Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LINGCAI/8yha5ijSmBvlYbaTPp3UNY_IUsc.roa
File: 8yha5ijSmBvlYbaTPp3UNY_IUsc.roa (raw, json)
Hash identifier: qltx/RwoJfXMbqloTDE2iruPt5Ve3xGWSPySdt8fhHU=
Subject key identifier: F3:28:5A:E6:28:D2:98:1B:E5:61:B6:93:3E:9D:D4:35:8F:C8:52:C7
Certificate issuer: /CN=8AB99EC90607B96019516ECA604C7B7FF2474A9A
Certificate serial: 0101
Authority key identifier: 8A:B9:9E:C9:06:07:B9:60:19:51:6E:CA:60:4C:7B:7F:F2:47:4A:9A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/irmeyQYHuWAZUW7KYEx7f_JHSpo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LINGCAI/8yha5ijSmBvlYbaTPp3UNY_IUsc.roa
Signing time: Mon 26 Aug 2024 05:20:25 +0000
ROA not before: Mon 26 Aug 2024 05:20:25 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131642
IP address blocks: 2401:2b60::/32 maxlen: 64
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 257 (0x101)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8AB99EC90607B96019516ECA604C7B7FF2474A9A
Validity
Not Before: Aug 26 05:20:25 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=F3285AE628D2981BE561B6933E9DD4358FC852C7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:2d:fd:f8:1f:17:2d:25:7d:06:96:48:94:fe:
10:b8:79:a3:95:28:36:26:4a:f9:6f:d5:b2:21:93:
56:68:56:19:6d:83:19:68:55:c5:9d:21:cd:2f:32:
7f:ac:a4:21:7b:44:94:93:7a:a1:d0:2b:2a:41:0a:
e4:41:da:1e:49:91:9a:90:17:18:15:93:51:f3:87:
79:0a:3f:ab:4c:60:d5:a6:d0:b5:c1:99:c1:8f:24:
14:86:9b:f6:d6:51:03:45:72:8e:55:cf:46:99:0c:
63:d4:75:46:6c:31:3a:b9:40:25:a2:ab:1e:e9:1a:
e5:75:85:2b:25:a2:fe:1b:84:aa:06:17:0e:c8:25:
79:2a:b0:08:91:ca:71:02:fc:04:57:6e:b4:ed:20:
00:5e:d2:f6:5d:23:06:bb:c8:29:6a:73:db:85:3a:
68:80:52:1c:d8:96:44:a3:8f:d8:50:e0:b4:7d:e4:
81:4c:9c:01:dc:9b:f8:a4:23:ba:14:14:35:c0:d5:
de:b1:e2:9b:de:78:f1:91:dd:6b:4b:05:dc:38:70:
41:62:c1:3d:bb:8e:13:3b:1d:cb:40:5b:54:a2:a5:
ad:3a:8b:54:c5:c5:9b:91:99:87:cf:14:16:6f:78:
b1:02:6e:4f:48:43:59:e2:a2:fd:fa:4d:8e:90:ba:
10:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:28:5A:E6:28:D2:98:1B:E5:61:B6:93:3E:9D:D4:35:8F:C8:52:C7
X509v3 Authority Key Identifier:
keyid:8A:B9:9E:C9:06:07:B9:60:19:51:6E:CA:60:4C:7B:7F:F2:47:4A:9A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LINGCAI/irmeyQYHuWAZUW7KYEx7f_JHSpo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/irmeyQYHuWAZUW7KYEx7f_JHSpo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LINGCAI/8yha5ijSmBvlYbaTPp3UNY_IUsc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:2b60::/32
Signature Algorithm: sha256WithRSAEncryption
4f:2a:c0:11:90:36:e8:51:30:1b:30:fc:74:e1:43:16:1e:af:
71:12:a1:27:8a:45:32:04:4c:b5:e7:9c:db:59:5f:e2:6c:39:
81:aa:92:3e:bb:bd:e0:3c:d0:ad:d9:ff:21:ac:8e:4a:96:64:
e7:5d:8e:df:36:ec:4e:d0:1e:c8:fa:79:27:9d:13:81:5a:ac:
f7:12:eb:2e:ad:4e:6f:78:fb:40:2d:df:5e:c7:9d:7c:ac:90:
cf:b6:72:a0:53:22:d2:48:8e:78:a1:96:ca:3f:cf:d4:9b:a5:
dd:68:bd:06:91:71:92:8b:71:09:58:11:98:f8:db:b0:f3:51:
a1:4f:aa:52:38:47:ac:1b:5c:21:3a:73:0e:a8:8f:f7:67:cb:
37:37:9e:62:6b:32:4c:6c:4a:38:ab:26:76:78:be:9f:bf:c4:
a3:7e:6e:24:3f:a0:62:1d:ec:2b:0b:89:4c:3e:f2:4f:4b:ee:
7a:70:cd:a1:3a:d8:da:3c:b2:04:fe:70:de:ae:8d:90:2c:47:
b8:17:04:1f:f7:9b:d5:fe:7f:8e:b1:2a:9d:f1:81:9c:b2:4c:
9a:f5:f8:79:fc:39:f1:8a:7f:ab:0b:c1:56:16:05:86:d3:e9:
9d:f1:c6:1c:83:e1:8c:38:48:de:28:72:3f:e8:81:15:80:52:
91:1d:4c:06
-----BEGIN CERTIFICATE-----
MIIE1TCCA72gAwIBAgICAQEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEFC
OTlFQzkwNjA3Qjk2MDE5NTE2RUNBNjA0QzdCN0ZGMjQ3NEE5QTAeFw0yNDA4MjYw
NTIwMjVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEYzMjg1QUU2MjhEMjk4
MUJFNTYxQjY5MzNFOURENDM1OEZDODUyQzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC8Lf34HxctJX0GlkiU/hC4eaOVKDYmSvlv1bIhk1ZoVhltgxlo
VcWdIc0vMn+spCF7RJSTeqHQKypBCuRB2h5JkZqQFxgVk1Hzh3kKP6tMYNWm0LXB
mcGPJBSGm/bWUQNFco5Vz0aZDGPUdUZsMTq5QCWiqx7pGuV1hSslov4bhKoGFw7I
JXkqsAiRynEC/ARXbrTtIABe0vZdIwa7yClqc9uFOmiAUhzYlkSjj9hQ4LR95IFM
nAHcm/ikI7oUFDXA1d6x4pveePGR3WtLBdw4cEFiwT27jhM7HctAW1Sipa06i1TF
xZuRmYfPFBZveLECbk9IQ1niov36TY6QuhBXAgMBAAGjggHxMIIB7TAdBgNVHQ4E
FgQU8yha5ijSmBvlYbaTPp3UNY/IUscwHwYDVR0jBBgwFoAUirmeyQYHuWAZUW7K
YEx7f/JHSpowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTElOR0NB
SS9pcm1leVFZSHVXQVpVVzdLWUV4N2ZfSkhTcG8uY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL2lybWV5UVlIdVdBWlVXN0tZRXg3Zl9KSFNwby5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0xJTkdDQUkvOHloYTVpalNtQnZsWWJh
VFBwM1VOWV9JVXNjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMF
ACQBK2AwDQYJKoZIhvcNAQELBQADggEBAE8qwBGQNuhRMBsw/HThQxYer3ESoSeK
RTIETLXnnNtZX+JsOYGqkj67veA80K3Z/yGsjkqWZOddjt827E7QHsj6eSedE4Fa
rPcS6y6tTm94+0At317HnXyskM+2cqBTItJIjnihlso/z9Sbpd1ovQaRcZKLcQlY
EZj427DzUaFPqlI4R6wbXCE6cw6oj/dnyzc3nmJrMkxsSjirJnZ4vp+/xKN+biQ/
oGId7CsLiUw+8k9L7npwzaE62No8sgT+cN6ujZAsR7gXBB/3m9X+f46xKp3xgZyy
TJr1+Hn8OfGKf6sLwVYWBYbT6Z3xxhyD4Yw4SN4ocj/ogRWAUpEdTAY=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:35:25 2025 by rpki-client