Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/jM6SmJ_bf6I0ZbyLbmVoFksnEpg.roa
File: jM6SmJ_bf6I0ZbyLbmVoFksnEpg.roa (raw, json)
Hash identifier: twzVNJhqhcAcxxAtwCfTk7wj5AJi9a59KNUHnv4k5mM=
Subject key identifier: 8C:CE:92:98:9F:DB:7F:A2:34:65:BC:8B:6E:65:68:16:4B:27:12:98
Certificate issuer: /CN=385713E359FCB9CAB12F20DB3FF190FCA81E323E
Certificate serial: 0764
Authority key identifier: 38:57:13:E3:59:FC:B9:CA:B1:2F:20:DB:3F:F1:90:FC:A8:1E:32:3E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OFcT41n8ucqxLyDbP_GQ_KgeMj4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/jM6SmJ_bf6I0ZbyLbmVoFksnEpg.roa
Signing time: Tue 29 Sep 2020 09:58:07 +0000
ROA not before: Tue 29 Sep 2020 09:58:07 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131657
IP address blocks: 103.122.191.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1892 (0x764)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=385713E359FCB9CAB12F20DB3FF190FCA81E323E
Validity
Not Before: Sep 29 09:58:07 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8CCE92989FDB7FA23465BC8B6E6568164B271298
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:99:cc:ee:18:b9:ec:d0:db:e6:91:25:96:b7:
2b:c5:d3:c5:d3:96:e0:95:45:4e:6a:ca:01:90:35:
5b:15:65:17:65:83:f1:f9:c7:55:ae:4d:60:d5:33:
08:5f:9d:eb:6c:d0:83:73:d3:82:fc:2c:51:e4:fc:
45:f5:a7:6a:c6:bd:4a:68:1d:4f:0e:af:4b:88:e6:
7e:40:17:e2:96:cb:0e:94:65:26:c3:6d:da:75:78:
f2:a3:4f:f4:ba:6e:64:d4:20:1b:ab:f3:44:59:e9:
27:4b:05:ae:c4:c9:2c:f9:8f:02:57:4a:0e:55:ce:
52:38:fe:12:d6:f9:f0:80:d8:18:cd:66:10:10:c1:
03:06:70:0d:79:58:ca:95:56:f7:f9:4f:c1:63:20:
86:ba:b4:78:1e:9c:d4:67:dd:4d:26:db:57:14:1d:
28:ad:5e:98:c3:fe:97:35:75:16:31:f0:ef:ae:5e:
e0:e4:be:c6:f7:d2:53:a1:5a:4f:99:19:d2:59:5e:
21:d4:a9:8b:d1:93:ca:bb:74:74:7e:ff:07:c2:c5:
64:48:40:9c:17:80:f9:1f:f3:08:76:3e:a9:79:17:
70:e4:ec:60:a6:87:1c:22:82:e1:5f:fb:25:fd:0c:
86:81:cb:7e:81:dd:27:65:c9:e1:f1:76:4b:63:0b:
79:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:CE:92:98:9F:DB:7F:A2:34:65:BC:8B:6E:65:68:16:4B:27:12:98
X509v3 Authority Key Identifier:
keyid:38:57:13:E3:59:FC:B9:CA:B1:2F:20:DB:3F:F1:90:FC:A8:1E:32:3E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/OFcT41n8ucqxLyDbP_GQ_KgeMj4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OFcT41n8ucqxLyDbP_GQ_KgeMj4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/jM6SmJ_bf6I0ZbyLbmVoFksnEpg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.191.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:a6:bb:81:c9:bd:c0:fd:03:7c:21:fc:77:0f:49:6f:19:92:
ed:29:47:c1:d9:c5:76:64:e5:a8:34:b5:ea:9f:0c:27:1f:65:
2a:c7:e1:2a:6c:75:b2:af:5f:72:6a:d1:ef:4b:12:93:6a:8f:
e0:87:1c:fe:37:41:8c:cb:2c:ac:a0:f9:f6:87:b2:8e:46:cd:
10:af:38:5d:eb:c1:8d:f0:69:a1:fe:ae:37:0d:0e:46:26:e7:
9a:b9:c7:ee:c3:0e:5d:a8:87:9c:83:10:aa:d1:5d:c8:46:2c:
26:3c:c6:c2:2e:df:b2:fd:9d:a7:71:3e:d4:21:ae:36:06:74:
15:df:5a:9a:82:04:b4:74:93:3b:f6:41:f9:c4:cb:2b:8a:96:
a8:54:9b:f3:8f:f3:45:23:67:d6:87:76:f0:b2:7b:d7:bd:4f:
46:1b:0a:d9:ce:b9:b9:1f:25:56:50:e7:bf:a8:64:ba:20:05:
6e:2d:0b:11:27:3a:27:60:2e:a7:12:74:3a:65:19:35:98:cb:
e2:63:eb:3b:2c:80:3c:ad:df:c6:64:6e:fe:b5:ab:0a:16:f8:
95:96:20:79:8b:01:25:28:5d:c7:7a:71:55:c1:96:d9:27:dc:
43:7f:4d:e5:d1:90:ee:12:70:e5:69:cb:3a:28:06:b2:f5:66:
c1:93:f5:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org