Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/RECTALE/0Hk1BHco74XpBIW0bKdPYFId_-Y.roa
File: 0Hk1BHco74XpBIW0bKdPYFId_-Y.roa (raw, json)
Hash identifier: izxByHCDv3jMw2UOWOyL4djMra7nq9YleNg7JFHCUbw=
Subject key identifier: D0:79:35:04:77:28:EF:85:E9:04:85:B4:6C:A7:4F:60:52:1D:FF:E6
Certificate issuer: /CN=E2AF8CFD95270FCF5C2CA65D87777F6FB7ABFD32
Certificate serial: 010A
Authority key identifier: E2:AF:8C:FD:95:27:0F:CF:5C:2C:A6:5D:87:77:7F:6F:B7:AB:FD:32
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4q-M_ZUnD89cLKZdh3d_b7er_TI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RECTALE/0Hk1BHco74XpBIW0bKdPYFId_-Y.roa
Signing time: Tue 16 Aug 2022 03:09:40 +0000
ROA not before: Tue 16 Aug 2022 03:09:40 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 212279
IP address blocks: 2407:d1c0::/32 maxlen: 64
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 266 (0x10a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E2AF8CFD95270FCF5C2CA65D87777F6FB7ABFD32
Validity
Not Before: Aug 16 03:09:40 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=D07935047728EF85E90485B46CA74F60521DFFE6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:06:5f:5c:79:80:b6:9b:cc:f8:eb:ee:e9:c6:
8a:b7:bd:81:1a:13:18:0b:eb:e2:13:fb:a2:a3:f2:
84:31:91:60:54:a5:d0:06:b7:cb:ae:1a:72:f3:1f:
a5:50:f6:12:38:fb:f6:7d:ae:af:40:f6:b1:82:c6:
f3:0c:1b:77:b2:88:20:4f:c8:1d:58:48:cf:fa:b3:
e4:3f:78:d5:ff:12:7c:4a:0f:5f:d1:6c:3b:20:d6:
5a:2e:1f:e1:0c:69:ed:d6:2f:a4:b9:11:92:31:83:
52:60:ef:0f:71:6b:b1:3a:d2:3f:6c:95:66:31:a5:
51:20:f0:f4:35:d2:34:ad:7f:07:76:4b:fa:f5:e7:
fd:48:ab:64:5a:19:10:90:43:8a:ec:86:e6:65:3b:
97:f3:e5:2b:11:d9:f2:4e:72:fc:17:d5:fa:e5:be:
17:97:40:7b:57:b6:5c:f0:e3:f2:35:80:44:45:d9:
b2:6d:eb:0b:4a:69:18:75:91:15:fa:0c:b0:b7:fb:
4c:fc:f0:f9:2c:56:ab:68:4e:ad:4d:9a:8b:5f:4b:
e4:e5:33:80:5b:f0:ee:19:98:96:9b:6b:71:35:3a:
ec:d3:27:10:34:0f:2a:3d:7b:14:4c:68:a1:73:67:
48:31:fb:b8:4a:80:67:77:c9:34:c9:fd:c6:80:ae:
0c:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:79:35:04:77:28:EF:85:E9:04:85:B4:6C:A7:4F:60:52:1D:FF:E6
X509v3 Authority Key Identifier:
keyid:E2:AF:8C:FD:95:27:0F:CF:5C:2C:A6:5D:87:77:7F:6F:B7:AB:FD:32
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RECTALE/4q-M_ZUnD89cLKZdh3d_b7er_TI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4q-M_ZUnD89cLKZdh3d_b7er_TI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RECTALE/0Hk1BHco74XpBIW0bKdPYFId_-Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2407:d1c0::/32
Signature Algorithm: sha256WithRSAEncryption
41:cb:85:2c:ba:92:38:dc:88:19:67:2e:6f:94:f9:65:c4:90:
3c:0b:9e:39:65:7a:62:8c:c1:93:8e:42:b9:eb:a0:70:38:6a:
39:97:d2:71:04:5c:c1:28:8b:ea:8a:d4:de:5f:41:ff:b3:4c:
73:92:fc:f4:9f:47:28:6a:c5:0c:e5:44:0c:3e:1b:e7:fc:8b:
55:d5:5f:d0:ff:38:d3:f9:16:06:c7:49:65:de:33:42:d8:ac:
6c:0b:15:93:28:c0:d6:a0:b9:28:91:9e:c5:ac:e8:8e:ea:0f:
a2:4f:9a:6f:94:e1:cf:9d:4e:79:f1:b6:d6:9b:76:35:73:5b:
17:6f:58:1c:f8:bb:ef:99:b4:4d:63:0b:e4:6b:de:d3:7b:5a:
3d:06:5a:8b:97:db:43:63:d7:58:a6:cd:73:7a:50:f9:c9:e5:
41:ba:09:88:cf:d8:23:d8:42:0d:6c:e6:25:7c:91:14:d9:cf:
9d:f6:6d:53:79:9d:41:87:c1:2b:56:8a:a8:6f:6f:bc:1b:46:
7e:59:a8:75:3d:4d:c8:e6:82:ed:2d:64:83:4e:3b:84:20:a0:
f2:af:b0:95:18:e1:15:84:de:a1:1f:87:e0:34:72:f8:6f:69:
86:eb:70:1a:d4:29:4d:25:c4:9b:25:d7:c7:a1:ac:b8:3e:05:
17:16:61:c4
-----BEGIN CERTIFICATE-----
MIIE1TCCA72gAwIBAgICAQowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTJB
RjhDRkQ5NTI3MEZDRjVDMkNBNjVEODc3NzdGNkZCN0FCRkQzMjAeFw0yMjA4MTYw
MzA5NDBaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEQwNzkzNTA0NzcyOEVG
ODVFOTA0ODVCNDZDQTc0RjYwNTIxREZGRTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDABl9ceYC2m8z46+7pxoq3vYEaExgL6+IT+6Kj8oQxkWBUpdAG
t8uuGnLzH6VQ9hI4+/Z9rq9A9rGCxvMMG3eyiCBPyB1YSM/6s+Q/eNX/EnxKD1/R
bDsg1louH+EMae3WL6S5EZIxg1Jg7w9xa7E60j9slWYxpVEg8PQ10jStfwd2S/r1
5/1Iq2RaGRCQQ4rshuZlO5fz5SsR2fJOcvwX1frlvheXQHtXtlzw4/I1gERF2bJt
6wtKaRh1kRX6DLC3+0z88PksVqtoTq1NmotfS+TlM4Bb8O4ZmJaba3E1OuzTJxA0
Dyo9exRMaKFzZ0gx+7hKgGd3yTTJ/caArgzpAgMBAAGjggHxMIIB7TAdBgNVHQ4E
FgQU0Hk1BHco74XpBIW0bKdPYFId/+YwHwYDVR0jBBgwFoAU4q+M/ZUnD89cLKZd
h3d/b7er/TIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUkVDVEFM
RS80cS1NX1pVbkQ4OWNMS1pkaDNkX2I3ZXJfVEkuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBLzRxLU1fWlVuRDg5Y0xLWmRoM2RfYjdlcl9USS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1JFQ1RBTEUvMEhrMUJIY283NFhwQklX
MGJLZFBZRklkXy1ZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMF
ACQH0cAwDQYJKoZIhvcNAQELBQADggEBAEHLhSy6kjjciBlnLm+U+WXEkDwLnjll
emKMwZOOQrnroHA4ajmX0nEEXMEoi+qK1N5fQf+zTHOS/PSfRyhqxQzlRAw+G+f8
i1XVX9D/ONP5FgbHSWXeM0LYrGwLFZMowNaguSiRnsWs6I7qD6JPmm+U4c+dTnnx
ttabdjVzWxdvWBz4u++ZtE1jC+Rr3tN7Wj0GWouX20Nj11imzXN6UPnJ5UG6CYjP
2CPYQg1s5iV8kRTZz532bVN5nUGHwStWiqhvb7wbRn5ZqHU9Tcjmgu0tZINOO4Qg
oPKvsJUY4RWE3qEfh+A0cvhvaYbrcBrUKU0lxJsl18ehrLg+BRcWYcQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org