Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/BEYONDORBIT/mUSvf4rcTjkc9R8R7qfbWroASXI.roa
File: mUSvf4rcTjkc9R8R7qfbWroASXI.roa (raw, json)
Hash identifier: rEHDHPs2tlZCVnDJbiqYIVJbIS1Z8LYPQrnKVi62p7w=
Subject key identifier: 99:44:AF:7F:8A:DC:4E:39:1C:F5:1F:11:EE:A7:DB:5A:BA:00:49:72
Certificate issuer: /CN=455CD50D82958499FDAFCB0ADF10251F4CAB3E2D
Certificate serial: 0C37
Authority key identifier: 45:5C:D5:0D:82:95:84:99:FD:AF:CB:0A:DF:10:25:1F:4C:AB:3E:2D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RVzVDYKVhJn9r8sK3xAlH0yrPi0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BEYONDORBIT/mUSvf4rcTjkc9R8R7qfbWroASXI.roa
Signing time: Tue 29 Sep 2020 09:59:08 +0000
ROA not before: Tue 29 Sep 2020 09:59:08 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131675
IP address blocks: 2404:2ec0::/32 maxlen: 48
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3127 (0xc37)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=455CD50D82958499FDAFCB0ADF10251F4CAB3E2D
Validity
Not Before: Sep 29 09:59:08 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=9944AF7F8ADC4E391CF51F11EEA7DB5ABA004972
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:a9:c8:46:e0:9a:92:84:f3:26:60:31:e7:1d:
f6:01:e1:8c:22:d8:76:df:c5:ca:f1:49:63:1b:fd:
e0:e5:82:78:90:7d:bf:85:66:b7:3f:9c:2f:37:61:
66:d1:60:35:8c:33:23:36:1e:cd:c1:4c:b9:3e:ca:
82:d0:a9:8e:d2:cb:ed:95:cd:3b:0c:30:4e:24:47:
17:25:b5:14:54:03:30:63:fc:d0:aa:87:42:d3:d6:
db:4e:11:27:88:87:9f:d7:37:56:5b:ee:11:dd:70:
7c:b3:cd:cb:ca:ca:9a:5e:d0:5b:27:7d:40:35:d4:
da:82:15:76:cd:db:f3:19:b9:b5:12:da:3b:38:7e:
50:d0:9a:f8:0f:9e:48:56:dd:da:4b:10:77:67:ea:
e5:ad:79:79:f8:9c:ee:bc:b8:96:4a:27:85:b8:f5:
fc:f8:a6:91:10:5e:ed:fa:4c:fc:13:b1:ac:bb:7b:
e3:40:46:cd:18:7a:e7:79:b7:0b:4a:8f:3d:be:dd:
2c:85:8f:df:5f:9d:bd:b3:72:d2:e8:91:68:0f:68:
6e:b5:8e:b6:8a:a3:07:e8:60:f9:58:ac:5b:27:46:
f4:7f:82:5c:1c:58:c5:86:82:05:f8:55:b2:fd:9c:
ad:63:97:0f:a7:21:4e:62:e3:9a:8e:b8:20:75:7d:
e1:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:44:AF:7F:8A:DC:4E:39:1C:F5:1F:11:EE:A7:DB:5A:BA:00:49:72
X509v3 Authority Key Identifier:
keyid:45:5C:D5:0D:82:95:84:99:FD:AF:CB:0A:DF:10:25:1F:4C:AB:3E:2D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BEYONDORBIT/RVzVDYKVhJn9r8sK3xAlH0yrPi0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RVzVDYKVhJn9r8sK3xAlH0yrPi0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BEYONDORBIT/mUSvf4rcTjkc9R8R7qfbWroASXI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:2ec0::/32
Signature Algorithm: sha256WithRSAEncryption
6f:2f:6a:39:5a:3e:11:c1:17:b5:06:04:eb:0b:07:e8:b0:0f:
93:15:16:b0:aa:75:76:70:50:c5:1f:45:aa:da:e1:e2:90:75:
0e:1d:d1:f1:bb:c6:dd:74:a1:b2:ba:b5:e1:c7:c0:45:dd:8f:
38:ee:93:ad:0b:56:f3:0c:57:8d:8f:59:9e:d3:52:37:f4:b6:
f9:4a:e5:b4:d8:59:5b:c9:1a:3b:51:48:67:53:fa:6d:ea:7e:
94:09:96:ea:52:96:d3:df:aa:8e:36:de:15:4f:37:3c:69:a5:
b6:b2:b6:11:69:d2:e8:e2:fd:cb:e0:46:f1:89:9e:61:7c:d7:
2e:b1:9b:8c:57:d4:e2:72:b1:56:f0:e0:ec:3f:11:4b:57:90:
20:e2:33:24:c7:cf:d5:b7:15:7a:20:3e:72:d3:ee:9d:b5:07:
18:7f:24:6d:ad:07:ad:90:ac:c7:51:5a:a1:c7:78:05:81:db:
66:d3:ef:eb:bd:e9:33:90:55:d3:89:e6:a4:7d:a7:bc:f2:40:
61:09:00:8d:a0:69:81:82:49:1b:98:bc:25:27:ea:50:94:aa:
c1:92:30:e3:89:26:f8:92:6c:55:da:88:ab:e5:9e:cd:93:8a:
4f:ba:35:62:27:e9:05:cc:b4:71:49:ef:ec:a4:c9:3b:d5:a9:
49:8c:07:9c
-----BEGIN CERTIFICATE-----
MIIE3TCCA8WgAwIBAgICDDcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU1
Q0Q1MEQ4Mjk1ODQ5OUZEQUZDQjBBREYxMDI1MUY0Q0FCM0UyRDAeFw0yMDA5Mjkw
OTU5MDhaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDk5NDRBRjdGOEFEQzRF
MzkxQ0Y1MUYxMUVFQTdEQjVBQkEwMDQ5NzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDOqchG4JqShPMmYDHnHfYB4Ywi2HbfxcrxSWMb/eDlgniQfb+F
Zrc/nC83YWbRYDWMMyM2Hs3BTLk+yoLQqY7Sy+2VzTsMME4kRxcltRRUAzBj/NCq
h0LT1ttOESeIh5/XN1Zb7hHdcHyzzcvKyppe0FsnfUA11NqCFXbN2/MZubUS2js4
flDQmvgPnkhW3dpLEHdn6uWteXn4nO68uJZKJ4W49fz4ppEQXu36TPwTsay7e+NA
Rs0Yeud5twtKjz2+3SyFj99fnb2zctLokWgPaG61jraKowfoYPlYrFsnRvR/glwc
WMWGggX4VbL9nK1jlw+nIU5i45qOuCB1feFRAgMBAAGjggH5MIIB9TAdBgNVHQ4E
FgQUmUSvf4rcTjkc9R8R7qfbWroASXIwHwYDVR0jBBgwFoAURVzVDYKVhJn9r8sK
3xAlH0yrPi0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBhBgNVHR8EWjBYMFag
VKBShlByc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQkVZT05E
T1JCSVQvUlZ6VkRZS1ZoSm45cjhzSzN4QWxIMHlyUGkwLmNybDBgBggrBgEFBQcB
AQRUMFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kv
VFdOSUNDQS9SVnpWRFlLVmhKbjlyOHNLM3hBbEgweXJQaTAuY2VyMA4GA1UdDwEB
/wQEAwIHgDCBoQYIKwYBBQUHAQsEgZQwgZEwXAYIKwYBBQUHMAuGUHJzeW5jOi8v
cnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9CRVlPTkRPUkJJVC9tVVN2ZjRy
Y1Rqa2M5UjhSN3FmYldyb0FTWEkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3Jy
ZHAudHduaWMudHcvcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzAN
BAIAAjAHAwUAJAQuwDANBgkqhkiG9w0BAQsFAAOCAQEAby9qOVo+EcEXtQYE6wsH
6LAPkxUWsKp1dnBQxR9Fqtrh4pB1Dh3R8bvG3XShsrq14cfARd2POO6TrQtW8wxX
jY9ZntNSN/S2+UrltNhZW8kaO1FIZ1P6bep+lAmW6lKW09+qjjbeFU83PGmltrK2
EWnS6OL9y+BG8YmeYXzXLrGbjFfU4nKxVvDg7D8RS1eQIOIzJMfP1bcVeiA+ctPu
nbUHGH8kba0HrZCsx1Faocd4BYHbZtPv673pM5BV04nmpH2nvPJAYQkAjaBpgYJJ
G5i8JSfqUJSqwZIw44km+JJsVdqIq+WezZOKT7o1YifpBcy0cUnv7KTJO9WpSYwH
nA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org