Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GARENATW/CTrp2eV-mucV8qEOZN0PzrbpXJ4.roa
File: CTrp2eV-mucV8qEOZN0PzrbpXJ4.roa (raw, json)
Hash identifier: r6gOh6jCRtjPxH3TgsJVPrazFZ0X9GBfYk5wTqHXEjg=
Subject key identifier: 09:3A:E9:D9:E5:7E:9A:E7:15:F2:A1:0E:64:DD:0F:CE:B6:E9:5C:9E
Certificate issuer: /CN=261E03DBE27DFCD8B3E0C55F2F0433EA022D1D4B
Certificate serial: 08AB
Authority key identifier: 26:1E:03:DB:E2:7D:FC:D8:B3:E0:C5:5F:2F:04:33:EA:02:2D:1D:4B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Jh4D2-J9_Niz4MVfLwQz6gItHUs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GARENATW/CTrp2eV-mucV8qEOZN0PzrbpXJ4.roa
Signing time: Sun 07 Feb 2021 12:48:29 +0000
ROA not before: Sun 07 Feb 2021 12:48:29 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 103.121.176.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2219 (0x8ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=261E03DBE27DFCD8B3E0C55F2F0433EA022D1D4B
Validity
Not Before: Feb 7 12:48:29 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=093AE9D9E57E9AE715F2A10E64DD0FCEB6E95C9E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:4c:73:24:6b:37:80:5a:5e:69:59:9f:61:18:
e2:3d:d0:cf:d7:7e:eb:8f:ee:a9:3c:52:73:59:3b:
1b:cf:52:9f:e9:7d:07:12:02:09:c2:b6:a5:cb:81:
2e:20:32:f7:56:5b:0c:69:97:7f:67:00:a2:01:fd:
24:3c:39:cd:6b:05:ea:cd:ab:96:18:27:38:44:62:
74:e8:d3:c9:7d:51:a5:19:5b:26:b2:69:3b:25:e4:
ef:58:16:3a:cd:47:2b:97:a9:c0:0a:33:61:fd:de:
59:58:ba:24:c9:cc:51:1d:2b:8b:52:01:ac:c3:4a:
22:db:78:c3:27:6c:05:06:d4:63:ae:5e:61:20:a2:
7c:24:bd:35:2d:2e:3e:70:b5:ac:89:e5:da:a6:9a:
95:5b:e1:60:33:6c:fb:b2:6a:9d:44:34:cc:4f:29:
45:c2:30:b0:bc:47:b2:d5:dd:ea:f0:9a:9f:77:68:
0c:7c:51:35:d3:9c:88:42:a6:98:dc:b5:37:0b:89:
0a:37:1e:bf:d5:a6:55:e0:55:72:72:6b:d5:c5:e0:
33:5e:ed:b3:78:b8:0d:b7:83:92:d7:38:2b:3e:c8:
ac:92:9d:4f:9e:28:d1:6c:9b:b9:a3:1c:99:6d:30:
54:38:4c:66:4d:e1:77:6e:82:3e:9b:f8:ef:2c:f7:
e2:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:3A:E9:D9:E5:7E:9A:E7:15:F2:A1:0E:64:DD:0F:CE:B6:E9:5C:9E
X509v3 Authority Key Identifier:
keyid:26:1E:03:DB:E2:7D:FC:D8:B3:E0:C5:5F:2F:04:33:EA:02:2D:1D:4B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GARENATW/Jh4D2-J9_Niz4MVfLwQz6gItHUs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Jh4D2-J9_Niz4MVfLwQz6gItHUs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GARENATW/CTrp2eV-mucV8qEOZN0PzrbpXJ4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.121.176.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:12:81:e4:ea:06:1f:74:53:fd:89:fc:d9:72:e5:3c:67:d8:
b9:a9:e1:03:5e:46:67:0e:17:59:bf:27:ec:23:85:1a:95:47:
1b:94:dc:c8:68:c6:3a:38:01:dc:50:70:f9:77:f4:7b:6f:84:
f9:ce:ac:d0:ce:ee:84:4d:be:33:52:a5:f8:cf:a4:07:fc:8f:
fa:ad:31:72:61:45:dc:6e:88:2a:68:46:20:ff:cc:d0:0e:cd:
e2:06:f4:e3:de:ce:90:9d:85:f7:09:80:a6:9a:21:27:e2:fd:
b3:df:c5:62:a7:07:6f:5e:e7:50:94:cf:9b:14:aa:33:d2:c6:
d3:32:b3:c1:d4:2a:cb:f7:39:df:4f:1f:62:65:1c:66:f1:7f:
e0:58:47:77:b7:0c:5b:cb:ef:b6:ac:70:2f:ee:e0:0c:45:be:
e2:d0:bd:42:ff:fa:92:c4:73:91:16:d7:09:9f:61:8a:cf:ea:
15:93:81:4d:d2:af:ad:87:92:55:22:d3:21:0e:ff:89:b4:8b:
10:68:4f:c2:55:ae:ec:4b:53:24:bf:e4:de:5d:e1:d8:b8:11:
4b:b4:02:51:c9:98:1d:5d:20:59:b1:37:7d:bc:9e:7b:51:41:
65:c5:f0:75:8f:21:e6:f6:9a:aa:15:ae:73:3e:d2:a3:57:fd:
59:a8:fc:1c
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICCKswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjYx
RTAzREJFMjdERkNEOEIzRTBDNTVGMkYwNDMzRUEwMjJEMUQ0QjAeFw0yMTAyMDcx
MjQ4MjlaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDA5M0FFOUQ5RTU3RTlB
RTcxNUYyQTEwRTY0REQwRkNFQjZFOTVDOUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDJTHMkazeAWl5pWZ9hGOI90M/XfuuP7qk8UnNZOxvPUp/pfQcS
AgnCtqXLgS4gMvdWWwxpl39nAKIB/SQ8Oc1rBerNq5YYJzhEYnTo08l9UaUZWyay
aTsl5O9YFjrNRyuXqcAKM2H93llYuiTJzFEdK4tSAazDSiLbeMMnbAUG1GOuXmEg
onwkvTUtLj5wtayJ5dqmmpVb4WAzbPuyap1ENMxPKUXCMLC8R7LV3erwmp93aAx8
UTXTnIhCppjctTcLiQo3Hr/VplXgVXJya9XF4DNe7bN4uA23g5LXOCs+yKySnU+e
KNFsm7mjHJltMFQ4TGZN4Xdugj6b+O8s9+I9AgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUCTrp2eV+mucV8qEOZN0PzrbpXJ4wHwYDVR0jBBgwFoAUJh4D2+J9/Niz4MVf
LwQz6gItHUswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR0FSRU5B
VFcvSmg0RDItSjlfTml6NE1WZkx3UXo2Z0l0SFVzLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9KaDREMi1KOV9OaXo0TVZmTHdRejZnSXRIVXMuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9HQVJFTkFUVy9DVHJwMmVWLW11Y1Y4
cUVPWk4wUHpyYnBYSjQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQAZ3mwMA0GCSqGSIb3DQEBCwUAA4IBAQCfEoHk6gYfdFP9ifzZcuU8Z9i5qeED
XkZnDhdZvyfsI4UalUcblNzIaMY6OAHcUHD5d/R7b4T5zqzQzu6ETb4zUqX4z6QH
/I/6rTFyYUXcbogqaEYg/8zQDs3iBvTj3s6QnYX3CYCmmiEn4v2z38VipwdvXudQ
lM+bFKoz0sbTMrPB1CrL9znfTx9iZRxm8X/gWEd3twxby++2rHAv7uAMRb7i0L1C
//qSxHORFtcJn2GKz+oVk4FN0q+th5JVItMhDv+JtIsQaE/CVa7sS1Mkv+TeXeHY
uBFLtAJRyZgdXSBZsTd9vJ57UUFlxfB1jyHm9pqqFa5zPtKjV/1ZqPwc
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:54 2023 by rpki-client on console-ams.rpki-client.org