Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GARENATW/3pVAmujYAbM5tGpljL8sHP5uCPg.roa
File: 3pVAmujYAbM5tGpljL8sHP5uCPg.roa (raw, json)
Hash identifier: i3QmgoarTx0pY3bQSo2vdS4dkO9rzzlOhRaG2mbLt6A=
Subject key identifier: DE:95:40:9A:E8:D8:01:B3:39:B4:6A:65:8C:BF:2C:1C:FE:6E:08:F8
Certificate issuer: /CN=261E03DBE27DFCD8B3E0C55F2F0433EA022D1D4B
Certificate serial: 0764
Authority key identifier: 26:1E:03:DB:E2:7D:FC:D8:B3:E0:C5:5F:2F:04:33:EA:02:2D:1D:4B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Jh4D2-J9_Niz4MVfLwQz6gItHUs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GARENATW/3pVAmujYAbM5tGpljL8sHP5uCPg.roa
Signing time: Tue 29 Sep 2020 10:03:45 +0000
ROA not before: Tue 29 Sep 2020 10:03:45 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131630
IP address blocks: 103.121.176.0/22 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1892 (0x764)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=261E03DBE27DFCD8B3E0C55F2F0433EA022D1D4B
Validity
Not Before: Sep 29 10:03:45 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=DE95409AE8D801B339B46A658CBF2C1CFE6E08F8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e1:22:0e:f2:39:ca:bf:7e:00:ac:21:82:a1:
c8:f6:65:bb:2a:7b:aa:81:3c:64:a8:44:90:d6:6c:
05:13:03:31:f9:0b:7b:8e:36:90:ce:fc:eb:08:27:
34:39:62:d7:81:84:19:b1:8c:d4:35:c0:d7:9a:e5:
75:90:79:9a:84:c6:05:ff:19:c7:41:cd:bf:38:90:
95:76:61:91:31:4d:b3:ca:8f:7b:2b:55:83:e0:49:
f1:71:18:1d:42:ec:43:c5:f9:90:c5:d4:b7:98:11:
80:9d:bf:be:be:0e:e8:59:3c:0f:f2:d8:c4:7e:32:
1b:60:47:ea:c0:c7:ce:e2:62:59:bb:d4:18:a6:d4:
c3:ac:62:e5:d8:44:e2:b2:03:09:f9:03:ad:d7:92:
55:0f:1d:eb:eb:12:4f:57:46:c3:2e:2a:e5:67:d7:
7e:9c:12:48:be:6d:43:5c:a0:8d:0c:cd:48:8c:0e:
d8:95:cd:1b:fa:50:b2:e0:11:53:58:3f:ff:3f:4b:
55:3d:c2:d9:38:94:bc:11:ca:85:32:c6:e3:2a:2e:
b6:45:1a:be:6c:7d:21:90:39:60:54:33:12:91:e0:
a9:7f:04:1c:e7:d7:8d:90:14:f6:95:ed:5d:53:8b:
30:37:70:10:f9:55:49:e2:c7:2d:53:13:41:d2:96:
a6:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:95:40:9A:E8:D8:01:B3:39:B4:6A:65:8C:BF:2C:1C:FE:6E:08:F8
X509v3 Authority Key Identifier:
keyid:26:1E:03:DB:E2:7D:FC:D8:B3:E0:C5:5F:2F:04:33:EA:02:2D:1D:4B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GARENATW/Jh4D2-J9_Niz4MVfLwQz6gItHUs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Jh4D2-J9_Niz4MVfLwQz6gItHUs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GARENATW/3pVAmujYAbM5tGpljL8sHP5uCPg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.121.176.0/22
Signature Algorithm: sha256WithRSAEncryption
b9:29:55:85:a1:42:7f:0e:27:09:ba:68:59:15:2e:8d:f5:3f:
c5:dd:22:1f:6a:42:3d:06:f4:25:61:d8:4c:9d:02:08:39:fe:
89:a8:31:e8:5c:36:93:3e:04:6e:9f:ff:fb:aa:d8:3b:a9:65:
b3:5c:fd:fb:79:6e:a3:d6:9e:e3:7f:d8:ce:52:59:63:92:50:
fe:ad:d5:f6:7f:23:76:6c:c8:c5:0e:10:24:c8:0e:d0:4f:d1:
30:e8:6e:a1:fe:b4:71:a4:b9:96:10:7e:84:85:bf:17:1c:6e:
4c:04:60:4c:d2:87:7d:7c:fa:eb:3f:21:aa:82:9e:e2:51:65:
55:11:a8:03:c0:08:25:bf:40:a8:cd:51:59:95:79:87:e5:d4:
25:c3:ee:1f:2c:66:cf:f3:a1:50:64:72:37:1a:5b:5f:92:5e:
22:4c:dd:2e:8d:43:c7:5a:f8:95:d2:c8:e5:f1:5d:56:04:07:
ce:1b:3f:f4:5a:2c:1c:e7:a9:2f:e0:f5:a7:9a:17:40:17:24:
47:81:b4:7d:b0:51:0b:96:c2:6f:11:b7:21:91:48:6c:95:35:
27:bd:e0:b4:44:0b:11:7d:2e:b0:18:75:9e:09:77:0e:80:7c:
68:41:a2:2a:8e:3f:26:38:43:78:87:d8:ea:8c:24:53:f1:fc:
ad:18:26:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org