Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LANDBANK/MSQ4N9YanhOWb6B3UC2gOsz6YIk.roa
File: MSQ4N9YanhOWb6B3UC2gOsz6YIk.roa (raw, json)
Hash identifier: 9l1Kyw2F2gM+nDdDgrgrbD2Z21m0VF94Qb38+i4AQaU=
Subject key identifier: 31:24:38:37:D6:1A:9E:13:96:6F:A0:77:50:2D:A0:3A:CC:FA:60:89
Certificate issuer: /CN=9ECBF170F7F7D2290E6AED39CA8D238F66072B7A
Certificate serial: 0952
Authority key identifier: 9E:CB:F1:70:F7:F7:D2:29:0E:6A:ED:39:CA:8D:23:8F:66:07:2B:7A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/nsvxcPf30ikOau05yo0jj2YHK3o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LANDBANK/MSQ4N9YanhOWb6B3UC2gOsz6YIk.roa
Signing time: Wed 29 Sep 2021 02:42:22 +0000
ROA not before: Wed 29 Sep 2021 02:42:22 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 3462
IP address blocks: 103.24.100.0/22 maxlen: 22
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2386 (0x952)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ECBF170F7F7D2290E6AED39CA8D238F66072B7A
Validity
Not Before: Sep 29 02:42:22 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=31243837D61A9E13966FA077502DA03ACCFA6089
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:61:f2:79:4b:ea:bc:98:97:b0:4b:92:c7:04:
af:40:8d:aa:98:1a:ca:b0:5b:7d:b2:7c:53:02:5b:
79:1d:2e:ba:2a:c6:e4:a4:32:ef:7e:58:c5:0b:39:
9a:16:68:4f:ea:28:25:0d:78:f5:77:2d:22:3b:5c:
5c:93:87:24:bf:42:21:50:5e:ec:72:13:b1:d0:66:
5d:81:79:74:b2:8b:0d:93:43:d7:9c:ef:1f:4c:e0:
19:fe:42:0f:04:d5:4d:03:9e:52:d9:d7:e2:23:18:
38:7c:13:79:3b:5a:29:01:5e:18:76:2c:ec:75:58:
16:94:5c:85:de:c9:51:f2:f6:7a:4c:33:4e:90:7e:
57:2d:1b:38:56:72:df:c9:df:88:c3:ab:2d:e2:ad:
d5:8f:dd:91:0d:a6:b3:db:ed:51:bb:56:ba:fc:0b:
51:73:76:6f:81:df:2a:c9:45:cb:09:62:1c:0d:9e:
82:78:de:9a:70:b3:79:a5:07:9c:32:37:f9:9e:42:
57:98:02:31:3b:81:e1:2c:60:42:5b:cf:eb:bf:84:
74:8f:7f:77:9b:da:de:da:93:fb:d8:61:e2:89:23:
d1:98:e7:c9:e1:a5:d4:2b:94:d0:66:6c:f9:7d:2f:
bc:cc:79:33:2e:71:31:08:e0:f0:eb:c5:33:b7:df:
8c:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:24:38:37:D6:1A:9E:13:96:6F:A0:77:50:2D:A0:3A:CC:FA:60:89
X509v3 Authority Key Identifier:
keyid:9E:CB:F1:70:F7:F7:D2:29:0E:6A:ED:39:CA:8D:23:8F:66:07:2B:7A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LANDBANK/nsvxcPf30ikOau05yo0jj2YHK3o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/nsvxcPf30ikOau05yo0jj2YHK3o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LANDBANK/MSQ4N9YanhOWb6B3UC2gOsz6YIk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.24.100.0/22
Signature Algorithm: sha256WithRSAEncryption
2f:07:4a:2b:e1:52:b8:93:9c:47:66:ad:79:fb:5d:32:48:a7:
e9:e5:9d:71:7e:ca:55:5d:71:b5:27:f2:2d:6d:ef:f2:4b:8f:
e5:d3:52:78:58:a9:e0:6c:4e:bd:b8:2b:09:53:52:8e:75:f2:
57:e2:d2:d1:20:ad:70:76:c5:24:c5:56:12:d4:81:f3:45:73:
dd:f1:cb:3d:a1:ac:b4:19:f6:18:96:18:9b:8e:6b:35:5c:c6:
8b:d2:a8:93:10:df:74:10:65:63:54:e2:2f:0e:ed:89:e2:fb:
1e:ed:c0:8e:04:5e:cc:38:ec:e7:02:f8:25:ef:2e:73:80:27:
a1:ed:7c:1f:4c:d7:f6:d7:fc:53:f0:9e:e7:54:c0:85:95:cb:
da:69:0b:50:1a:be:d6:dc:bc:0c:4b:5d:93:48:a4:e6:6d:2e:
38:b8:1a:16:c6:8f:ed:e5:97:07:36:3a:99:45:03:be:0e:b3:
01:7d:54:37:77:0d:08:7c:2e:3a:73:7e:db:db:c3:92:f2:0a:
d7:cd:90:26:30:90:ce:36:4e:ff:49:16:51:55:df:65:a9:d6:
58:65:75:d9:68:45:8b:63:49:6e:ad:88:3c:25:8a:75:82:6c:
64:fc:da:11:05:25:54:4d:39:78:d6:de:0f:1a:f1:c9:cc:dc:
6f:06:ed:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:24:49 2025 by rpki-client