:e8:de:56:06:67:9b:
e6:4f:33:4f:9c:6e:b5:a7:cc:14:3d:9c:65:b8:0b:0e:80:e8:
7f:eb:e5:73:fc:85:a7:e5:e3:14:7b:7f:82:4d:73:f9:ad:8f:
f8:5c:26:e9:f3:f1:53:07:56:3a:ea:69:94:fc:03:3c:3b:9a:
c8:85:12:61:cc:b5:4f:7f:c2:ef:f7:ab:58:14:76:d1:e4:2c:
e8:81:82:d3:34:25:a0:93:bd:57:84:99:dc:54:10:b2:fa:56:
a8:db:19:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org