Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHAIJIN/OHyHE3qyTbKQigF44GwuTVhG4eU.roa
File: OHyHE3qyTbKQigF44GwuTVhG4eU.roa (raw, json)
Hash identifier: GjI0xuOkWgLSZehvRD3DlEjndAIi4EFHZPxxwFBrB5Y=
Subject key identifier: 38:7C:87:13:7A:B2:4D:B2:90:8A:01:78:E0:6C:2E:4D:58:46:E1:E5
Certificate issuer: /CN=11465FC34A08781329C48823F49104765B5C333B
Certificate serial: 99
Authority key identifier: 11:46:5F:C3:4A:08:78:13:29:C4:88:23:F4:91:04:76:5B:5C:33:3B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EUZfw0oIeBMpxIgj9JEEdltcMzs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHAIJIN/OHyHE3qyTbKQigF44GwuTVhG4eU.roa
Signing time: Tue 14 Jun 2022 09:48:44 +0000
ROA not before: Tue 14 Jun 2022 09:48:44 +0000
ROA not after: Wed 02 Nov 2022 01:30:27 +0000
asID: 131668
IP address blocks: 103.174.154.0/23 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153 (0x99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11465FC34A08781329C48823F49104765B5C333B
Validity
Not Before: Jun 14 09:48:44 2022 GMT
Not After : Nov 2 01:30:27 2022 GMT
Subject: CN=387C87137AB24DB2908A0178E06C2E4D5846E1E5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e0:b0:02:dc:ad:58:cf:a7:c9:c0:a7:1e:bd:
6f:98:33:f6:90:1a:ac:97:d5:89:22:ee:31:75:b4:
b3:a1:61:6f:ae:c1:dd:a4:93:96:b6:ee:d3:6a:46:
17:4d:a7:73:bd:3e:68:13:e5:b0:69:a2:03:bc:65:
b5:cd:00:2f:57:67:55:58:c7:7e:eb:4f:39:a0:72:
6b:b5:e6:8d:7b:bd:d5:3a:30:13:37:fc:16:23:66:
42:0a:78:b9:20:47:be:09:b2:7b:1c:8d:33:a5:78:
78:ab:7a:1d:c5:69:4f:2b:57:f9:cb:06:ee:b1:86:
03:b7:3e:9b:00:ea:8c:66:bd:eb:dc:d2:1a:64:e7:
9f:68:24:b3:32:2a:d6:35:bc:7c:e7:03:c4:88:a1:
07:7c:5f:68:00:63:2e:18:64:64:37:9d:e1:86:a1:
19:8e:59:a0:bb:99:6e:a3:2f:20:20:4a:c4:a3:01:
80:12:d6:a4:10:08:0d:29:4e:28:ed:21:f0:6e:e2:
6a:d4:d4:81:ad:49:7b:c5:c6:ff:96:b9:bc:95:2b:
bb:7f:c3:c7:b4:93:0c:14:73:89:21:86:d4:29:c2:
34:be:c9:8b:e8:7b:7d:ea:e6:93:01:39:01:ef:70:
fe:f7:56:f9:10:3c:b6:48:3e:8f:59:4a:81:78:df:
4c:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:7C:87:13:7A:B2:4D:B2:90:8A:01:78:E0:6C:2E:4D:58:46:E1:E5
X509v3 Authority Key Identifier:
keyid:11:46:5F:C3:4A:08:78:13:29:C4:88:23:F4:91:04:76:5B:5C:33:3B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHAIJIN/EUZfw0oIeBMpxIgj9JEEdltcMzs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EUZfw0oIeBMpxIgj9JEEdltcMzs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHAIJIN/OHyHE3qyTbKQigF44GwuTVhG4eU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.174.154.0/23
Signature Algorithm: sha256WithRSAEncryption
12:7a:90:55:90:be:d7:02:2c:eb:73:3f:b7:b8:b0:e2:2c:4e:
95:0b:21:96:bf:93:3b:ad:68:f7:b5:c8:99:91:33:5c:28:3b:
13:50:df:66:b4:c9:76:7c:95:fa:b4:54:2f:1b:46:7b:b3:c2:
6b:5c:9d:70:82:01:5c:b7:24:78:be:47:2c:72:03:f5:0f:34:
c4:ea:72:ba:71:bb:f8:7f:2b:b6:a3:27:04:40:9a:15:ec:e1:
8f:ff:73:2d:57:db:aa:6d:8b:a0:d9:2e:4b:6a:9b:9c:a5:d0:
0b:fb:a4:c0:cd:75:f7:bf:e4:49:7a:68:0f:1d:90:7d:18:2a:
0f:17:f3:05:bd:dc:3e:53:ad:a5:26:cb:b3:44:df:f9:b6:bf:
02:b6:85:ed:14:58:41:98:67:cb:da:49:2a:fb:6e:95:32:3f:
c3:8a:f4:6b:33:68:5d:09:bb:0e:41:3f:a6:8c:c9:87:47:1d:
e2:81:55:2c:ae:2e:ed:c9:64:52:e7:72:4f:3a:a1:d2:41:f4:
e8:e3:ef:33:05:f0:e8:02:52:fe:ff:fd:c3:10:1d:d7:db:25:
de:a8:07:29:19:d4:08:dc:bf:00:d3:c8:b9:83:1a:91:67:c8:
0c:7d:17:f2:3c:f7:b4:79:38:ba:7a:ce:e0:09:13:a5:b1:e8:
3c:93:ec:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:47 2023 by rpki-client on console-ams.rpki-client.org