Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/BEYONDORBIT/XC07Gldg02UdJk4OS4-O-uNrpNg.roa
File: XC07Gldg02UdJk4OS4-O-uNrpNg.roa (raw, json)
Hash identifier: 1T1xonVzih8ipPbIycscmCiiu2WgTetqn4E4FErggCE=
Subject key identifier: 5C:2D:3B:1A:57:60:D3:65:1D:26:4E:0E:4B:8F:8E:FA:E3:6B:A4:D8
Certificate issuer: /CN=455CD50D82958499FDAFCB0ADF10251F4CAB3E2D
Certificate serial: 0D6D
Authority key identifier: 45:5C:D5:0D:82:95:84:99:FD:AF:CB:0A:DF:10:25:1F:4C:AB:3E:2D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RVzVDYKVhJn9r8sK3xAlH0yrPi0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BEYONDORBIT/XC07Gldg02UdJk4OS4-O-uNrpNg.roa
Signing time: Sun 07 Feb 2021 12:43:02 +0000
ROA not before: Sun 07 Feb 2021 12:43:02 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131675
IP address blocks: 103.132.44.0/22 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3437 (0xd6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=455CD50D82958499FDAFCB0ADF10251F4CAB3E2D
Validity
Not Before: Feb 7 12:43:02 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5C2D3B1A5760D3651D264E0E4B8F8EFAE36BA4D8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:63:a9:3d:3e:49:d3:d8:3f:e1:e7:93:ae:56:
9a:63:41:d1:1f:df:72:e4:e1:c7:49:d4:5d:dc:1a:
15:80:d6:b7:84:46:bb:19:fd:55:11:82:de:c8:6f:
f7:39:ce:8d:65:e8:46:77:a2:22:d4:84:25:e7:e6:
0d:80:54:80:59:97:29:58:11:1e:8d:1f:8d:d0:cd:
e9:bb:52:d1:2b:d6:96:5e:31:69:d2:15:1a:de:74:
de:a1:69:5a:6f:e3:c6:05:5d:73:98:f2:4e:ae:e1:
dc:d3:7f:6a:73:61:f6:4e:86:4f:4a:42:55:2e:8b:
6a:12:82:32:d5:c9:27:6f:c0:df:e6:c0:f9:e2:7b:
28:94:54:2b:d1:b5:bc:32:a3:45:f5:23:e7:6b:3b:
69:d3:34:a0:c3:f5:93:25:8f:bd:03:6d:3f:96:10:
a5:23:86:bf:15:62:bf:98:4c:8f:db:b7:ec:1a:fb:
be:03:47:86:9a:05:3f:51:62:f8:49:6c:47:b3:4d:
f8:bb:9e:02:f7:05:6f:73:02:4a:8a:79:8e:2e:c1:
74:ff:23:fc:c8:8c:f6:3e:3f:d4:5b:3c:2c:c0:0f:
13:9a:da:3c:8b:1b:60:d8:33:43:ed:75:ec:ea:95:
5e:cd:bb:39:91:19:73:8b:c1:3a:d3:6b:31:6f:0a:
19:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:2D:3B:1A:57:60:D3:65:1D:26:4E:0E:4B:8F:8E:FA:E3:6B:A4:D8
X509v3 Authority Key Identifier:
keyid:45:5C:D5:0D:82:95:84:99:FD:AF:CB:0A:DF:10:25:1F:4C:AB:3E:2D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BEYONDORBIT/RVzVDYKVhJn9r8sK3xAlH0yrPi0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RVzVDYKVhJn9r8sK3xAlH0yrPi0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BEYONDORBIT/XC07Gldg02UdJk4OS4-O-uNrpNg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.132.44.0/22
Signature Algorithm: sha256WithRSAEncryption
56:bf:80:e4:e8:cf:73:06:bf:29:0f:73:f4:c2:61:03:99:e8:
31:a4:30:eb:5f:95:40:55:53:c4:e2:97:56:69:49:fd:17:db:
f4:99:3d:a8:47:8c:c8:79:a5:52:cf:9d:83:07:f5:19:f8:16:
77:a2:2a:c8:a7:0d:57:12:4d:ef:1c:b3:04:0c:7f:38:85:ae:
2a:11:98:b9:df:e6:07:2d:98:1e:d4:53:6b:6f:bc:c9:5d:3b:
a5:a0:02:c5:15:d6:b7:5d:a6:67:cd:90:ef:0f:bb:48:dd:9d:
db:d5:94:04:fd:47:dc:7b:e8:ac:a0:e9:8c:e3:4b:75:d0:fd:
b2:18:b0:3d:bc:d8:4c:71:c5:f1:37:bb:2f:7f:da:55:9b:70:
3d:2d:d5:e9:a9:e3:79:1c:16:1b:8b:37:4f:d2:3d:7c:e7:c1:
99:c9:bf:6c:e4:aa:e6:8b:27:bc:3c:67:48:1d:5b:c9:c1:24:
ee:29:66:82:f6:a6:83:60:18:29:82:61:70:fd:b8:d3:14:d5:
6c:1b:d5:1c:c8:77:6b:be:4f:1f:99:fc:5c:4e:3f:63:12:38:
5d:f0:9a:1a:c9:6a:fd:61:fa:26:e3:60:7a:7f:fd:2a:dc:53:
59:cf:7a:2d:62:de:4d:be:41:b1:c3:17:27:e3:1a:9e:82:f2:
76:c6:5c:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:02 2024 by rpki-client on console-ams.rpki-client.org