Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GARENATW/tMWQZOCLdn9balo4uqwDrrHt9iE.roa
File: tMWQZOCLdn9balo4uqwDrrHt9iE.roa (raw, json)
Hash identifier: RhgXBISbnfYzSp3xceJ32YduZVTdcE+R4K7UMgySodE=
Subject key identifier: B4:C5:90:64:E0:8B:76:7F:5B:6A:5A:38:BA:AC:03:AE:B1:ED:F6:21
Certificate issuer: /CN=261E03DBE27DFCD8B3E0C55F2F0433EA022D1D4B
Certificate serial: 0760
Authority key identifier: 26:1E:03:DB:E2:7D:FC:D8:B3:E0:C5:5F:2F:04:33:EA:02:2D:1D:4B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Jh4D2-J9_Niz4MVfLwQz6gItHUs.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GARENATW/tMWQZOCLdn9balo4uqwDrrHt9iE.roa
Signing time: Tue 29 Sep 2020 10:03:44 +0000
ROA not before: Tue 29 Sep 2020 10:03:43 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 9924
IP address blocks: 103.121.176.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1888 (0x760)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=261E03DBE27DFCD8B3E0C55F2F0433EA022D1D4B
Validity
Not Before: Sep 29 10:03:43 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B4C59064E08B767F5B6A5A38BAAC03AEB1EDF621
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:5c:72:96:ce:fb:60:6d:5d:d5:21:a5:be:e1:
05:6f:c9:6f:78:da:81:86:83:36:76:6a:c0:52:f4:
54:15:a0:ad:42:20:8e:eb:e6:50:56:08:55:da:8e:
37:ca:70:6c:83:97:70:9f:36:28:e3:82:6a:2e:e2:
6f:cf:89:8f:af:be:c6:9b:10:09:18:38:4b:bb:55:
e3:3d:af:a6:c4:52:b8:1c:92:07:46:b1:1d:ee:3a:
30:c6:54:9e:45:70:45:df:b6:57:56:f5:2e:b7:f5:
db:02:fa:80:67:dd:25:06:40:ef:38:d9:dd:4e:bf:
1a:13:60:c2:0a:46:88:8f:85:79:cd:c6:70:ec:86:
69:36:fe:12:5c:a8:f8:af:57:dc:ee:23:8d:11:e3:
ec:33:6e:32:3c:af:f9:99:74:4f:1e:0f:2c:26:6c:
ca:26:83:ea:9a:50:b0:0c:cd:e7:db:01:9c:da:f4:
43:54:e1:0e:40:42:42:31:5f:24:91:14:f3:95:b9:
f3:85:a7:57:3a:58:f3:28:74:98:52:8a:ef:71:b4:
9b:bb:46:14:ce:7c:6f:ec:11:13:c4:d2:70:d0:de:
d4:38:cd:4f:79:0e:af:3c:08:cd:cc:00:20:bb:55:
fc:f8:b1:fe:44:e0:04:72:eb:73:62:59:3f:56:a4:
0f:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:C5:90:64:E0:8B:76:7F:5B:6A:5A:38:BA:AC:03:AE:B1:ED:F6:21
X509v3 Authority Key Identifier:
keyid:26:1E:03:DB:E2:7D:FC:D8:B3:E0:C5:5F:2F:04:33:EA:02:2D:1D:4B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GARENATW/Jh4D2-J9_Niz4MVfLwQz6gItHUs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Jh4D2-J9_Niz4MVfLwQz6gItHUs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GARENATW/tMWQZOCLdn9balo4uqwDrrHt9iE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.121.176.0/24
Signature Algorithm: sha256WithRSAEncryption
99:4a:10:6a:da:0a:68:99:8d:23:fe:75:b0:da:90:ee:4f:71:
66:f5:62:a5:53:77:0d:2c:00:d4:f5:60:f5:a2:74:6e:40:1b:
89:28:97:35:82:29:8a:2f:57:cc:cf:66:d0:80:13:bd:1a:3c:
eb:2f:c5:a8:cb:2b:36:4d:b9:9a:2a:c8:a1:27:51:d6:96:77:
60:99:82:95:f5:59:36:cb:0e:2a:a8:08:ee:96:86:47:c8:be:
2c:65:2b:93:5c:86:d3:94:b5:92:b6:19:05:1a:87:98:d3:17:
b2:75:34:7c:1c:9d:a7:d7:62:5e:8a:60:66:35:c6:f2:75:d9:
a8:b6:3b:b5:fc:32:8d:99:cd:17:93:29:c6:a0:9f:9b:8b:e5:
b1:c7:31:c8:ad:e5:3e:92:23:a6:4c:e6:f4:cd:84:5a:22:b2:
cc:29:10:3e:d2:48:8a:fd:bf:d3:76:b4:8a:32:cf:f9:92:5a:
02:3b:d5:15:75:e2:24:32:f5:68:46:90:bb:6b:ce:f2:53:a2:
8a:04:db:79:99:84:c5:31:71:d3:c7:b8:f3:1d:8e:ac:87:53:
58:85:55:ab:49:55:b2:4b:19:38:f7:88:90:d0:76:91:07:80:
c0:87:5a:ad:26:d4:51:d2:86:13:04:9e:cd:29:d3:5a:0e:94:
0c:2b:4b:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org