Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/BEYONDORBIT/6qghL6xcremSWZDfGZT4ok00Eak.roa
File: 6qghL6xcremSWZDfGZT4ok00Eak.roa (raw, json)
Hash identifier: c0D6M0mfyltgMUcG20RZl88gDFyw7aPq1sgPrZu6I+I=
Subject key identifier: EA:A8:21:2F:AC:5C:AD:E9:92:59:90:DF:19:94:F8:A2:4D:34:11:A9
Certificate issuer: /CN=455CD50D82958499FDAFCB0ADF10251F4CAB3E2D
Certificate serial: 0E0B
Authority key identifier: 45:5C:D5:0D:82:95:84:99:FD:AF:CB:0A:DF:10:25:1F:4C:AB:3E:2D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RVzVDYKVhJn9r8sK3xAlH0yrPi0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BEYONDORBIT/6qghL6xcremSWZDfGZT4ok00Eak.roa
Signing time: Wed 29 Sep 2021 02:51:45 +0000
ROA not before: Wed 29 Sep 2021 02:51:45 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131675
IP address blocks: 103.132.44.0/22 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3595 (0xe0b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=455CD50D82958499FDAFCB0ADF10251F4CAB3E2D
Validity
Not Before: Sep 29 02:51:45 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=EAA8212FAC5CADE9925990DF1994F8A24D3411A9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:c0:93:62:d9:f2:2a:f6:a9:9f:04:d6:84:c7:
2e:b1:d9:f2:0d:21:20:8d:1d:01:65:b1:64:2f:8d:
ec:ca:df:5d:70:0a:a2:e5:b2:d6:54:03:2c:3d:9d:
5f:e9:c6:ea:a0:5f:53:95:72:f9:5d:38:fe:26:e9:
58:45:4d:77:01:4e:1c:9f:1b:d3:78:7e:f6:bc:1a:
d4:d9:36:16:1c:c6:94:ef:0f:90:7a:da:f8:59:6d:
d1:15:7f:86:47:90:0f:bd:d5:8e:53:f8:a7:7d:c2:
21:a7:a4:cd:d0:cd:e6:56:64:af:b0:b1:0e:21:7c:
33:e8:fb:e7:46:f4:d7:bc:30:26:4f:f3:89:ff:77:
51:8e:65:54:03:a9:f4:50:61:cb:db:e9:17:f0:ff:
0a:3a:4e:ad:0e:e6:78:7e:53:5c:ec:4e:55:d8:a5:
8c:48:d3:99:79:72:ab:09:ef:d1:3e:6b:63:6d:db:
3c:0f:7f:1f:40:2f:4f:9c:23:2d:29:22:d9:e6:ca:
c5:41:72:cd:4f:91:66:99:8e:34:64:60:fa:3b:2a:
0f:36:5f:ae:b8:6e:32:b9:df:24:c3:af:c4:80:f2:
88:6a:2e:da:b9:20:fd:3b:a8:2e:05:5e:7e:6a:94:
81:3b:45:f9:6d:0b:62:cc:66:76:61:44:03:63:57:
d7:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:A8:21:2F:AC:5C:AD:E9:92:59:90:DF:19:94:F8:A2:4D:34:11:A9
X509v3 Authority Key Identifier:
keyid:45:5C:D5:0D:82:95:84:99:FD:AF:CB:0A:DF:10:25:1F:4C:AB:3E:2D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BEYONDORBIT/RVzVDYKVhJn9r8sK3xAlH0yrPi0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RVzVDYKVhJn9r8sK3xAlH0yrPi0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BEYONDORBIT/6qghL6xcremSWZDfGZT4ok00Eak.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.132.44.0/22
Signature Algorithm: sha256WithRSAEncryption
99:27:b8:d9:59:93:70:62:90:12:1e:bf:e9:50:de:c6:30:97:
4b:e3:10:9a:3d:30:01:f5:bb:41:b5:f7:11:66:fb:e8:69:c0:
d9:c7:30:f1:d8:e5:09:20:b8:bb:19:11:8f:0c:9c:be:e6:bb:
eb:12:7d:e8:a5:4f:bc:cb:6e:1c:3e:2d:2a:e4:f9:03:a5:24:
84:d6:b6:09:32:f5:fa:73:d2:66:59:80:ea:91:fe:d1:8f:4b:
7f:b4:32:ca:ae:93:5a:55:98:c5:49:07:6b:ba:a9:8f:47:e1:
f5:bf:59:9d:71:01:9a:b4:4a:65:a5:a5:cd:79:b4:b3:33:7c:
f8:ef:c7:3f:0c:3a:5c:73:92:74:92:1a:a4:1e:5d:f3:f0:d3:
f6:54:c9:3b:a9:bd:05:2c:dc:60:91:b3:1d:69:89:1f:5b:4e:
b9:6b:b3:97:30:94:3f:b9:b7:47:e4:33:28:92:22:50:1f:4d:
86:a9:f1:df:20:89:a2:e4:5b:61:89:3b:4e:bb:37:78:98:f9:
8e:b5:63:1e:e8:e9:e4:67:6e:ec:dc:1a:e9:9f:49:b9:43:bd:
79:9a:0b:7b:43:10:ea:01:f6:be:a0:ce:e7:19:95:0b:f4:7e:
ff:c8:3a:34:73:1a:33:83:47:6b:3e:82:e6:4c:fe:bb:fc:c6:
68:f4:28:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org