Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/SY_KMzxc8O216gJ-zzrNs1Ear44.roa
File: SY_KMzxc8O216gJ-zzrNs1Ear44.roa (raw, json)
Hash identifier: GZGYYBrqbP7Gkqha0agCkZc6LerGgJT7E3T3uWInAkA=
Subject key identifier: 49:8F:CA:33:3C:5C:F0:ED:B5:EA:02:7E:CF:3A:CD:B3:51:1A:AF:8E
Certificate issuer: /CN=385713E359FCB9CAB12F20DB3FF190FCA81E323E
Certificate serial: 097C
Authority key identifier: 38:57:13:E3:59:FC:B9:CA:B1:2F:20:DB:3F:F1:90:FC:A8:1E:32:3E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OFcT41n8ucqxLyDbP_GQ_KgeMj4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/SY_KMzxc8O216gJ-zzrNs1Ear44.roa
Signing time: Wed 29 Sep 2021 02:50:33 +0000
ROA not before: Wed 29 Sep 2021 02:50:33 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131657
IP address blocks: 2403:9340::/32 maxlen: 32
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2428 (0x97c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=385713E359FCB9CAB12F20DB3FF190FCA81E323E
Validity
Not Before: Sep 29 02:50:33 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=498FCA333C5CF0EDB5EA027ECF3ACDB3511AAF8E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:23:d6:e7:4d:49:fa:c8:b5:14:89:b7:e7:38:
4d:42:a8:9c:bc:a2:33:6e:0d:01:81:eb:9e:db:16:
d1:70:c5:4d:72:2f:e4:1d:5e:79:b3:9c:99:4a:2d:
98:bf:97:54:32:56:56:f9:4b:27:8d:22:f6:a3:39:
9b:54:9e:65:73:f4:fd:d2:ae:f3:63:3d:f5:75:10:
53:97:b8:ed:77:ab:48:1e:87:27:f3:5d:26:37:13:
3f:9b:57:86:55:fb:09:5e:5e:59:19:b2:5e:b4:de:
c6:eb:9b:7c:44:e8:f6:4b:c1:65:6b:f6:53:2e:83:
39:8f:a3:4a:76:bf:1f:9a:b3:c8:e2:d3:69:b1:c0:
3e:73:bf:7e:ff:c2:16:26:98:c3:48:e8:07:e5:04:
d6:16:a3:23:02:35:c7:7b:b4:25:d7:2b:66:f0:e5:
a4:d0:35:db:f1:36:4c:89:c3:49:98:0a:b6:36:d3:
52:68:35:31:33:ec:b5:71:bc:ea:39:f0:c4:57:45:
3a:3f:4e:e1:28:9b:93:96:87:c9:f6:f7:a2:df:66:
a3:0b:24:7e:5e:f8:1e:76:92:ed:27:fc:67:ce:96:
ae:b4:01:83:21:43:1b:8b:e2:9c:bc:6e:56:76:02:
dc:e2:89:cd:6d:1d:1a:31:4b:99:dc:30:59:fc:bf:
e9:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:8F:CA:33:3C:5C:F0:ED:B5:EA:02:7E:CF:3A:CD:B3:51:1A:AF:8E
X509v3 Authority Key Identifier:
keyid:38:57:13:E3:59:FC:B9:CA:B1:2F:20:DB:3F:F1:90:FC:A8:1E:32:3E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/OFcT41n8ucqxLyDbP_GQ_KgeMj4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OFcT41n8ucqxLyDbP_GQ_KgeMj4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/SY_KMzxc8O216gJ-zzrNs1Ear44.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:9340::/32
Signature Algorithm: sha256WithRSAEncryption
5a:70:74:45:d1:aa:d1:58:27:50:9b:f8:8a:92:ea:5a:d1:5a:
0d:65:25:ad:50:30:95:2a:55:bc:e8:4f:20:d3:25:0a:4b:e1:
9e:32:0d:0e:c8:3f:9f:e4:82:11:f5:df:6a:fb:30:0a:17:22:
b9:9c:2a:4e:c1:11:c1:91:5d:93:12:b8:6d:00:f0:03:56:22:
39:39:cf:6e:63:9e:6c:86:c9:64:42:eb:78:39:cf:ff:bd:76:
7f:d8:fd:cc:ad:e1:5c:98:cf:fd:d3:bd:fd:79:96:7c:2c:60:
3b:39:6b:17:d1:fd:a3:df:7f:0d:13:4c:63:46:2e:40:80:74:
30:b7:6a:7b:09:f0:d6:bb:64:d9:b4:73:8f:86:ed:99:c1:a9:
b8:a3:2e:ed:5c:4a:ad:09:83:a8:d6:16:1e:97:6a:11:36:9a:
e7:b9:52:dc:58:e2:de:5c:ea:75:1b:58:a7:6a:cc:09:57:e2:
ed:b6:a9:9e:f1:c9:7d:52:43:93:29:99:85:32:11:a4:eb:1f:
d4:23:fb:38:4f:66:f2:45:cc:d4:e5:57:c6:34:d2:37:e7:c4:
7f:e2:09:27:f3:ec:e2:f1:91:ac:dd:b6:af:b4:ee:05:92:d0:
66:fb:26:0a:7e:5c:f4:72:47:a0:18:eb:5d:7a:a9:5f:bf:26:
1c:34:1c:ab
-----BEGIN CERTIFICATE-----
MIIE1zCCA7+gAwIBAgICCXwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzg1
NzEzRTM1OUZDQjlDQUIxMkYyMERCM0ZGMTkwRkNBODFFMzIzRTAeFw0yMTA5Mjkw
MjUwMzNaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDQ5OEZDQTMzM0M1Q0Yw
RURCNUVBMDI3RUNGM0FDREIzNTExQUFGOEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDaI9bnTUn6yLUUibfnOE1CqJy8ojNuDQGB657bFtFwxU1yL+Qd
XnmznJlKLZi/l1QyVlb5SyeNIvajOZtUnmVz9P3SrvNjPfV1EFOXuO13q0gehyfz
XSY3Ez+bV4ZV+wleXlkZsl603sbrm3xE6PZLwWVr9lMugzmPo0p2vx+as8ji02mx
wD5zv37/whYmmMNI6AflBNYWoyMCNcd7tCXXK2bw5aTQNdvxNkyJw0mYCrY201Jo
NTEz7LVxvOo58MRXRTo/TuEom5OWh8n296LfZqMLJH5e+B52ku0n/GfOlq60AYMh
QxuL4py8blZ2Atziic1tHRoxS5ncMFn8v+mtAgMBAAGjggHzMIIB7zAdBgNVHQ4E
FgQUSY/KMzxc8O216gJ+zzrNs1Ear44wHwYDVR0jBBgwFoAUOFcT41n8ucqxLyDb
P/GQ/KgeMj4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSEhSQ09M
VEQvT0ZjVDQxbjh1Y3F4THlEYlBfR1FfS2dlTWo0LmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9PRmNUNDFuOHVjcXhMeURiUF9HUV9LZ2VNajQuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISFJDT0xURC9TWV9LTXp4YzhPMjE2
Z0otenpyTnMxRWFyNDQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAH
AwUAJAOTQDANBgkqhkiG9w0BAQsFAAOCAQEAWnB0RdGq0VgnUJv4ipLqWtFaDWUl
rVAwlSpVvOhPINMlCkvhnjINDsg/n+SCEfXfavswChciuZwqTsERwZFdkxK4bQDw
A1YiOTnPbmOebIbJZELreDnP/712f9j9zK3hXJjP/dO9/XmWfCxgOzlrF9H9o99/
DRNMY0YuQIB0MLdqewnw1rtk2bRzj4btmcGpuKMu7VxKrQmDqNYWHpdqETaa57lS
3Fji3lzqdRtYp2rMCVfi7bapnvHJfVJDkymZhTIRpOsf1CP7OE9m8kXM1OVXxjTS
N+fEf+IJJ/Ps4vGRrN22r7TuBZLQZvsmCn5c9HJHoBjrXXqpX78mHDQcqw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org