Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/cik66R4j7FqTwz1IhMjE_wJdwgU.roa
File: cik66R4j7FqTwz1IhMjE_wJdwgU.roa (raw, json)
Hash identifier: 41qlsLPjN/051tmcCasbbY2NZ/cqb/7mcqOZsrk8p/Y=
Subject key identifier: 72:29:3A:E9:1E:23:EC:5A:93:C3:3D:48:84:C8:C4:FF:02:5D:C2:05
Certificate issuer: /CN=385713E359FCB9CAB12F20DB3FF190FCA81E323E
Certificate serial: 0B71
Authority key identifier: 38:57:13:E3:59:FC:B9:CA:B1:2F:20:DB:3F:F1:90:FC:A8:1E:32:3E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OFcT41n8ucqxLyDbP_GQ_KgeMj4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/cik66R4j7FqTwz1IhMjE_wJdwgU.roa
Signing time: Fri 01 Sep 2023 08:56:22 +0000
ROA not before: Fri 01 Sep 2023 08:56:22 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 20473
IP address blocks: 103.122.188.0/22 maxlen: 22
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2929 (0xb71)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=385713E359FCB9CAB12F20DB3FF190FCA81E323E
Validity
Not Before: Sep 1 08:56:22 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=72293AE91E23EC5A93C33D4884C8C4FF025DC205
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:35:0d:fd:0f:5a:ea:91:bd:f4:ef:3b:3d:1e:
45:b5:3c:70:5b:b4:0e:8f:cb:d5:05:1a:71:99:25:
45:a2:68:6c:1e:15:b4:d2:2f:7f:3d:b2:20:45:c1:
c2:2d:13:fe:7a:40:9b:2e:fa:7c:a0:27:fa:a1:fe:
11:04:b6:98:fd:fc:49:bb:6f:42:3c:c7:08:da:6e:
52:ef:46:94:ad:68:12:a8:9a:eb:bc:d0:40:73:c6:
88:85:ea:72:25:4d:12:69:e8:5d:88:c3:c3:97:20:
46:83:0b:94:50:8c:e2:37:f8:52:73:50:e6:7a:b3:
3a:cd:e9:72:96:8b:8b:9d:a6:80:9b:b4:ce:99:92:
6c:28:98:ca:4b:62:8d:0a:f7:56:dd:12:f5:16:03:
22:2e:95:69:d9:38:b1:c1:01:ee:65:83:25:ad:df:
0f:8c:f3:c6:73:58:a2:fe:39:38:b7:e9:53:9d:81:
3c:bc:1c:4b:ee:c0:c3:00:e8:b6:91:83:6d:56:c0:
06:a1:f4:37:bf:f6:02:b0:9a:69:2f:b8:88:5e:c0:
ee:d9:9d:78:72:78:ce:26:4b:1e:a3:86:21:e5:36:
5f:a0:30:82:30:26:5c:e1:06:7f:76:37:4b:59:05:
88:c9:4a:20:31:94:3c:43:3e:be:0f:f1:71:8c:f9:
c2:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:29:3A:E9:1E:23:EC:5A:93:C3:3D:48:84:C8:C4:FF:02:5D:C2:05
X509v3 Authority Key Identifier:
keyid:38:57:13:E3:59:FC:B9:CA:B1:2F:20:DB:3F:F1:90:FC:A8:1E:32:3E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/OFcT41n8ucqxLyDbP_GQ_KgeMj4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OFcT41n8ucqxLyDbP_GQ_KgeMj4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/cik66R4j7FqTwz1IhMjE_wJdwgU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.188.0/22
Signature Algorithm: sha256WithRSAEncryption
41:f0:0f:4c:f2:7f:ca:2a:ba:94:1f:8d:8d:9d:9b:cb:47:7f:
4e:a2:4b:ce:0e:bd:8c:95:7b:ee:e6:1f:58:3a:29:b5:13:f3:
1e:60:f7:23:d2:45:e7:9c:45:fb:c4:b4:1f:7a:19:94:d7:40:
62:70:38:32:56:ab:0a:d9:5c:37:62:53:95:45:5c:64:64:82:
4a:9a:e2:c2:0d:d3:2d:61:91:f1:27:b7:ac:dd:e8:28:f5:51:
8f:09:26:fc:9f:63:6c:b6:53:77:9d:b2:e5:de:8d:e3:bb:c7:
f7:59:72:b1:11:43:13:b2:62:bc:b5:0b:45:76:0f:0b:6e:8f:
ef:7d:49:e9:de:0c:94:6c:1b:68:c2:26:e8:de:b0:f4:f6:91:
3a:95:c7:ac:0d:cb:f5:6d:96:b6:9b:80:f1:80:f0:8d:1d:f7:
93:11:31:76:0c:a0:e8:2b:8a:34:66:2e:d2:ad:1c:7d:55:67:
c1:2d:f4:9b:99:25:41:23:21:c9:aa:11:c8:5f:c4:35:9a:fe:
52:97:13:f1:ea:4c:f5:04:2a:e9:e6:f9:d7:4a:a0:53:e9:5c:
9d:3d:f3:c6:95:37:b6:6a:e4:a7:8a:92:91:e0:0f:1e:82:fb:
ef:10:92:52:38:a9:24:ff:86:82:e9:33:ea:5d:e6:3e:66:f4:
e9:f8:d4:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org