Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GANGUTECH/opJIFS0fSBO8yZERyrzElq8PXKw.roa
File: opJIFS0fSBO8yZERyrzElq8PXKw.roa (raw, json)
Hash identifier: kIAlrpUeP3G+/zz2ag5Z+STM4ynjKQf/iQ6iZ30TINw=
Subject key identifier: A2:92:48:15:2D:1F:48:13:BC:C9:91:11:CA:BC:C4:96:AF:0F:5C:AC
Certificate issuer: /CN=8933B03DC3983B9655E78EB83C2ADA979382F6D0
Certificate serial: 03
Authority key identifier: 89:33:B0:3D:C3:98:3B:96:55:E7:8E:B8:3C:2A:DA:97:93:82:F6:D0
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/iTOwPcOYO5ZV5464PCral5OC9tA.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GANGUTECH/opJIFS0fSBO8yZERyrzElq8PXKw.roa
Signing time: Mon 15 Nov 2021 07:13:03 +0000
ROA not before: Mon 15 Nov 2021 07:13:03 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131679
IP address blocks: 103.150.230.0/23 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8933B03DC3983B9655E78EB83C2ADA979382F6D0
Validity
Not Before: Nov 15 07:13:03 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=A29248152D1F4813BCC99111CABCC496AF0F5CAC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:0a:be:a8:7c:a8:3f:ac:d1:d3:7c:7b:61:d5:
6d:eb:ab:a6:f2:63:0f:33:7e:5b:cb:37:bc:73:e5:
8a:f5:21:72:a4:fd:cc:73:7c:f0:47:c5:42:60:2b:
b3:b9:46:3a:0b:79:15:b2:70:f7:c5:45:e6:6c:22:
f0:02:c8:68:a7:0b:67:1b:97:9a:2f:35:60:ff:d4:
8f:18:28:35:92:4e:3d:ad:3c:df:4c:1b:2c:5c:57:
ff:24:90:64:57:70:a7:9d:a0:46:4d:00:88:bb:a0:
5f:84:80:a7:b0:f5:e2:e5:9b:a2:f7:e9:77:a8:99:
70:37:f8:51:55:df:9a:f4:8e:e7:5d:4a:da:0f:9c:
3d:0b:ad:35:77:eb:23:db:40:ee:bf:c7:af:8d:9a:
4d:29:ec:f3:54:07:bf:2e:7c:af:0e:1a:fb:72:e3:
95:d2:b0:c7:51:23:31:3d:6e:c5:7f:a6:64:c9:7a:
8e:52:44:6b:f0:fd:f5:e3:e6:37:34:ab:03:f4:87:
60:30:62:b3:86:cb:bb:81:17:16:26:64:3c:07:e7:
f5:17:9f:9c:09:62:36:56:ea:43:78:06:69:4d:d5:
77:c3:af:a6:b4:13:83:9f:2d:3f:9b:04:4c:58:d4:
08:c0:25:76:b9:b5:3d:82:f3:ca:e0:76:2b:48:d3:
e2:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:92:48:15:2D:1F:48:13:BC:C9:91:11:CA:BC:C4:96:AF:0F:5C:AC
X509v3 Authority Key Identifier:
keyid:89:33:B0:3D:C3:98:3B:96:55:E7:8E:B8:3C:2A:DA:97:93:82:F6:D0
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GANGUTECH/iTOwPcOYO5ZV5464PCral5OC9tA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/iTOwPcOYO5ZV5464PCral5OC9tA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GANGUTECH/opJIFS0fSBO8yZERyrzElq8PXKw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.150.230.0/23
Signature Algorithm: sha256WithRSAEncryption
06:02:a8:9a:1d:b8:99:27:0a:2c:a6:e3:ac:97:9e:89:09:fc:
17:b3:47:d7:dd:b5:77:62:76:9a:66:51:36:fb:7b:59:35:3a:
34:db:6a:e9:2a:5c:f4:9e:0c:a8:5f:e7:77:f2:0b:27:d3:ea:
ce:50:47:6d:03:51:1e:24:24:d6:9b:d3:81:19:0c:6c:66:49:
24:1b:94:94:45:d8:51:6d:da:b2:69:de:40:77:00:1c:94:eb:
18:8d:e3:4b:72:5d:50:3f:06:19:a1:29:da:c2:67:57:26:6a:
d1:c9:0b:4b:eb:d6:a5:43:a9:5e:60:f9:ef:f7:d7:10:2b:1f:
9a:88:41:3b:bd:98:e2:e4:61:88:09:0b:8f:8f:d5:bb:cb:b3:
46:a3:41:57:00:1a:31:3d:26:d1:e8:00:c3:7b:b0:9d:be:4b:
a8:37:f6:a5:d4:a4:13:46:8d:f9:35:42:c9:dc:1b:ae:4f:d6:
ca:fd:69:ef:2f:a9:bc:12:5f:2c:52:12:7a:e7:c4:79:3e:3c:
38:70:fc:de:cc:53:8e:ca:02:3e:02:db:39:6d:03:f6:29:39:
a5:38:88:1a:02:3d:7f:e1:49:5c:d0:4d:6d:6a:a0:21:23:12:
7d:03:c6:6a:d1:1d:6b:e1:4e:d7:4c:93:cf:13:32:ca:f3:25:
0a:26:92:ae
-----BEGIN CERTIFICATE-----
MIIE1zCCA7+gAwIBAgIBAzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4OTMz
QjAzREMzOTgzQjk2NTVFNzhFQjgzQzJBREE5NzkzODJGNkQwMB4XDTIxMTExNTA3
MTMwM1oXDTIyMDkyOTAyMzYyMlowMzExMC8GA1UEAxMoQTI5MjQ4MTUyRDFGNDgx
M0JDQzk5MTExQ0FCQ0M0OTZBRjBGNUNBQzCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAKUKvqh8qD+s0dN8e2HVbeurpvJjDzN+W8s3vHPlivUhcqT9zHN8
8EfFQmArs7lGOgt5FbJw98VF5mwi8ALIaKcLZxuXmi81YP/UjxgoNZJOPa0830wb
LFxX/ySQZFdwp52gRk0AiLugX4SAp7D14uWbovfpd6iZcDf4UVXfmvSO511K2g+c
PQutNXfrI9tA7r/Hr42aTSns81QHvy58rw4a+3LjldKwx1EjMT1uxX+mZMl6jlJE
a/D99ePmNzSrA/SHYDBis4bLu4EXFiZkPAfn9RefnAliNlbqQ3gGaU3Vd8OvprQT
g58tP5sETFjUCMAldrm1PYLzyuB2K0jT4i8CAwEAAaOCAfQwggHwMB0GA1UdDgQW
BBSikkgVLR9IE7zJkRHKvMSWrw9crDAfBgNVHSMEGDAWgBSJM7A9w5g7llXnjrg8
KtqXk4L20DAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF8GA1UdHwRYMFYwVKBS
oFCGTnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9HQU5HVVRF
Q0gvaVRPd1BjT1lPNVpWNTQ2NFBDcmFsNU9DOXRBLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9pVE93UGNPWU81WlY1NDY0UENyYWw1T0M5dEEuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBnwYIKwYBBQUHAQsEgZIwgY8wWgYIKwYBBQUHMAuGTnJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9HQU5HVVRFQ0gvb3BKSUZTMGZTQk84
eVpFUnlyekVscThQWEt3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3
bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEAWeW5jANBgkqhkiG9w0BAQsFAAOCAQEABgKomh24mScKLKbjrJeeiQn8F7NH
1921d2J2mmZRNvt7WTU6NNtq6Spc9J4MqF/nd/ILJ9PqzlBHbQNRHiQk1pvTgRkM
bGZJJBuUlEXYUW3asmneQHcAHJTrGI3jS3JdUD8GGaEp2sJnVyZq0ckLS+vWpUOp
XmD57/fXECsfmohBO72Y4uRhiAkLj4/Vu8uzRqNBVwAaMT0m0egAw3uwnb5LqDf2
pdSkE0aN+TVCydwbrk/Wyv1p7y+pvBJfLFISeufEeT48OHD83sxTjsoCPgLbOW0D
9ik5pTiIGgI9f+FJXNBNbWqgISMSfQPGatEda+FO10yTzxMyyvMlCiaSrg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org