Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/sx8PYhGedxL_pVqAIq6H2w_CqZE.roa
File: sx8PYhGedxL_pVqAIq6H2w_CqZE.roa (raw, json)
Hash identifier: NpOJxvgBXIsGMOEl5DmJ97Xp4xQmuBwwOj7dRQbyN5k=
Subject key identifier: B3:1F:0F:62:11:9E:77:12:FF:A5:5A:80:22:AE:87:DB:0F:C2:A9:91
Certificate issuer: /CN=385713E359FCB9CAB12F20DB3FF190FCA81E323E
Certificate serial: 0761
Authority key identifier: 38:57:13:E3:59:FC:B9:CA:B1:2F:20:DB:3F:F1:90:FC:A8:1E:32:3E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OFcT41n8ucqxLyDbP_GQ_KgeMj4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/sx8PYhGedxL_pVqAIq6H2w_CqZE.roa
Signing time: Tue 29 Sep 2020 09:58:07 +0000
ROA not before: Tue 29 Sep 2020 09:58:07 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 20473
IP address blocks: 2403:9340::/32 maxlen: 32
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1889 (0x761)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=385713E359FCB9CAB12F20DB3FF190FCA81E323E
Validity
Not Before: Sep 29 09:58:07 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B31F0F62119E7712FFA55A8022AE87DB0FC2A991
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:5b:84:74:c4:7e:ad:81:1b:a6:a8:93:21:cc:
64:3a:91:9b:c7:19:55:e0:aa:31:5c:2e:e8:55:34:
3a:28:dd:03:81:ef:b0:80:55:5b:56:ed:59:f3:ae:
a4:d7:61:04:3d:9d:86:7b:5a:fe:77:19:0e:09:42:
09:69:b3:39:f6:c0:cf:ef:43:dc:f4:b2:15:1e:a6:
45:e2:3e:98:02:f9:9a:a1:78:2b:96:ac:bc:d3:3b:
3f:d2:25:14:b9:16:13:74:87:b3:fa:29:08:da:c7:
a4:a3:53:e4:87:9e:1e:96:5b:31:2b:fb:be:a8:8d:
b7:5a:fc:4c:30:03:82:15:27:80:2c:24:a2:3a:5d:
80:b5:b0:2a:0f:3c:ac:53:d2:a2:fc:4f:79:d7:73:
3b:0b:35:bb:3f:dd:3f:5b:da:0c:d1:82:c5:e9:0c:
a8:ff:c3:95:6b:f1:ce:15:fc:cc:6a:a9:24:e7:28:
90:2d:17:cb:f1:55:bf:6b:94:d0:bb:32:a1:af:0e:
85:6f:e3:94:b1:a4:b5:a1:9d:62:67:35:26:b3:6f:
e3:1b:d1:d7:af:b0:6b:ba:53:fc:a4:59:51:6b:a8:
4c:c4:a8:56:4e:41:94:51:15:72:bc:50:18:6a:86:
a5:ba:be:d7:48:85:a9:0e:bc:94:a6:ea:2e:d4:87:
a1:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:1F:0F:62:11:9E:77:12:FF:A5:5A:80:22:AE:87:DB:0F:C2:A9:91
X509v3 Authority Key Identifier:
keyid:38:57:13:E3:59:FC:B9:CA:B1:2F:20:DB:3F:F1:90:FC:A8:1E:32:3E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/OFcT41n8ucqxLyDbP_GQ_KgeMj4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OFcT41n8ucqxLyDbP_GQ_KgeMj4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HHRCOLTD/sx8PYhGedxL_pVqAIq6H2w_CqZE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:9340::/32
Signature Algorithm: sha256WithRSAEncryption
84:dc:70:da:25:1a:1d:81:70:ef:82:78:fc:60:a6:1e:7b:16:
c6:eb:86:22:1a:f3:b2:cc:68:5d:a9:61:8f:92:40:15:25:94:
3a:c7:53:8f:a4:f4:7e:ee:9e:58:66:d6:ec:dc:68:3f:02:48:
3c:fb:97:68:c9:d3:c0:0b:54:f7:7a:bf:cd:de:b6:63:39:17:
0a:88:9d:91:0c:78:1c:c6:9b:81:0a:88:c7:8d:e9:7d:81:3d:
72:ff:4b:4e:c3:5b:fe:e1:81:6f:7a:6c:65:76:fc:58:80:2f:
8a:b7:b7:71:9a:9b:22:d2:97:a9:13:03:b3:a5:bb:8e:43:0c:
88:ba:4f:c5:aa:47:f0:4b:a8:26:89:71:e9:20:65:b6:6e:2b:
22:27:3a:a5:21:44:07:b9:49:5c:2d:9d:cc:b7:4a:e2:57:cd:
a3:a6:71:ed:14:d4:38:06:3a:53:2c:21:8f:dc:59:d8:c3:a5:
9a:59:8b:21:b5:1e:ec:0d:7e:76:4d:d0:11:f5:41:b6:dd:31:
98:2d:ec:e4:0a:93:d0:6f:10:e7:ce:fb:80:b5:38:db:2b:d0:
9d:5f:11:65:e0:eb:05:39:8f:15:cf:95:6b:b1:b4:09:89:2b:
df:02:7f:ca:eb:4c:6f:d1:2d:9a:d9:52:c9:bc:88:f2:e1:71:
23:96:d3:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org