Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/aqE2q-gPqpQ_aF6A7N-DX6l5cgM.roa
File: aqE2q-gPqpQ_aF6A7N-DX6l5cgM.roa (raw, json)
Hash identifier: SxJUZIqW317i49wP/U9BvwvRMJbPFjvV9lmQM8kULM0=
Subject key identifier: 6A:A1:36:AB:E8:0F:AA:94:3F:68:5E:80:EC:DF:83:5F:A9:79:72:03
Certificate issuer: /CN=385713E359FCB9CAB12F20DB3FF190FCA81E323E
Certificate serial: 0B77
Authority key identifier: 38:57:13:E3:59:FC:B9:CA:B1:2F:20:DB:3F:F1:90:FC:A8:1E:32:3E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OFcT41n8ucqxLyDbP_GQ_KgeMj4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/aqE2q-gPqpQ_aF6A7N-DX6l5cgM.roa
Signing time: Fri 01 Sep 2023 08:56:24 +0000
ROA not before: Fri 01 Sep 2023 08:56:24 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 134823
IP address blocks: 103.122.188.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2935 (0xb77)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=385713E359FCB9CAB12F20DB3FF190FCA81E323E
Validity
Not Before: Sep 1 08:56:24 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=6AA136ABE80FAA943F685E80ECDF835FA9797203
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:b2:da:51:63:be:a5:91:38:db:db:5f:a8:a8:
a3:90:b6:db:5e:e0:de:37:36:2d:e3:6d:31:03:a8:
8a:85:42:39:86:26:1d:63:a5:ee:a7:47:d8:e8:ff:
d1:c3:cb:2d:0a:25:fa:f2:0d:e9:b9:01:4c:d6:7f:
f4:76:06:e8:2d:05:a2:56:75:90:1b:46:c6:7a:18:
84:62:11:1d:be:7d:50:70:eb:65:f2:a0:56:a4:c1:
ae:d6:d4:df:c9:8d:4d:cf:ee:4d:b3:a3:bc:70:61:
c9:8a:9b:eb:38:89:d9:91:1e:77:b6:b8:73:4c:65:
82:44:0b:b3:16:b6:41:85:68:7c:6e:2f:65:30:54:
33:04:e8:c0:8c:88:6a:66:b7:1b:4a:3d:e4:78:c4:
7e:43:b8:ab:e1:1a:cf:8a:b6:8e:e5:7e:0e:4a:d3:
39:1d:fb:0b:04:18:e3:b3:73:6c:12:48:dc:bf:f6:
f7:43:c5:b2:b2:c4:60:a5:fa:9d:87:61:3a:df:fe:
08:5e:69:75:88:50:d3:27:b8:e7:dd:ae:b6:b4:b1:
f5:ed:3e:7f:34:70:1e:d1:9b:dc:d2:b3:4e:0e:4a:
a4:b4:ed:1b:bb:b5:c9:08:eb:8d:c8:fc:37:70:70:
7c:65:06:12:11:28:2f:06:6f:c5:9a:17:53:41:f6:
c0:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:A1:36:AB:E8:0F:AA:94:3F:68:5E:80:EC:DF:83:5F:A9:79:72:03
X509v3 Authority Key Identifier:
keyid:38:57:13:E3:59:FC:B9:CA:B1:2F:20:DB:3F:F1:90:FC:A8:1E:32:3E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/OFcT41n8ucqxLyDbP_GQ_KgeMj4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OFcT41n8ucqxLyDbP_GQ_KgeMj4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/aqE2q-gPqpQ_aF6A7N-DX6l5cgM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.188.0/24
Signature Algorithm: sha256WithRSAEncryption
19:b6:9a:69:62:28:48:15:4e:02:aa:14:c8:4c:f7:bd:9e:49:
ac:b6:9f:85:d0:ea:e2:e2:e4:66:a0:6f:05:c5:7c:95:b8:13:
a7:ac:cf:02:ee:17:78:8a:cc:c5:28:d5:de:ae:e9:47:62:06:
9e:7b:72:2b:3f:ec:88:fd:71:18:67:97:f0:e8:71:70:e6:81:
60:05:fb:f9:2f:13:e7:45:15:29:0c:2a:39:21:c4:1f:6a:ef:
6e:dc:dd:67:e3:e5:75:b9:d8:5f:2c:80:b4:27:cc:2a:19:a4:
78:79:65:b7:b0:aa:42:c1:4a:36:25:17:57:d1:48:5c:ce:46:
8f:95:28:74:fd:5f:18:49:2c:f5:85:6f:de:eb:aa:1f:16:ad:
7e:bb:4a:30:ff:bf:ad:d7:e3:fd:27:59:36:9e:df:bf:a5:dd:
97:eb:cb:a5:ba:27:3c:41:08:e7:f2:cb:f4:2e:39:32:88:38:
cd:67:64:80:e3:a8:a7:43:c1:1c:04:db:5c:e5:08:ae:7e:2a:
81:86:20:5a:60:65:b0:f0:1a:e3:49:a5:95:47:aa:ae:bc:4e:
34:51:1d:e7:4f:59:ea:66:4a:25:0f:2a:de:29:fc:77:10:e6:
61:df:45:a1:b8:02:f2:63:b6:e7:22:16:86:15:5c:96:0d:ac:
7e:d8:d9:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org