Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/j5cCABYkquMWFxH4ePgwRSYYX2Q.roa
File: j5cCABYkquMWFxH4ePgwRSYYX2Q.roa (raw, json)
Hash identifier: 0aLju4PGeobuI3onrJ6Li3u/+8MtEI8qdEzaViSKyQw=
Subject key identifier: 8F:97:02:00:16:24:AA:E3:16:17:11:F8:78:F8:30:45:26:18:5F:64
Certificate issuer: /CN=385713E359FCB9CAB12F20DB3FF190FCA81E323E
Certificate serial: 08BD
Authority key identifier: 38:57:13:E3:59:FC:B9:CA:B1:2F:20:DB:3F:F1:90:FC:A8:1E:32:3E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OFcT41n8ucqxLyDbP_GQ_KgeMj4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/j5cCABYkquMWFxH4ePgwRSYYX2Q.roa
Signing time: Sun 07 Feb 2021 06:03:02 +0000
ROA not before: Sun 07 Feb 2021 06:03:02 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131657
IP address blocks: 103.122.190.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2237 (0x8bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=385713E359FCB9CAB12F20DB3FF190FCA81E323E
Validity
Not Before: Feb 7 06:03:02 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8F9702001624AAE3161711F878F8304526185F64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:bf:74:b8:91:04:30:cb:0a:c6:06:67:b1:d8:
c0:4b:d3:4b:d8:53:92:b1:20:95:9a:2a:c8:52:e8:
c1:a3:34:18:86:d1:2c:8f:4c:be:38:47:ea:5a:41:
79:54:7d:c8:20:66:42:36:f0:66:a8:f5:df:c0:e9:
66:a6:85:0e:dd:11:59:64:57:5a:85:c6:f5:07:c7:
f4:cc:5b:03:8b:d1:22:47:ab:4f:8b:13:8b:50:19:
5b:a7:ed:32:2f:dc:b2:15:cb:47:c5:49:5b:e3:82:
fe:13:9d:40:2d:72:e4:73:f8:5b:dd:4f:d0:67:3e:
8e:81:c7:bd:f8:05:a4:49:ea:57:87:ad:1b:73:39:
0e:c1:4e:f1:b8:6f:88:fc:7d:3e:e1:87:f9:91:a1:
f2:59:58:3a:44:54:e1:07:b1:6b:9c:58:a5:ae:d3:
33:ef:a1:f0:2d:34:6b:54:4c:a6:7b:e8:b1:0c:87:
61:82:b8:ed:1c:ea:20:e4:bb:96:30:d2:86:64:74:
ae:ef:c4:47:db:7d:a6:eb:10:b5:6c:f8:0e:dd:13:
3a:55:a6:94:c5:68:a8:0e:e2:2a:ae:94:12:89:55:
a9:5b:f3:a1:5c:96:a5:be:57:d2:c5:6a:61:b9:70:
95:7d:ce:77:6c:1c:b2:73:90:d5:76:2e:fa:ef:3d:
49:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:97:02:00:16:24:AA:E3:16:17:11:F8:78:F8:30:45:26:18:5F:64
X509v3 Authority Key Identifier:
keyid:38:57:13:E3:59:FC:B9:CA:B1:2F:20:DB:3F:F1:90:FC:A8:1E:32:3E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/OFcT41n8ucqxLyDbP_GQ_KgeMj4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OFcT41n8ucqxLyDbP_GQ_KgeMj4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/j5cCABYkquMWFxH4ePgwRSYYX2Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.190.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:61:3d:31:4f:75:33:f5:f7:ec:0d:75:8e:ed:10:03:b2:0d:
72:ef:df:e7:fe:3c:40:03:9e:cd:28:9d:30:19:64:7f:ac:15:
4a:5c:1e:c3:fb:fc:54:36:41:95:c5:5f:87:cc:23:34:36:b6:
63:5c:de:b1:9a:04:3a:aa:46:36:be:fe:2f:8e:5d:80:3d:91:
75:42:cd:7a:81:46:52:3d:39:66:a8:a8:db:af:94:5f:1a:eb:
5f:69:8c:25:a4:0e:a3:fb:60:9f:08:a6:c8:11:73:37:42:ff:
a1:8b:56:0f:1e:dd:f2:d0:f4:b0:0d:8a:d3:2f:a6:e7:b1:c6:
4a:ee:1f:e0:40:01:21:6e:ef:53:bc:4d:0f:c0:60:4b:f3:05:
7a:0e:c3:ef:ac:d4:22:37:d1:b4:15:ba:39:e1:53:53:04:8d:
fa:19:29:54:6c:41:04:fc:c9:ad:51:40:a5:1e:eb:5f:38:bd:
1e:09:ae:2a:7e:03:ee:5f:c0:67:cd:35:b1:b0:5c:3a:7d:09:
ec:26:cc:b8:83:38:6a:08:9d:2b:2d:f3:7c:36:ff:6d:59:b6:
bb:7c:60:a9:63:17:d3:29:3f:42:d6:2f:a9:6d:c9:4c:c5:a8:
48:d0:48:8d:9e:08:1a:a9:10:9f:4f:bd:e2:bd:d0:b7:85:3a:
a5:28:21:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org