Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/VPp6jb-kQdrbE3A8E6m2nLl1Q5M.roa
File: VPp6jb-kQdrbE3A8E6m2nLl1Q5M.roa (raw, json)
Hash identifier: d2ManbJmshC/LhTQDeySNjf+g/RdP3a3un1RJJxFrbE=
Subject key identifier: 54:FA:7A:8D:BF:A4:41:DA:DB:13:70:3C:13:A9:B6:9C:B9:75:43:93
Certificate issuer: /CN=385713E359FCB9CAB12F20DB3FF190FCA81E323E
Certificate serial: 096C
Authority key identifier: 38:57:13:E3:59:FC:B9:CA:B1:2F:20:DB:3F:F1:90:FC:A8:1E:32:3E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OFcT41n8ucqxLyDbP_GQ_KgeMj4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/VPp6jb-kQdrbE3A8E6m2nLl1Q5M.roa
Signing time: Wed 29 Sep 2021 02:50:27 +0000
ROA not before: Wed 29 Sep 2021 02:50:27 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 20473
IP address blocks: 103.122.188.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2412 (0x96c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=385713E359FCB9CAB12F20DB3FF190FCA81E323E
Validity
Not Before: Sep 29 02:50:27 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=54FA7A8DBFA441DADB13703C13A9B69CB9754393
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:0b:06:6e:c1:42:1c:18:6c:8f:f7:1b:d9:5b:
ad:61:e1:0f:1f:27:dc:b9:6f:7c:c6:e8:62:be:9e:
3c:f9:4e:33:cc:f3:ed:2c:54:e4:fd:4f:a0:58:99:
3b:f7:59:37:f4:9b:70:e4:b4:5c:ad:a4:2d:aa:27:
d3:29:9b:5b:88:43:a1:17:62:cf:a4:6d:3e:ca:bd:
c6:76:b9:01:62:b4:32:3b:9b:4d:b7:8b:4e:3b:8d:
fa:1a:b5:40:54:ed:8b:b3:6a:14:97:f9:d5:d7:d3:
ee:6d:6f:21:41:82:59:41:c0:a3:6c:d5:21:56:35:
06:ce:10:3d:0b:0c:63:ce:f6:02:e0:94:5f:0c:59:
ce:79:4a:27:3c:36:b5:c7:63:9f:1e:e3:25:4e:81:
cb:48:b2:5e:a3:c9:06:33:8d:e6:bf:a8:42:dc:74:
30:e1:fb:1a:a3:fc:bd:ad:f3:30:47:f4:17:f3:97:
c8:95:f4:93:d9:3f:07:e7:62:e6:48:4c:ce:a0:40:
5a:14:83:05:5b:01:3a:92:f6:f1:4d:7a:52:47:34:
94:84:df:74:e0:1d:81:e9:8b:f3:0a:e5:90:7c:33:
f0:41:d2:14:4f:13:27:c5:51:40:db:b8:a9:9b:c7:
21:cd:a8:fe:78:bf:d0:14:32:8d:74:c6:92:c3:e5:
f3:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:FA:7A:8D:BF:A4:41:DA:DB:13:70:3C:13:A9:B6:9C:B9:75:43:93
X509v3 Authority Key Identifier:
keyid:38:57:13:E3:59:FC:B9:CA:B1:2F:20:DB:3F:F1:90:FC:A8:1E:32:3E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/OFcT41n8ucqxLyDbP_GQ_KgeMj4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OFcT41n8ucqxLyDbP_GQ_KgeMj4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/VPp6jb-kQdrbE3A8E6m2nLl1Q5M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.188.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:af:ad:5b:2a:4d:2c:56:33:23:c2:74:13:9b:30:ee:f3:c3:
e2:58:32:0b:ec:85:f7:95:ab:e7:b7:be:69:1f:fe:d3:2e:56:
6d:99:1c:f9:50:29:7c:d0:71:a6:c7:92:c2:2b:de:e1:eb:fa:
cc:79:b5:cf:b7:4d:3f:71:50:3f:2b:af:e6:c9:b2:83:c0:1c:
37:82:71:42:88:5a:0d:71:4b:42:b1:35:d6:81:6d:22:ee:dc:
0c:48:bf:0b:ae:96:80:1c:19:24:a9:19:fd:e2:dd:b9:55:d3:
6c:f4:c2:c9:fe:97:29:fc:f3:ec:a5:50:7c:cc:cc:c5:e3:1c:
77:30:01:6d:eb:5e:3f:a4:2d:9c:e9:3a:af:0e:87:aa:60:ac:
8a:2d:dd:1f:6b:ad:8e:dc:97:0a:4d:a0:c2:06:fb:62:07:fd:
6c:a8:49:83:8d:ea:11:5a:18:07:ba:9a:30:d8:9d:c0:18:60:
8d:d4:46:30:ed:15:02:57:4a:93:3f:89:b9:a1:cf:05:98:5d:
86:4c:d4:9d:24:ca:f0:28:a8:b3:4f:ba:e7:80:18:0b:e3:13:
d9:72:12:13:84:e4:06:4a:55:9d:b3:33:8e:bb:7d:eb:44:48:
5a:b5:dd:d8:50:dd:50:28:b7:d9:17:17:42:b2:0e:32:5a:8c:
0e:6a:ce:5e
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICCWwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzg1
NzEzRTM1OUZDQjlDQUIxMkYyMERCM0ZGMTkwRkNBODFFMzIzRTAeFw0yMTA5Mjkw
MjUwMjdaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDU0RkE3QThEQkZBNDQx
REFEQjEzNzAzQzEzQTlCNjlDQjk3NTQzOTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDdCwZuwUIcGGyP9xvZW61h4Q8fJ9y5b3zG6GK+njz5TjPM8+0s
VOT9T6BYmTv3WTf0m3DktFytpC2qJ9Mpm1uIQ6EXYs+kbT7KvcZ2uQFitDI7m023
i047jfoatUBU7YuzahSX+dXX0+5tbyFBgllBwKNs1SFWNQbOED0LDGPO9gLglF8M
Wc55Sic8NrXHY58e4yVOgctIsl6jyQYzjea/qELcdDDh+xqj/L2t8zBH9Bfzl8iV
9JPZPwfnYuZITM6gQFoUgwVbATqS9vFNelJHNJSE33TgHYHpi/MK5ZB8M/BB0hRP
EyfFUUDbuKmbxyHNqP54v9AUMo10xpLD5fMvAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUVPp6jb+kQdrbE3A8E6m2nLl1Q5MwHwYDVR0jBBgwFoAUOFcT41n8ucqxLyDb
P/GQ/KgeMj4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSEhSQ09M
VEQvT0ZjVDQxbjh1Y3F4THlEYlBfR1FfS2dlTWo0LmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9PRmNUNDFuOHVjcXhMeURiUF9HUV9LZ2VNajQuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISFJDT0xURC9WUHA2amIta1FkcmJF
M0E4RTZtMm5MbDFRNU0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQAZ3q8MA0GCSqGSIb3DQEBCwUAA4IBAQBPr61bKk0sVjMjwnQTmzDu88PiWDIL
7IX3lavnt75pH/7TLlZtmRz5UCl80HGmx5LCK97h6/rMebXPt00/cVA/K6/mybKD
wBw3gnFCiFoNcUtCsTXWgW0i7twMSL8LrpaAHBkkqRn94t25VdNs9MLJ/pcp/PPs
pVB8zMzF4xx3MAFt614/pC2c6TqvDoeqYKyKLd0fa62O3JcKTaDCBvtiB/1sqEmD
jeoRWhgHupow2J3AGGCN1EYw7RUCV0qTP4m5oc8FmF2GTNSdJMrwKKizT7rngBgL
4xPZchIThOQGSlWdszOOu33rREhatd3YUN1QKLfZFxdCsg4yWowOas5e
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org