Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GANGUTECH/IQQJSnEXWAPOVQKA6Pv3eBuit0E.roa
File: IQQJSnEXWAPOVQKA6Pv3eBuit0E.roa (raw, json)
Hash identifier: CRS2DAc2aLZuZ/TphNo7gPQi6FDcr+aiAuczc4SdwVM=
Subject key identifier: 21:04:09:4A:71:17:58:03:CE:55:02:80:E8:FB:F7:78:1B:A2:B7:41
Certificate issuer: /CN=8933B03DC3983B9655E78EB83C2ADA979382F6D0
Certificate serial: 01BD
Authority key identifier: 89:33:B0:3D:C3:98:3B:96:55:E7:8E:B8:3C:2A:DA:97:93:82:F6:D0
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/iTOwPcOYO5ZV5464PCral5OC9tA.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GANGUTECH/IQQJSnEXWAPOVQKA6Pv3eBuit0E.roa
Signing time: Fri 01 Sep 2023 08:51:38 +0000
ROA not before: Fri 01 Sep 2023 08:51:38 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131679
IP address blocks: 103.150.230.0/23 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 445 (0x1bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8933B03DC3983B9655E78EB83C2ADA979382F6D0
Validity
Not Before: Sep 1 08:51:38 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=2104094A71175803CE550280E8FBF7781BA2B741
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:d6:20:35:8d:72:ca:78:33:3e:61:a0:6e:98:
be:cd:9c:12:25:46:02:d7:a6:3c:85:b6:d8:67:a5:
bb:6e:8b:65:0b:31:53:26:fd:8b:69:82:07:ad:3c:
71:25:d9:e3:80:98:bd:1f:e5:78:78:f9:01:fe:e6:
4a:78:b7:40:5e:55:03:f2:a2:db:99:5c:7c:89:78:
1b:cf:ad:fc:a6:00:fb:39:f9:4a:9e:46:3f:6d:2e:
9f:bf:d4:b7:09:fc:b9:4d:15:34:f1:d2:88:a1:80:
c8:57:9b:04:88:92:e9:ba:5c:fe:8b:7b:f8:57:e0:
75:de:c0:1c:be:3f:d8:32:49:c0:27:bf:85:a9:fb:
1d:97:21:aa:91:2d:25:fb:fb:95:0b:dc:2e:6e:0a:
0e:3b:8c:d3:a1:fb:59:42:38:0e:f9:c6:7a:12:eb:
27:9c:ef:9d:2d:ab:cb:78:d8:c7:35:c5:0d:1e:71:
ee:b8:e7:18:92:88:35:85:a0:bb:41:cc:45:d3:a6:
ce:80:2f:90:8b:63:50:97:25:b1:97:94:f5:b1:c9:
55:c2:5c:ad:eb:e1:9d:13:ee:3c:b5:13:c9:7d:38:
62:83:1e:81:1f:3c:d5:5a:dd:e7:71:5b:0d:a3:83:
fc:15:0e:b6:b3:79:d2:50:2b:c7:b6:60:23:27:20:
58:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:04:09:4A:71:17:58:03:CE:55:02:80:E8:FB:F7:78:1B:A2:B7:41
X509v3 Authority Key Identifier:
keyid:89:33:B0:3D:C3:98:3B:96:55:E7:8E:B8:3C:2A:DA:97:93:82:F6:D0
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GANGUTECH/iTOwPcOYO5ZV5464PCral5OC9tA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/iTOwPcOYO5ZV5464PCral5OC9tA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GANGUTECH/IQQJSnEXWAPOVQKA6Pv3eBuit0E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.150.230.0/23
Signature Algorithm: sha256WithRSAEncryption
5b:c9:29:db:29:07:03:a9:c3:bd:84:14:bf:0b:27:98:f7:d3:
0f:0c:f9:4b:c1:48:c5:21:5c:5c:b0:4c:d9:bd:90:02:c7:7e:
eb:3e:16:13:ec:de:43:4e:f4:d8:48:7f:6f:aa:b1:b7:ba:d2:
17:d2:13:ad:5d:58:e2:b6:2b:12:2e:ab:65:12:98:9c:49:37:
48:57:89:7b:29:dc:59:e2:8d:33:42:c9:34:16:39:51:fd:fe:
ee:27:00:df:d4:ec:c5:e6:13:c4:ac:4a:e3:c5:a2:97:fd:7d:
89:76:32:09:b3:93:91:c6:f9:52:ea:97:8e:3c:97:33:0f:5d:
7f:be:61:96:f6:d9:b2:3e:44:41:06:bb:03:82:03:8b:a3:29:
b5:90:f1:b6:c7:b7:38:cd:4f:4f:77:aa:c6:26:13:e7:c9:9a:
47:5e:0c:eb:e3:c0:06:0f:82:4b:a8:96:62:42:b7:3c:b3:97:
3a:cf:50:e2:ab:99:f3:0e:ef:f1:35:11:b6:41:a2:98:26:c0:
5d:f8:29:f8:a4:16:fc:f5:2a:3f:62:f6:a6:7e:7c:47:b3:e0:
69:1d:5f:32:f8:ec:f4:25:89:57:50:e6:44:80:5b:f2:ac:02:
cb:e4:57:db:34:f7:ce:b4:c8:5f:63:0b:7b:03:a0:0e:8b:2d:
10:a5:79:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org