Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/T_bWFnv6CjGH-hdVjCGdAYejIBA.roa
File: T_bWFnv6CjGH-hdVjCGdAYejIBA.roa (raw, json)
Hash identifier: 8Rc+HPwoNsasjeJb+6Ru1SThvxRZLrlos08zisMLwFE=
Subject key identifier: 4F:F6:D6:16:7B:FA:0A:31:87:FA:17:55:8C:21:9D:01:87:A3:20:10
Certificate issuer: /CN=385713E359FCB9CAB12F20DB3FF190FCA81E323E
Certificate serial: 096D
Authority key identifier: 38:57:13:E3:59:FC:B9:CA:B1:2F:20:DB:3F:F1:90:FC:A8:1E:32:3E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OFcT41n8ucqxLyDbP_GQ_KgeMj4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/T_bWFnv6CjGH-hdVjCGdAYejIBA.roa
Signing time: Wed 29 Sep 2021 02:50:28 +0000
ROA not before: Wed 29 Sep 2021 02:50:28 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 20473
IP address blocks: 103.122.188.0/22 maxlen: 22
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2413 (0x96d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=385713E359FCB9CAB12F20DB3FF190FCA81E323E
Validity
Not Before: Sep 29 02:50:28 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=4FF6D6167BFA0A3187FA17558C219D0187A32010
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:45:5e:cb:16:84:ad:3a:f9:c7:80:ff:f7:47:
d6:ac:11:b4:e6:f4:3e:ed:17:1d:48:2e:31:63:6b:
3e:51:4a:cb:b8:65:50:ce:89:28:98:56:f6:21:0a:
77:de:47:63:38:5a:9e:29:c2:c0:f3:d1:d5:31:f1:
87:ba:32:60:73:fd:94:79:3c:8a:c6:7e:a9:05:30:
29:c0:27:e4:23:27:73:69:97:67:4b:9d:df:43:6a:
1e:14:32:db:6b:7a:5b:fb:ce:56:20:5b:61:6c:71:
3a:9b:65:e4:c4:47:de:ad:1f:4a:55:cc:09:5e:52:
f9:88:fd:70:3d:3a:7d:fb:a0:37:22:78:6d:60:2c:
70:f0:b8:f7:69:57:8c:50:07:57:36:20:42:f7:15:
28:cb:79:b1:bb:db:16:e7:3b:fc:26:72:7d:58:f0:
a6:1a:6a:c2:46:1e:0d:4c:a2:8e:7a:ef:1a:64:a8:
30:20:74:3e:45:8b:94:06:0d:31:cf:a7:ed:e9:55:
1d:85:14:fd:cd:24:8b:35:e7:a7:04:0f:3d:c6:64:
d9:31:1a:eb:67:f1:94:ce:fe:ea:b0:be:f8:ab:ee:
d2:78:60:a8:4b:24:f0:76:d9:7a:de:fb:8e:2c:2d:
ab:ec:85:b9:76:47:81:d5:ad:9e:1f:52:a2:3e:1c:
e6:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:F6:D6:16:7B:FA:0A:31:87:FA:17:55:8C:21:9D:01:87:A3:20:10
X509v3 Authority Key Identifier:
keyid:38:57:13:E3:59:FC:B9:CA:B1:2F:20:DB:3F:F1:90:FC:A8:1E:32:3E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/OFcT41n8ucqxLyDbP_GQ_KgeMj4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OFcT41n8ucqxLyDbP_GQ_KgeMj4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/T_bWFnv6CjGH-hdVjCGdAYejIBA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.188.0/22
Signature Algorithm: sha256WithRSAEncryption
68:e1:c9:55:2a:67:07:92:00:85:71:53:ef:bf:42:2b:89:1c:
e3:44:dc:0a:8d:ea:e9:1f:f3:27:da:7f:31:73:59:f0:4b:23:
e2:5d:ed:e9:98:52:11:58:86:b5:9c:83:93:17:4f:d3:36:33:
c8:bd:3f:62:9e:2c:e9:57:be:60:20:fd:d6:e2:fc:37:ef:35:
cd:cf:b2:aa:ef:41:0b:38:be:a2:4b:04:9d:d8:d6:01:5c:62:
a8:b7:2b:70:a2:05:73:4c:c1:e1:1c:f0:16:5b:6c:be:73:cd:
f2:54:e4:9b:57:96:b2:15:f7:99:53:2b:05:7e:62:70:5f:2a:
cd:84:b7:82:88:26:64:fb:66:87:d9:75:d5:71:32:f0:5a:6c:
80:45:a9:39:7c:d9:a5:53:6f:f1:fa:81:f9:86:3a:2c:be:e7:
8e:a4:2b:73:06:39:9e:9b:3c:96:72:34:3d:e9:59:e6:0a:d6:
ec:8c:e7:1c:23:c3:b1:f2:a2:af:f0:4b:7f:98:d5:4f:76:04:
8f:cb:6d:86:d1:2a:7e:d7:14:e0:5a:42:95:36:b9:23:b5:59:
e7:aa:8b:d2:a8:a5:f9:74:11:81:b6:8a:4c:78:37:24:4a:5b:
c8:bb:c6:73:7a:e5:5d:cd:1e:3e:de:b7:0f:ba:ce:5c:aa:d1:
85:69:88:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org