Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHAIJIN/d8OdfOMiYgCd14ETcnrt0Ha42V0.roa
File: d8OdfOMiYgCd14ETcnrt0Ha42V0.roa (raw, json)
Hash identifier: /P4/xCx5+SugQlpGe7rmaq4szNTFxs/fRQogNK4uft4=
Subject key identifier: 77:C3:9D:7C:E3:22:62:00:9D:D7:81:13:72:7A:ED:D0:76:B8:D9:5D
Certificate issuer: /CN=11465FC34A08781329C48823F49104765B5C333B
Certificate serial: 03
Authority key identifier: 11:46:5F:C3:4A:08:78:13:29:C4:88:23:F4:91:04:76:5B:5C:33:3B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EUZfw0oIeBMpxIgj9JEEdltcMzs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHAIJIN/d8OdfOMiYgCd14ETcnrt0Ha42V0.roa
Signing time: Wed 03 Nov 2021 02:36:46 +0000
ROA not before: Wed 03 Nov 2021 02:36:46 +0000
ROA not after: Wed 02 Nov 2022 01:30:27 +0000
asID: 17718
IP address blocks: 103.174.154.0/23 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11465FC34A08781329C48823F49104765B5C333B
Validity
Not Before: Nov 3 02:36:46 2021 GMT
Not After : Nov 2 01:30:27 2022 GMT
Subject: CN=77C39D7CE32262009DD78113727AEDD076B8D95D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:78:95:8b:6e:1d:80:d1:79:24:9f:ac:f3:4a:
a4:2d:47:8d:ff:7d:7a:52:b7:ba:3c:ef:54:2f:1e:
ca:ba:79:b0:3e:34:b1:da:f3:fc:5f:c7:d0:81:50:
db:4e:14:d6:79:45:c1:36:40:65:1c:c9:c8:d4:c0:
1c:7a:6f:5c:db:72:5b:90:95:38:44:e8:d4:dc:6f:
bb:1d:5a:c3:4c:65:be:d9:7c:ec:da:e0:80:ea:c4:
2b:14:63:3d:2e:ec:8a:50:7c:47:72:8e:18:89:02:
dc:38:79:90:77:cc:9f:29:76:a9:5a:b9:13:05:d4:
9a:f5:97:11:3f:ac:1d:d0:55:66:cf:93:26:9e:03:
8e:57:78:b0:04:47:46:b3:03:a2:de:59:34:bb:89:
6e:f9:3b:8b:32:01:da:bb:f6:d2:b0:18:7b:6e:b5:
81:75:ae:75:48:a0:52:d9:9c:71:d2:0e:7a:a5:9c:
8e:4a:6b:54:82:50:5a:e4:a7:64:c5:2d:ab:d4:8c:
83:21:99:18:1e:5e:2d:74:6a:9d:2e:9d:5e:01:db:
06:62:6d:33:8b:ad:ef:81:bd:64:c5:6c:ca:d0:21:
80:c5:54:bd:09:2a:ac:45:58:9c:67:6b:22:0b:4a:
95:16:5a:91:06:52:45:60:32:b6:c5:0f:8f:76:09:
53:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:C3:9D:7C:E3:22:62:00:9D:D7:81:13:72:7A:ED:D0:76:B8:D9:5D
X509v3 Authority Key Identifier:
keyid:11:46:5F:C3:4A:08:78:13:29:C4:88:23:F4:91:04:76:5B:5C:33:3B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHAIJIN/EUZfw0oIeBMpxIgj9JEEdltcMzs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EUZfw0oIeBMpxIgj9JEEdltcMzs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHAIJIN/d8OdfOMiYgCd14ETcnrt0Ha42V0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.174.154.0/23
Signature Algorithm: sha256WithRSAEncryption
6e:55:14:90:7b:70:34:fd:ec:15:dc:ad:c4:13:22:36:8c:a7:
36:55:e3:54:ca:ef:d2:cf:2b:1d:3d:bd:61:ff:2b:aa:ae:11:
c4:ec:49:4c:6d:91:6d:a2:96:c8:93:3b:9b:64:0b:74:43:7e:
cf:fc:95:e1:01:af:cc:90:c7:1c:89:a3:b0:cc:a2:64:a1:4c:
67:fa:2d:d2:a8:21:2e:33:5b:e9:40:b8:30:72:06:50:c3:38:
4d:94:9d:e3:66:9f:e0:ed:47:b3:ac:9b:f9:8f:d3:b9:6d:1a:
7f:fb:6b:25:b4:fc:a6:63:47:8c:4f:f1:bc:ef:19:d3:7f:c8:
d4:9c:c9:cc:4b:b8:6c:98:a6:92:9c:d2:a2:15:bd:e8:cc:d4:
a8:ab:57:f5:87:62:a8:1f:ec:6d:6d:84:92:ae:55:d8:3b:9f:
ce:73:5d:76:a5:ad:75:5d:98:64:df:d4:c3:61:16:6f:af:01:
dc:65:9f:2d:d9:91:44:e5:1c:ee:6e:3b:fb:8f:bd:0d:5a:f9:
07:26:ff:a1:97:04:d4:5d:7a:3e:6c:14:06:0c:a7:73:47:75:
17:62:9e:9a:f2:d3:b1:c3:a5:21:9e:b5:13:3c:a9:46:de:9c:
7e:84:c6:34:9c:73:df:8a:3a:f3:9f:a5:d9:2a:30:8d:e8:37:
b7:ce:f4:8c
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgIBAzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygxMTQ2
NUZDMzRBMDg3ODEzMjlDNDg4MjNGNDkxMDQ3NjVCNUMzMzNCMB4XDTIxMTEwMzAy
MzY0NloXDTIyMTEwMjAxMzAyN1owMzExMC8GA1UEAxMoNzdDMzlEN0NFMzIyNjIw
MDlERDc4MTEzNzI3QUVERDA3NkI4RDk1RDCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAM94lYtuHYDReSSfrPNKpC1Hjf99elK3ujzvVC8eyrp5sD40sdrz
/F/H0IFQ204U1nlFwTZAZRzJyNTAHHpvXNtyW5CVOETo1Nxvux1aw0xlvtl87Nrg
gOrEKxRjPS7silB8R3KOGIkC3Dh5kHfMnyl2qVq5EwXUmvWXET+sHdBVZs+TJp4D
jld4sARHRrMDot5ZNLuJbvk7izIB2rv20rAYe261gXWudUigUtmccdIOeqWcjkpr
VIJQWuSnZMUtq9SMgyGZGB5eLXRqnS6dXgHbBmJtM4ut74G9ZMVsytAhgMVUvQkq
rEVYnGdrIgtKlRZakQZSRWAytsUPj3YJU/8CAwEAAaOCAfAwggHsMB0GA1UdDgQW
BBR3w5184yJiAJ3XgRNyeu3QdrjZXTAfBgNVHSMEGDAWgBQRRl/DSgh4EynEiCP0
kQR2W1wzOzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ
oE6GTHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSEFJSklO
L0VVWmZ3MG9JZUJNcHhJZ2o5SkVFZGx0Y016cy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvRVVaZncwb0llQk1weElnajlKRUVkbHRjTXpzLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hBSUpJTi9kOE9kZk9NaVlnQ2QxNEVU
Y25ydDBIYTQyVjAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMu
dHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB
Z66aMA0GCSqGSIb3DQEBCwUAA4IBAQBuVRSQe3A0/ewV3K3EEyI2jKc2VeNUyu/S
zysdPb1h/yuqrhHE7ElMbZFtopbIkzubZAt0Q37P/JXhAa/MkMcciaOwzKJkoUxn
+i3SqCEuM1vpQLgwcgZQwzhNlJ3jZp/g7UezrJv5j9O5bRp/+2sltPymY0eMT/G8
7xnTf8jUnMnMS7hsmKaSnNKiFb3ozNSoq1f1h2KoH+xtbYSSrlXYO5/Oc112pa11
XZhk39TDYRZvrwHcZZ8t2ZFE5Rzubjv7j70NWvkHJv+hlwTUXXo+bBQGDKdzR3UX
Yp6a8tOxw6UhnrUTPKlG3px+hMY0nHPfijrzn6XZKjCN6De3zvSM
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org