Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/72MJMCn5WMoSqJYdqKzzgr99JDM.roa
File: 72MJMCn5WMoSqJYdqKzzgr99JDM.roa (raw, json)
Hash identifier: BADAFQCVLHpH4dk4tTeY5mUYUBy0mTV2FvQR9efF4/M=
Subject key identifier: EF:63:09:30:29:F9:58:CA:12:A8:96:1D:A8:AC:F3:82:BF:7D:24:33
Certificate issuer: /CN=385713E359FCB9CAB12F20DB3FF190FCA81E323E
Certificate serial: 0767
Authority key identifier: 38:57:13:E3:59:FC:B9:CA:B1:2F:20:DB:3F:F1:90:FC:A8:1E:32:3E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OFcT41n8ucqxLyDbP_GQ_KgeMj4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/72MJMCn5WMoSqJYdqKzzgr99JDM.roa
Signing time: Tue 29 Sep 2020 09:58:08 +0000
ROA not before: Tue 29 Sep 2020 09:58:08 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131657
IP address blocks: 2403:9340::/32 maxlen: 32
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1895 (0x767)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=385713E359FCB9CAB12F20DB3FF190FCA81E323E
Validity
Not Before: Sep 29 09:58:08 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=EF63093029F958CA12A8961DA8ACF382BF7D2433
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:37:f9:01:fb:cf:6c:c8:56:5f:3a:66:04:a4:
fb:87:00:4d:13:61:6f:05:56:77:14:86:5b:93:c0:
e7:47:ac:dd:b8:18:d7:05:3f:49:96:4a:52:92:af:
f6:14:92:b4:eb:da:ee:09:fc:0a:4a:56:95:d3:41:
bd:c8:3e:e6:a4:17:94:2e:94:0e:74:71:a2:eb:57:
84:67:52:4b:fb:31:77:ce:50:ae:ef:20:eb:09:63:
75:b0:94:ea:bc:da:67:fc:b5:62:82:a9:8a:3f:ae:
e7:17:60:8b:c3:ea:a1:fe:f4:ba:71:c2:b7:1c:29:
74:68:15:ca:45:50:c8:7e:76:25:49:4d:c9:30:9f:
3e:19:46:f3:ab:d1:9f:64:68:17:da:2c:97:c3:b5:
0e:58:6e:09:a2:4d:40:8d:ea:1d:dd:6f:5d:b9:f8:
22:9e:03:63:98:ff:c4:4f:31:38:14:23:3e:fb:18:
d3:34:9c:e3:79:a5:e6:78:de:ce:13:22:ab:44:46:
83:1b:e1:2c:dd:fc:04:20:8c:05:85:ce:c0:0b:7a:
aa:b5:5e:84:25:b5:41:90:25:2f:32:78:e2:60:f3:
e6:2d:5f:56:21:36:8d:ba:3e:25:4d:0c:5b:b3:77:
30:40:ea:77:b6:3e:e5:63:f6:92:ca:ef:11:49:60:
85:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:63:09:30:29:F9:58:CA:12:A8:96:1D:A8:AC:F3:82:BF:7D:24:33
X509v3 Authority Key Identifier:
keyid:38:57:13:E3:59:FC:B9:CA:B1:2F:20:DB:3F:F1:90:FC:A8:1E:32:3E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/OFcT41n8ucqxLyDbP_GQ_KgeMj4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OFcT41n8ucqxLyDbP_GQ_KgeMj4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/72MJMCn5WMoSqJYdqKzzgr99JDM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:9340::/32
Signature Algorithm: sha256WithRSAEncryption
15:4b:dc:d5:a0:f2:81:ad:67:f3:23:b4:a0:f4:40:d7:f9:b5:
4c:4b:bd:0a:b3:a7:4a:f0:db:cd:ff:45:cc:f1:89:cd:ac:4c:
a8:b9:3d:43:72:6c:6a:4e:93:e9:96:8c:d9:58:59:10:b9:83:
07:02:ea:2a:77:59:6c:1f:c7:a1:b6:71:13:67:3e:e5:bd:84:
e3:e3:d4:74:1f:6e:fa:18:3c:bc:77:59:70:d3:f7:1f:83:c0:
56:63:1b:18:88:2c:71:38:42:8a:a2:a3:ab:08:4a:77:4b:26:
ba:45:f6:e3:55:e6:67:24:29:6f:79:bd:1f:8b:15:6b:23:db:
e4:dd:7a:c7:0a:38:55:96:c5:e5:96:eb:83:0e:2e:f1:b7:01:
2f:0a:f6:f9:79:d2:9b:a8:73:e5:2b:58:28:27:81:cc:a0:2b:
fb:5f:30:c3:6b:b4:19:c9:45:45:d7:83:95:e4:41:26:81:1c:
45:75:9e:be:8e:b2:6a:a8:b4:c5:27:a3:69:16:25:90:6c:0b:
ca:26:aa:1c:c9:fc:17:20:a6:c3:5b:3b:81:53:a2:d1:90:88:
f8:7b:07:3c:1b:42:cd:b8:06:55:b3:bf:f5:cb:3c:c2:39:ab:
9f:fb:a4:6c:b9:9f:ee:00:32:b8:5e:55:ac:7a:7a:90:b2:fc:
5d:1c:fb:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org