Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/kN_DcoWRZopbyftf6fhYYHEuOIA.roa
File: kN_DcoWRZopbyftf6fhYYHEuOIA.roa (raw, json)
Hash identifier: OmZlFwSr5eLRbbINqJGWdWeeNZkv4rVsb1FB9uEqyD0=
Subject key identifier: 90:DF:C3:72:85:91:66:8A:5B:C9:FB:5F:E9:F8:58:60:71:2E:38:80
Certificate issuer: /CN=385713E359FCB9CAB12F20DB3FF190FCA81E323E
Certificate serial: 0B7F
Authority key identifier: 38:57:13:E3:59:FC:B9:CA:B1:2F:20:DB:3F:F1:90:FC:A8:1E:32:3E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OFcT41n8ucqxLyDbP_GQ_KgeMj4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/kN_DcoWRZopbyftf6fhYYHEuOIA.roa
Signing time: Fri 01 Sep 2023 08:56:26 +0000
ROA not before: Fri 01 Sep 2023 08:56:26 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 134823
IP address blocks: 103.122.189.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2943 (0xb7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=385713E359FCB9CAB12F20DB3FF190FCA81E323E
Validity
Not Before: Sep 1 08:56:26 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=90DFC3728591668A5BC9FB5FE9F85860712E3880
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:12:4d:34:0e:7b:6d:85:24:50:27:9f:a8:4f:
1c:5b:0a:d2:e4:9b:4f:7d:cc:32:c1:fb:d8:da:81:
27:2b:cc:10:a2:87:55:72:1b:49:76:e0:87:f5:86:
7b:38:3f:ea:ec:2a:33:b9:06:2d:4e:a7:43:6b:62:
ae:da:8e:ba:2d:b9:dd:1c:ac:6f:51:72:b8:6b:b4:
c2:4f:76:6d:23:14:74:b8:bb:14:0a:3d:a9:f9:7c:
2f:ad:d4:e9:0f:7d:a7:47:d7:29:f0:f1:11:1b:f7:
10:41:81:45:c1:68:8f:5d:bf:e4:f3:bd:df:f0:de:
af:56:a7:0e:52:4c:26:b3:49:0d:30:07:06:82:7b:
8c:89:3f:99:c5:24:2f:45:69:8f:ea:9d:65:6f:c8:
a9:e6:ff:0e:95:2f:87:2f:e9:d6:3e:62:ce:f5:fe:
00:df:2b:9e:38:8f:26:5d:95:8e:34:5f:a5:0e:6e:
70:a3:dc:67:11:01:34:95:58:4e:47:ea:1f:5e:84:
b5:d3:ba:3d:93:47:05:1a:e9:c8:32:fe:41:20:82:
74:0f:4c:e6:00:69:97:ee:e6:02:01:96:fd:d3:34:
3e:23:a3:ee:68:af:74:d7:6a:1b:25:37:59:1f:44:
d6:46:88:a3:bd:bd:6d:3c:4e:4d:5b:ec:43:cd:2a:
46:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:DF:C3:72:85:91:66:8A:5B:C9:FB:5F:E9:F8:58:60:71:2E:38:80
X509v3 Authority Key Identifier:
keyid:38:57:13:E3:59:FC:B9:CA:B1:2F:20:DB:3F:F1:90:FC:A8:1E:32:3E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/OFcT41n8ucqxLyDbP_GQ_KgeMj4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OFcT41n8ucqxLyDbP_GQ_KgeMj4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/kN_DcoWRZopbyftf6fhYYHEuOIA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.189.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:cc:78:fa:4e:1a:84:39:f8:bd:41:05:74:59:d8:4e:0a:29:
6a:d9:57:ca:ec:aa:e0:e6:53:cb:14:85:8c:d1:d8:3d:62:1c:
b2:59:47:4a:ef:0c:c3:2a:e1:63:a4:ed:d2:1a:cc:8f:5f:12:
04:a1:ed:ac:ba:bf:0b:ae:98:51:eb:ff:b7:0e:31:5d:09:61:
8a:4b:39:ef:1f:9b:80:d3:28:09:da:8f:50:9c:8f:84:a5:65:
4f:b2:ad:e8:fb:7e:b5:ea:76:d0:8d:7d:b0:6f:d5:ae:21:00:
80:ff:b8:c5:68:e1:b0:a5:d3:05:fe:8f:b6:b4:d4:3c:f6:b4:
31:37:e4:64:eb:24:11:85:58:07:04:b3:35:4a:b1:84:a9:51:
c4:b3:93:97:e5:3c:cf:eb:1a:84:42:e1:96:43:9d:b9:32:a0:
20:fb:c6:72:66:93:fb:0b:8e:8c:43:79:79:5f:67:c5:db:05:
0c:04:32:41:96:96:53:eb:70:91:13:e7:cc:53:ec:0c:30:ce:
41:fd:45:7f:15:23:f3:94:ab:09:b5:6d:f1:eb:25:8d:5e:9e:
89:cd:36:1b:4d:2e:95:9b:b1:5c:92:47:9d:53:9b:74:ba:5b:
24:e1:9f:fc:51:ba:c2:1c:6c:6a:fc:66:27:31:00:ac:bd:a2:
43:3e:d8:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 12 08:45:26 2023 by rpki-client on console-ams.rpki-client.org