Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/l-JGXb2KoMmb-0SRTbLGDsjbGVY.roa
File: l-JGXb2KoMmb-0SRTbLGDsjbGVY.roa (raw, json)
Hash identifier: Qs/Ne407EhfYsKs37Lz0FzLNbv23S/OBzERQcHFUdrk=
Subject key identifier: 97:E2:46:5D:BD:8A:A0:C9:9B:FB:44:91:4D:B2:C6:0E:C8:DB:19:56
Certificate issuer: /CN=165495E8D327E4F62D5A16438F080E608A34D0D3
Certificate serial: 0976
Authority key identifier: 16:54:95:E8:D3:27:E4:F6:2D:5A:16:43:8F:08:0E:60:8A:34:D0:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FlSV6NMn5PYtWhZDjwgOYIo00NM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/l-JGXb2KoMmb-0SRTbLGDsjbGVY.roa
Signing time: Tue 29 Sep 2020 10:03:40 +0000
ROA not before: Tue 29 Sep 2020 10:03:40 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131658
IP address blocks: 2404:bac0::/44 maxlen: 44
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2422 (0x976)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=165495E8D327E4F62D5A16438F080E608A34D0D3
Validity
Not Before: Sep 29 10:03:40 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=97E2465DBD8AA0C99BFB44914DB2C60EC8DB1956
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:02:a7:81:db:32:69:0c:66:a2:85:f0:5e:f8:
5c:59:53:22:27:0c:1e:8c:92:8a:8e:57:b2:be:d1:
f1:fe:02:b6:3b:dc:1c:41:2d:a2:e4:5e:e2:a4:41:
64:ca:1d:6f:e3:ce:41:d2:a4:7e:fe:2f:51:8b:bb:
66:eb:38:3a:60:a4:95:fc:9e:ab:85:1f:d7:03:9a:
d4:fd:33:5a:0f:69:69:d7:ef:70:d9:af:21:77:b6:
53:08:b2:02:f0:0b:c1:49:c5:e5:2e:91:aa:22:0d:
26:a3:be:e5:1e:28:4d:f9:6d:ee:57:7f:51:b6:db:
d2:d1:df:04:96:cb:00:2a:c9:27:ec:98:b9:42:4a:
9e:3d:3f:e6:1a:5d:c5:74:ae:c9:6f:87:17:74:0c:
9a:3b:48:90:b6:12:27:b9:33:cd:40:c8:4d:1c:73:
9b:18:dc:e9:13:9a:b3:f1:af:93:e5:ab:03:4d:da:
2e:3a:04:d2:a5:55:b5:03:53:c4:d2:2a:fa:b0:d5:
cf:1e:98:ea:2e:5c:5d:4b:3d:8f:a4:46:1b:de:84:
28:52:a9:37:a7:5c:26:6c:1c:71:96:7e:ce:7b:59:
d3:ca:94:2b:f8:9f:aa:a6:68:2d:e7:02:53:45:23:
94:fc:f0:38:ec:68:02:75:25:50:4f:e3:ef:cd:2a:
78:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:E2:46:5D:BD:8A:A0:C9:9B:FB:44:91:4D:B2:C6:0E:C8:DB:19:56
X509v3 Authority Key Identifier:
keyid:16:54:95:E8:D3:27:E4:F6:2D:5A:16:43:8F:08:0E:60:8A:34:D0:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/FlSV6NMn5PYtWhZDjwgOYIo00NM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FlSV6NMn5PYtWhZDjwgOYIo00NM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/l-JGXb2KoMmb-0SRTbLGDsjbGVY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:bac0::/44
Signature Algorithm: sha256WithRSAEncryption
28:3b:c3:7d:15:58:a3:e3:3f:c0:2a:7b:c0:48:e4:3f:0b:4e:
fb:af:83:f1:c8:fe:9c:b6:21:d2:09:0d:4a:23:5b:e5:8f:e8:
24:df:ff:fe:b2:fe:ec:e4:d3:cf:66:d6:64:55:07:e7:64:a5:
73:c0:3e:84:12:47:a4:2c:d0:51:43:f7:a2:b0:c5:31:b8:92:
e2:04:17:4e:87:00:04:1b:59:d6:94:05:25:3a:06:4a:c3:64:
b2:2a:11:af:f7:df:3e:4a:6f:33:2f:6a:ff:b5:b2:b9:ed:95:
02:de:e4:6a:ca:8f:22:9d:a9:a1:e5:f9:5b:f7:e6:0e:a7:1b:
d1:ba:45:02:33:b0:94:13:fc:a8:6b:53:0d:0e:7b:e0:4a:9d:
18:4e:1f:bd:1d:3b:7a:8a:91:ad:cb:3c:64:11:68:aa:77:d1:
2d:81:d0:2f:10:1c:08:3e:b5:06:e6:b0:93:a0:b4:fa:0a:f9:
90:e8:e1:ce:9b:76:05:92:a9:99:6a:1f:8f:aa:3c:dc:fc:87:
b9:2b:79:c7:e1:84:78:35:0f:e6:22:1b:be:77:cf:20:51:20:
ff:f4:d7:c0:91:11:16:05:93:82:25:67:63:44:c7:6d:c3:29:
b1:b3:8e:91:87:02:ca:00:29:c3:aa:90:f5:ce:7e:b5:00:11:
47:ac:fa:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:43:22 2025 by rpki-client