Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/BEYONDORBIT/lqwtSp1UDa-EAddceF3477Soqk4.roa
File: lqwtSp1UDa-EAddceF3477Soqk4.roa (raw, json)
Hash identifier: +7wznTxq7h8z0SFYAT2mtQ8T1AkKMeEL8yjzP3oemfY=
Subject key identifier: 96:AC:2D:4A:9D:54:0D:AF:84:01:D7:5C:78:5D:F8:EF:B4:A8:AA:4E
Certificate issuer: /CN=455CD50D82958499FDAFCB0ADF10251F4CAB3E2D
Certificate serial: 0EF7
Authority key identifier: 45:5C:D5:0D:82:95:84:99:FD:AF:CB:0A:DF:10:25:1F:4C:AB:3E:2D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RVzVDYKVhJn9r8sK3xAlH0yrPi0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BEYONDORBIT/lqwtSp1UDa-EAddceF3477Soqk4.roa
Signing time: Thu 15 Sep 2022 02:49:07 +0000
ROA not before: Thu 15 Sep 2022 02:49:07 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 396982
IP address blocks: 103.132.46.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3831 (0xef7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=455CD50D82958499FDAFCB0ADF10251F4CAB3E2D
Validity
Not Before: Sep 15 02:49:07 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=96AC2D4A9D540DAF8401D75C785DF8EFB4A8AA4E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:13:d3:d7:a4:97:23:26:6b:d2:44:50:62:94:
d8:64:c0:0e:3d:e9:83:fc:28:db:d7:08:19:11:85:
73:7a:95:01:5c:26:5f:a8:e1:20:e3:21:d8:14:7b:
7d:7f:15:09:d8:0e:3b:77:8b:25:9c:b2:42:06:59:
0c:52:57:d3:a5:f8:61:16:20:08:68:af:44:9f:7e:
f3:10:a4:0e:48:27:5d:53:50:db:81:51:81:80:84:
08:0e:07:08:70:59:f3:22:b3:c8:ef:0f:f9:35:8a:
68:97:75:2a:08:e6:48:3e:37:25:ca:f4:aa:a2:96:
8a:c6:55:22:a4:e8:13:e9:02:e3:e9:1d:ca:98:cb:
b8:07:22:b2:c5:42:9a:d5:e5:6e:7c:30:62:c3:82:
0b:fb:71:29:18:ec:5d:9a:21:6b:ba:c5:88:1c:a4:
df:06:57:08:eb:27:b5:65:b0:4a:6f:76:b6:a2:f9:
5d:df:56:44:33:4f:b4:85:cf:28:c8:43:e0:07:5d:
95:48:cc:de:36:b4:81:e6:b7:b5:5b:68:f3:dc:b0:
7f:31:4b:32:d6:cc:60:00:8e:bf:b4:46:83:43:49:
0f:09:9e:cc:71:5a:f0:09:ec:b6:30:a7:f9:bd:ac:
c1:39:a0:87:44:9f:b8:04:81:a5:1d:f5:06:04:b7:
c3:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:AC:2D:4A:9D:54:0D:AF:84:01:D7:5C:78:5D:F8:EF:B4:A8:AA:4E
X509v3 Authority Key Identifier:
keyid:45:5C:D5:0D:82:95:84:99:FD:AF:CB:0A:DF:10:25:1F:4C:AB:3E:2D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BEYONDORBIT/RVzVDYKVhJn9r8sK3xAlH0yrPi0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RVzVDYKVhJn9r8sK3xAlH0yrPi0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BEYONDORBIT/lqwtSp1UDa-EAddceF3477Soqk4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.132.46.0/24
Signature Algorithm: sha256WithRSAEncryption
51:16:29:53:78:f8:47:89:1d:37:f1:ca:5e:e0:4d:83:75:01:
89:9c:a4:97:95:a6:20:64:00:d8:95:fb:43:fe:d8:0e:0b:d7:
59:ad:3c:ef:50:a0:9e:be:b9:bb:70:a1:a9:0f:cc:6f:9f:cc:
d9:db:3a:2f:5e:5f:bc:30:4d:4f:55:44:b2:3f:f0:f0:0d:1c:
c8:6e:9d:dc:25:79:e8:15:67:de:c0:1c:fc:6a:a2:d4:4d:34:
55:aa:36:5c:f5:af:55:98:f9:bb:fa:e5:5f:c2:29:92:bd:66:
20:ea:48:4c:ac:20:c7:8f:ca:eb:ea:10:e0:94:01:62:16:93:
6c:c0:a5:3a:2f:ec:45:ac:36:61:cb:e8:48:80:0e:2f:59:ac:
93:09:c8:55:1f:a7:fd:90:4b:aa:af:a1:23:3f:fb:19:49:2a:
a3:b3:99:7c:45:25:a0:37:07:24:cd:2e:10:0e:45:e0:b7:42:
67:fe:80:e6:4b:d4:6d:9d:39:db:c2:2c:54:44:7b:06:56:c9:
77:b3:a1:2d:ec:e0:90:c2:83:ae:53:95:9f:62:90:2b:14:fd:
49:83:e0:51:17:d8:32:a0:85:e6:6c:0f:5a:11:ff:ad:06:f2:
bb:da:37:9d:28:b8:f8:7d:3d:d9:81:8f:14:19:49:9b:ce:95:
d7:9a:4b:13
-----BEGIN CERTIFICATE-----
MIIE3DCCA8SgAwIBAgICDvcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU1
Q0Q1MEQ4Mjk1ODQ5OUZEQUZDQjBBREYxMDI1MUY0Q0FCM0UyRDAeFw0yMjA5MTUw
MjQ5MDdaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDk2QUMyRDRBOUQ1NDBE
QUY4NDAxRDc1Qzc4NURGOEVGQjRBOEFBNEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCwE9PXpJcjJmvSRFBilNhkwA496YP8KNvXCBkRhXN6lQFcJl+o
4SDjIdgUe31/FQnYDjt3iyWcskIGWQxSV9Ol+GEWIAhor0SffvMQpA5IJ11TUNuB
UYGAhAgOBwhwWfMis8jvD/k1imiXdSoI5kg+NyXK9KqilorGVSKk6BPpAuPpHcqY
y7gHIrLFQprV5W58MGLDggv7cSkY7F2aIWu6xYgcpN8GVwjrJ7VlsEpvdrai+V3f
VkQzT7SFzyjIQ+AHXZVIzN42tIHmt7VbaPPcsH8xSzLWzGAAjr+0RoNDSQ8Jnsxx
WvAJ7LYwp/m9rME5oIdEn7gEgaUd9QYEt8PtAgMBAAGjggH4MIIB9DAdBgNVHQ4E
FgQUlqwtSp1UDa+EAddceF3477Soqk4wHwYDVR0jBBgwFoAURVzVDYKVhJn9r8sK
3xAlH0yrPi0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBhBgNVHR8EWjBYMFag
VKBShlByc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQkVZT05E
T1JCSVQvUlZ6VkRZS1ZoSm45cjhzSzN4QWxIMHlyUGkwLmNybDBgBggrBgEFBQcB
AQRUMFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kv
VFdOSUNDQS9SVnpWRFlLVmhKbjlyOHNLM3hBbEgweXJQaTAuY2VyMA4GA1UdDwEB
/wQEAwIHgDCBoQYIKwYBBQUHAQsEgZQwgZEwXAYIKwYBBQUHMAuGUHJzeW5jOi8v
cnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9CRVlPTkRPUkJJVC9scXd0U3Ax
VURhLUVBZGRjZUYzNDc3U29xazQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jy
ZHAudHduaWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAM
BAIAATAGAwQAZ4QuMA0GCSqGSIb3DQEBCwUAA4IBAQBRFilTePhHiR038cpe4E2D
dQGJnKSXlaYgZADYlftD/tgOC9dZrTzvUKCevrm7cKGpD8xvn8zZ2zovXl+8ME1P
VUSyP/DwDRzIbp3cJXnoFWfewBz8aqLUTTRVqjZc9a9VmPm7+uVfwimSvWYg6khM
rCDHj8rr6hDglAFiFpNswKU6L+xFrDZhy+hIgA4vWayTCchVH6f9kEuqr6EjP/sZ
SSqjs5l8RSWgNwckzS4QDkXgt0Jn/oDmS9RtnTnbwixURHsGVsl3s6Et7OCQwoOu
U5WfYpArFP1Jg+BRF9gyoIXmbA9aEf+tBvK72jedKLj4fT3ZgY8UGUmbzpXXmksT
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:02 2024 by rpki-client on console-ams.rpki-client.org