Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/JNRKsukB7IMHetWsb0GyXns716s.roa
File: JNRKsukB7IMHetWsb0GyXns716s.roa (raw, json)
Hash identifier: HNncMH+7vYyTZQ4yBM596nnaW9+QLYGgdbSbY4s13Wk=
Subject key identifier: 24:D4:4A:B2:E9:01:EC:83:07:7A:D5:AC:6F:41:B2:5E:7B:3B:D7:AB
Certificate issuer: /CN=165495E8D327E4F62D5A16438F080E608A34D0D3
Certificate serial: 0C65
Authority key identifier: 16:54:95:E8:D3:27:E4:F6:2D:5A:16:43:8F:08:0E:60:8A:34:D0:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FlSV6NMn5PYtWhZDjwgOYIo00NM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/JNRKsukB7IMHetWsb0GyXns716s.roa
Signing time: Thu 15 Sep 2022 02:50:50 +0000
ROA not before: Thu 15 Sep 2022 02:50:50 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 131658
IP address blocks: 2404:bac0::/32 maxlen: 32
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3173 (0xc65)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=165495E8D327E4F62D5A16438F080E608A34D0D3
Validity
Not Before: Sep 15 02:50:50 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=24D44AB2E901EC83077AD5AC6F41B25E7B3BD7AB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:1d:2c:82:a2:f6:92:ef:8b:52:5f:83:e8:61:
9f:37:bd:c2:db:27:d4:80:d1:52:0c:e5:e0:11:02:
66:c9:d1:88:ee:3f:18:3d:cd:cb:8f:f6:99:ca:35:
6e:d3:05:1f:8f:a9:60:ef:1d:82:f6:49:ff:1e:19:
81:e0:b5:80:71:99:6c:1b:fb:2a:82:a6:54:7c:5c:
2d:6a:d4:14:b8:76:62:29:09:76:dc:70:7d:ac:a3:
da:81:de:fc:40:41:76:db:89:9e:16:13:74:83:29:
56:5f:a7:31:be:49:b4:c0:19:6f:fd:42:65:21:bf:
98:97:92:a0:88:d5:35:8d:3a:8b:2f:04:57:a8:d5:
04:06:21:e6:b9:8a:d4:e1:51:52:12:c9:86:29:da:
c3:bd:7a:83:a2:66:c5:96:b9:19:82:10:e7:b7:1c:
43:d2:d5:aa:2d:d5:0c:b3:7b:94:43:4d:81:c1:af:
1a:4a:ed:a2:98:df:24:a2:75:da:fb:ac:d2:ce:b1:
56:bd:50:46:91:b9:c6:f0:62:6f:56:f6:63:df:4b:
2c:00:c0:f7:e4:f0:da:eb:48:a4:20:46:81:f6:22:
9c:11:58:9a:be:15:8c:b1:08:82:7d:e6:8e:8b:d9:
e0:6a:86:b6:05:8c:e5:a0:7f:32:39:a7:08:5b:43:
99:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:D4:4A:B2:E9:01:EC:83:07:7A:D5:AC:6F:41:B2:5E:7B:3B:D7:AB
X509v3 Authority Key Identifier:
keyid:16:54:95:E8:D3:27:E4:F6:2D:5A:16:43:8F:08:0E:60:8A:34:D0:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/FlSV6NMn5PYtWhZDjwgOYIo00NM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FlSV6NMn5PYtWhZDjwgOYIo00NM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/JNRKsukB7IMHetWsb0GyXns716s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:bac0::/32
Signature Algorithm: sha256WithRSAEncryption
b4:74:66:83:49:f0:e6:bb:c3:21:4f:c2:24:b0:f5:db:cc:84:
44:6d:47:6b:87:ac:69:b1:48:a0:f2:84:7a:94:cf:e5:eb:02:
83:97:8d:23:fc:4f:20:7e:3e:92:21:67:c1:6e:23:f4:5c:c9:
1e:32:2e:49:dc:75:f9:bb:8d:ab:d1:d3:be:95:d6:82:e2:67:
bc:72:40:35:d4:53:2c:38:d4:03:bb:9d:ae:70:65:f7:43:da:
20:79:f9:62:a5:01:8f:a8:cd:e3:5a:84:48:ef:2e:eb:80:ef:
7e:b7:d3:9d:84:cc:95:f4:a3:86:94:4c:5c:e8:ab:3c:88:7f:
22:b0:b4:83:eb:64:26:f3:2e:dd:86:9f:86:66:a7:fc:e8:23:
33:7b:5a:b6:38:0c:da:db:94:a5:2a:8d:e0:2d:f8:c8:f2:dc:
63:a1:20:a8:ca:5d:44:6e:15:4c:72:e0:38:e8:0f:74:c0:62:
21:24:ce:5c:3d:f9:58:7d:45:c5:b9:df:c8:4d:c7:30:2a:83:
b5:d0:9b:49:83:53:ff:f2:be:8f:49:d3:d3:23:e0:62:10:62:
d2:5a:94:08:6a:b4:84:e0:60:71:f0:99:98:76:75:13:b8:ba:
37:3c:bb:52:27:76:86:cf:68:32:0e:9a:7a:b3:69:8d:b4:08:
b0:a1:2e:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:56:22 2025 by rpki-client