Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/UlOD9Iu8xIpILpp7J47wLVwaX2U.roa
File: UlOD9Iu8xIpILpp7J47wLVwaX2U.roa (raw, json)
Hash identifier: 49FnVdv0bM8JZ4KsO6pLbto9RVpbS5JdHbjPXfTmhgo=
Subject key identifier: 52:53:83:F4:8B:BC:C4:8A:48:2E:9A:7B:27:8E:F0:2D:5C:1A:5F:65
Certificate issuer: /CN=385713E359FCB9CAB12F20DB3FF190FCA81E323E
Certificate serial: 0763
Authority key identifier: 38:57:13:E3:59:FC:B9:CA:B1:2F:20:DB:3F:F1:90:FC:A8:1E:32:3E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OFcT41n8ucqxLyDbP_GQ_KgeMj4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/UlOD9Iu8xIpILpp7J47wLVwaX2U.roa
Signing time: Tue 29 Sep 2020 09:58:07 +0000
ROA not before: Tue 29 Sep 2020 09:58:07 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131657
IP address blocks: 103.122.188.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1891 (0x763)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=385713E359FCB9CAB12F20DB3FF190FCA81E323E
Validity
Not Before: Sep 29 09:58:07 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=525383F48BBCC48A482E9A7B278EF02D5C1A5F65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:80:19:2e:05:f3:58:df:96:ca:e5:85:b2:75:
c8:73:7e:35:5f:88:3d:71:87:dd:69:65:4f:a5:4f:
5e:3f:ad:69:eb:64:71:2a:3d:58:10:3e:b3:23:56:
c1:00:f4:d9:b5:c2:85:63:10:88:27:66:0e:cb:86:
cd:8d:38:78:47:86:e0:7a:97:fd:0f:30:c8:07:dd:
0b:9d:09:34:09:19:4d:0c:c4:2c:9b:dd:d6:60:9d:
b9:d9:68:3b:83:4e:a0:4f:dd:9d:30:f8:9e:2e:7d:
cc:82:77:00:db:89:b6:a4:d5:fb:bc:f2:a6:4a:7c:
2b:2e:f5:51:4e:e3:f8:71:81:6e:24:1d:3f:e6:70:
ad:f2:e9:ed:eb:3a:13:6d:8a:96:46:4c:34:08:30:
2e:88:40:18:78:85:03:2e:17:23:30:29:18:4d:a0:
d8:a3:fd:09:76:4e:82:5f:d8:2c:85:b3:79:8e:df:
18:b8:73:e2:ce:2b:55:8b:6d:c3:18:88:01:5b:c4:
ca:48:a0:be:a4:24:5d:0a:8f:71:43:b4:55:95:8c:
ef:2c:33:94:93:04:d9:05:00:ac:8a:55:4a:41:f5:
5f:f1:43:a9:48:8c:9f:37:fa:3e:e7:a0:df:27:d5:
72:b0:bd:89:28:c2:44:2a:1b:3f:aa:11:88:cf:e1:
68:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:53:83:F4:8B:BC:C4:8A:48:2E:9A:7B:27:8E:F0:2D:5C:1A:5F:65
X509v3 Authority Key Identifier:
keyid:38:57:13:E3:59:FC:B9:CA:B1:2F:20:DB:3F:F1:90:FC:A8:1E:32:3E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/OFcT41n8ucqxLyDbP_GQ_KgeMj4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OFcT41n8ucqxLyDbP_GQ_KgeMj4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/UlOD9Iu8xIpILpp7J47wLVwaX2U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.188.0/24
Signature Algorithm: sha256WithRSAEncryption
62:1b:9b:4d:2e:1d:a0:e3:1e:e9:c8:7d:89:e7:50:1c:72:bf:
e7:fa:5f:64:e6:40:5d:80:ac:c2:43:83:50:ee:1f:62:bd:29:
65:cc:19:a1:76:b4:bb:86:dc:cf:ce:fb:86:ca:c8:26:03:f1:
79:d9:95:4c:70:89:ed:e8:75:c6:7b:4d:f6:d2:2d:79:63:8d:
49:2b:1d:1a:e2:e3:f6:71:cc:3e:b9:12:85:38:89:eb:68:c2:
1b:d1:e1:32:6f:a3:17:96:a3:f8:83:aa:5e:e6:51:75:0e:49:
51:b0:10:d3:1a:d0:5c:36:bc:ed:5a:3c:c7:88:a7:2a:7b:e0:
4f:a2:ed:ea:d6:94:83:dd:da:7b:ae:e8:f8:2e:38:76:56:af:
09:72:41:e2:f5:58:5c:49:0c:c9:eb:97:32:be:0b:f2:1a:b5:
68:8b:fb:eb:9d:97:eb:da:f7:67:b0:8b:bd:26:36:1c:3d:3d:
fc:79:74:38:12:e7:1f:42:c7:38:57:75:6d:42:45:9b:94:b0:
60:ee:02:da:22:aa:15:33:dc:8b:18:ec:2a:50:60:8e:dc:e5:
38:ec:13:5b:a0:00:73:c6:a7:fd:53:5b:80:95:02:00:85:9d:
48:2c:5b:19:12:7d:d7:e7:ca:4b:6a:ac:be:25:45:e1:c0:86:
d1:4b:de:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:21:53 2025 by rpki-client