Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/BEYONDORBIT/XXTutQS0t0y6sSW1nUANFgjaqqg.roa
File: XXTutQS0t0y6sSW1nUANFgjaqqg.roa (raw, json)
Hash identifier: A76kD9YoAbKQPftU/kaXlm3DVtCBZV9RzCtvepN8LHw=
Subject key identifier: 5D:74:EE:B5:04:B4:B7:4C:BA:B1:25:B5:9D:40:0D:16:08:DA:AA:A8
Certificate issuer: /CN=455CD50D82958499FDAFCB0ADF10251F4CAB3E2D
Certificate serial: 0E0C
Authority key identifier: 45:5C:D5:0D:82:95:84:99:FD:AF:CB:0A:DF:10:25:1F:4C:AB:3E:2D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RVzVDYKVhJn9r8sK3xAlH0yrPi0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BEYONDORBIT/XXTutQS0t0y6sSW1nUANFgjaqqg.roa
Signing time: Wed 29 Sep 2021 02:51:45 +0000
ROA not before: Wed 29 Sep 2021 02:51:45 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131675
IP address blocks: 2404:2ec0::/32 maxlen: 48
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3596 (0xe0c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=455CD50D82958499FDAFCB0ADF10251F4CAB3E2D
Validity
Not Before: Sep 29 02:51:45 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=5D74EEB504B4B74CBAB125B59D400D1608DAAAA8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:43:a6:18:60:63:c3:6a:45:1f:6a:a1:60:a3:
10:85:32:27:40:8f:fb:71:5a:ed:fb:17:09:61:ff:
50:08:3d:de:03:5d:06:5e:a2:35:d3:d7:2c:4f:01:
70:5f:86:6f:86:dd:f7:1a:c6:25:5c:d3:61:d9:f5:
fd:96:ce:9f:c5:fe:84:69:bf:c4:dc:3b:0b:cd:1f:
70:47:8f:1b:37:d4:4a:c1:3a:9d:be:c9:e2:a2:3c:
c7:d7:d8:71:d9:25:ab:aa:78:87:79:33:0a:ef:2d:
11:bf:49:e0:98:83:ba:e4:73:c7:4b:61:f6:e8:68:
60:22:f1:56:d7:98:7e:c7:ea:11:16:e8:bf:5c:d5:
b7:bd:8a:36:87:c8:62:5f:8a:5d:18:c9:e0:6f:f2:
26:4f:9d:ae:47:85:22:cb:b4:e3:0c:b7:41:c6:dd:
ff:b8:85:b9:ae:df:d9:22:d7:40:00:e5:5a:7f:2b:
c7:8c:63:85:6d:5f:e1:a5:61:ea:0b:04:22:bf:96:
3c:e8:ef:9f:46:f9:69:46:7b:6b:64:63:f6:49:0e:
6f:9b:56:24:ea:d9:b5:95:e0:67:48:d7:11:de:22:
58:f9:ea:9d:eb:95:87:e1:e4:61:23:0a:53:56:12:
cc:99:1b:e1:74:31:c0:b7:0e:0a:ec:f4:de:c4:aa:
19:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:74:EE:B5:04:B4:B7:4C:BA:B1:25:B5:9D:40:0D:16:08:DA:AA:A8
X509v3 Authority Key Identifier:
keyid:45:5C:D5:0D:82:95:84:99:FD:AF:CB:0A:DF:10:25:1F:4C:AB:3E:2D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BEYONDORBIT/RVzVDYKVhJn9r8sK3xAlH0yrPi0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RVzVDYKVhJn9r8sK3xAlH0yrPi0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BEYONDORBIT/XXTutQS0t0y6sSW1nUANFgjaqqg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:2ec0::/32
Signature Algorithm: sha256WithRSAEncryption
78:3d:e7:33:58:88:fd:15:6e:c9:61:f0:7c:da:0f:99:be:b2:
26:a3:c9:f7:27:98:32:91:c9:66:7b:64:83:0a:97:82:06:ff:
c4:c8:40:77:69:fd:86:ff:f0:63:50:1d:1f:6a:f2:4a:6a:97:
91:25:a5:cf:79:e8:c0:1d:bb:a9:2f:38:c1:c1:c8:2f:10:54:
dd:2b:c4:37:47:38:2b:b9:82:21:46:94:f4:c9:66:92:72:58:
da:53:c1:9b:dc:3d:65:c9:14:21:d6:76:6c:a5:e8:e0:6e:12:
d9:fd:1a:71:ea:af:f2:e0:a9:68:76:ee:77:50:8d:c2:88:bb:
2e:2d:2a:e3:5b:1e:06:60:55:1f:53:de:af:0f:8f:ac:64:fb:
a5:98:30:f0:1f:10:f7:52:b2:5c:19:46:dc:d8:47:94:4e:bb:
6d:d1:28:9c:d8:96:d3:5b:6a:30:8f:01:e3:78:06:74:2b:5b:
31:6d:7b:92:31:97:33:bc:d9:e0:37:07:45:d2:b7:a4:57:cf:
26:88:90:93:22:70:54:27:60:9e:34:dc:27:bd:9f:0e:32:af:
39:f8:97:ad:1a:a5:cf:7d:42:a9:7b:b3:4d:09:9c:dd:b5:be:
e1:c0:af:0d:40:7c:a2:c1:71:35:f3:b3:03:84:f5:e4:37:a5:
a2:ed:cd:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:02 2024 by rpki-client on console-ams.rpki-client.org