Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/BEYONDORBIT/CtdyUD3_64bhwWkfa7kldSFKwcQ.roa
File: CtdyUD3_64bhwWkfa7kldSFKwcQ.roa (raw, json)
Hash identifier: D7cfX+QADKMJ0p4BRWRjBBhNmbGZdiSHWdPvrS35dbo=
Subject key identifier: 0A:D7:72:50:3D:FF:EB:86:E1:C1:69:1F:6B:B9:25:75:21:4A:C1:C4
Certificate issuer: /CN=455CD50D82958499FDAFCB0ADF10251F4CAB3E2D
Certificate serial: 0EF7
Authority key identifier: 45:5C:D5:0D:82:95:84:99:FD:AF:CB:0A:DF:10:25:1F:4C:AB:3E:2D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RVzVDYKVhJn9r8sK3xAlH0yrPi0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BEYONDORBIT/CtdyUD3_64bhwWkfa7kldSFKwcQ.roa
Signing time: Thu 15 Sep 2022 02:49:07 +0000
ROA not before: Thu 15 Sep 2022 02:49:07 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131675
IP address blocks: 103.132.44.0/22 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3831 (0xef7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=455CD50D82958499FDAFCB0ADF10251F4CAB3E2D
Validity
Not Before: Sep 15 02:49:07 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=0AD772503DFFEB86E1C1691F6BB92575214AC1C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:61:62:95:78:dd:28:4d:cd:2f:78:03:a4:66:
58:eb:d7:b5:b3:7c:a2:d2:2a:ce:ff:5c:ea:7e:95:
7e:01:55:0f:e2:ac:4d:ed:95:be:25:b4:10:00:b3:
c8:ca:ca:7a:d1:94:b7:bb:6f:5b:78:ae:37:28:96:
c0:12:54:6d:99:d0:3c:25:fc:ba:9b:2c:db:c6:cc:
b3:42:5f:78:18:9b:28:38:fd:2a:3e:e2:a4:53:a3:
5d:ae:3f:e3:e4:8d:fb:6a:db:9e:44:f9:f7:75:60:
00:b3:79:90:ae:46:d7:72:85:9d:ed:df:ed:5d:2e:
b6:39:0a:ed:81:ba:ce:0b:18:1d:83:e5:1d:da:a5:
18:6b:59:d7:a6:52:e3:33:f4:98:c7:c6:8d:7e:d3:
bf:98:40:7d:ab:94:d0:b1:c9:59:5a:84:bc:20:7c:
e3:1a:30:df:90:fb:c5:f2:33:7f:c0:f6:64:af:04:
25:b9:30:ce:43:c3:52:59:5c:8c:b0:f9:1b:b8:e4:
b3:a6:6d:db:1e:23:1e:fe:d2:ec:48:92:0f:7c:33:
41:df:d1:8c:96:16:75:e3:c0:36:1b:13:63:66:cf:
a0:e2:c1:45:45:3f:b4:21:c6:e2:de:6f:2e:1e:a5:
31:67:f2:98:bc:b5:c0:61:44:6b:c6:b4:9c:a9:56:
dd:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:D7:72:50:3D:FF:EB:86:E1:C1:69:1F:6B:B9:25:75:21:4A:C1:C4
X509v3 Authority Key Identifier:
keyid:45:5C:D5:0D:82:95:84:99:FD:AF:CB:0A:DF:10:25:1F:4C:AB:3E:2D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BEYONDORBIT/RVzVDYKVhJn9r8sK3xAlH0yrPi0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RVzVDYKVhJn9r8sK3xAlH0yrPi0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BEYONDORBIT/CtdyUD3_64bhwWkfa7kldSFKwcQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.132.44.0/22
Signature Algorithm: sha256WithRSAEncryption
a2:49:5d:6e:dd:1d:69:29:e3:6c:5b:ef:fd:f9:9b:0b:ed:7f:
1f:9e:6a:f3:dc:50:71:bc:06:4b:b5:ea:4e:51:bd:b6:75:15:
1e:ec:97:db:f4:97:1a:2f:eb:8a:ac:35:10:2c:fb:83:90:0d:
8f:bd:fb:14:4f:9b:dd:9b:92:06:98:4c:a6:92:76:29:8d:1f:
05:e1:98:3f:68:46:66:ff:02:f2:a6:9b:13:c6:bc:0c:e5:b6:
21:dc:45:64:96:31:cd:39:31:2c:24:ba:64:ea:41:80:08:8e:
d2:43:7a:41:65:65:90:ed:31:e3:b9:28:27:75:cf:f4:24:e3:
e0:34:72:85:56:50:d7:d9:aa:dc:27:2e:c5:e5:66:9f:3d:d4:
26:91:85:df:5d:79:2c:dd:57:58:f3:54:62:eb:ae:50:b1:dd:
48:52:a7:23:25:db:98:75:4c:4a:2e:32:ff:e5:5f:06:68:ba:
eb:b4:f7:d3:ba:40:4e:4e:4f:d5:45:65:f0:08:9e:3a:d6:28:
d0:45:7a:dc:1f:98:70:6c:9b:ea:5a:6e:64:7e:09:f3:f7:61:
f6:f1:0b:a2:7a:6f:b3:fc:b7:2a:e6:43:6b:9e:83:93:b5:c9:
7b:60:21:cc:e3:0f:30:1e:7e:e1:1d:2b:a5:d1:c5:71:a1:bc:
04:57:6d:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org