Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/e8EB25sP_0CKpo98HOUQd1DsVuU.roa
File: e8EB25sP_0CKpo98HOUQd1DsVuU.roa (raw, json)
Hash identifier: 0dvyeYwXpwakubC86wqlpqJyqd4DAbsdrUZbKCFCAaI=
Subject key identifier: 7B:C1:01:DB:9B:0F:FF:40:8A:A6:8F:7C:1C:E5:10:77:50:EC:56:E5
Certificate issuer: /CN=385713E359FCB9CAB12F20DB3FF190FCA81E323E
Certificate serial: 0979
Authority key identifier: 38:57:13:E3:59:FC:B9:CA:B1:2F:20:DB:3F:F1:90:FC:A8:1E:32:3E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OFcT41n8ucqxLyDbP_GQ_KgeMj4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/e8EB25sP_0CKpo98HOUQd1DsVuU.roa
Signing time: Wed 29 Sep 2021 02:50:32 +0000
ROA not before: Wed 29 Sep 2021 02:50:32 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 134823
IP address blocks: 2403:9340::/32 maxlen: 48
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2425 (0x979)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=385713E359FCB9CAB12F20DB3FF190FCA81E323E
Validity
Not Before: Sep 29 02:50:32 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=7BC101DB9B0FFF408AA68F7C1CE5107750EC56E5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:e5:dd:0e:e5:03:1e:26:31:2a:ce:f5:f5:ea:
f0:1d:3d:b5:b4:a9:eb:87:e3:9f:ee:b4:03:90:0e:
f1:36:8a:12:ec:2b:39:f3:17:cb:6c:d2:69:ba:48:
8a:d8:ab:7d:85:fb:33:10:ba:f7:14:75:99:b0:0e:
2e:6e:5a:bd:a0:5a:bb:39:20:7c:5e:52:1b:88:3c:
20:83:f1:20:5c:96:ad:a8:9c:56:c2:ec:3e:61:16:
ad:56:9f:5e:b0:58:07:4e:96:69:48:b6:11:a5:a1:
21:a0:c9:65:49:23:ce:14:52:b5:1b:08:43:37:d7:
ee:7c:34:89:01:ca:99:8a:69:12:1c:85:df:d4:38:
62:0e:1e:8f:bc:d8:46:50:31:b0:8d:74:45:67:65:
c2:b1:f4:b1:80:55:4e:c2:c0:b4:95:3b:c9:17:23:
51:5b:7d:a3:76:1f:75:e0:7d:1d:56:61:37:0d:cc:
9d:5d:06:06:ad:4d:c3:8c:69:18:52:f7:d0:2b:da:
13:7a:23:71:b5:24:7d:49:aa:e5:3c:1e:ca:51:0f:
93:07:87:c5:42:a2:ed:03:e1:91:56:f1:bf:ca:3f:
bf:62:85:36:4c:a1:df:13:e8:72:da:a9:bd:a9:f9:
f1:af:87:d0:f6:be:bd:12:e5:2b:2a:96:7b:ca:8f:
4d:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:C1:01:DB:9B:0F:FF:40:8A:A6:8F:7C:1C:E5:10:77:50:EC:56:E5
X509v3 Authority Key Identifier:
keyid:38:57:13:E3:59:FC:B9:CA:B1:2F:20:DB:3F:F1:90:FC:A8:1E:32:3E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/OFcT41n8ucqxLyDbP_GQ_KgeMj4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OFcT41n8ucqxLyDbP_GQ_KgeMj4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/e8EB25sP_0CKpo98HOUQd1DsVuU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:9340::/32
Signature Algorithm: sha256WithRSAEncryption
70:30:ee:80:aa:0e:b2:05:99:a0:5d:70:8f:80:a9:07:33:57:
2a:75:83:46:9e:e0:df:9e:77:bd:97:94:de:68:a4:d9:d1:bb:
f6:fc:76:4b:c7:c3:d8:78:19:a1:94:bd:6d:cc:40:be:df:3e:
8c:50:af:13:26:92:e4:9a:6e:af:f0:57:86:21:f1:25:5f:42:
02:39:f6:62:84:d9:92:69:3b:6e:45:28:13:e3:23:87:69:2f:
51:16:89:67:e2:84:b7:aa:7b:42:a1:90:bb:fc:2c:24:31:de:
f0:3a:2c:8c:e8:b3:b1:09:ef:fa:0e:43:0e:f3:58:33:ed:e1:
3e:5a:89:7e:fa:32:f9:3a:eb:f4:74:b3:f1:07:7b:4b:04:52:
83:e1:9d:cd:c4:10:68:75:9b:89:e2:fa:c9:b4:48:b5:09:b8:
ca:15:bd:c6:39:ae:1e:62:91:c4:1b:e1:dc:4c:3a:5e:91:91:
ed:65:b7:32:e5:45:e7:e7:7a:5a:07:bd:cd:08:39:99:2c:ab:
92:36:93:7c:37:be:ff:b8:d4:c8:54:b2:d2:ff:83:92:0f:3e:
6a:3e:4b:95:a3:a2:a0:fe:36:4c:45:92:0d:29:b6:f5:66:86:
c0:8c:e0:46:fa:d1:3b:a7:9d:23:0b:a6:a1:69:9c:6f:04:cc:
a2:41:d2:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org