Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/RECTALE/65evu-ydGZl5VAZNLOYL3OSKqLo.roa
File: 65evu-ydGZl5VAZNLOYL3OSKqLo.roa (raw, json)
Hash identifier: Zgne7z0wp/CgXR94NnsYuxuJTeHgb9PbaZ+RoM0a3Qk=
Subject key identifier: EB:97:AF:BB:EC:9D:19:99:79:54:06:4D:2C:E6:0B:DC:E4:8A:A8:BA
Certificate issuer: /CN=E2AF8CFD95270FCF5C2CA65D87777F6FB7ABFD32
Certificate serial: D4
Authority key identifier: E2:AF:8C:FD:95:27:0F:CF:5C:2C:A6:5D:87:77:7F:6F:B7:AB:FD:32
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4q-M_ZUnD89cLKZdh3d_b7er_TI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RECTALE/65evu-ydGZl5VAZNLOYL3OSKqLo.roa
Signing time: Sun 29 May 2022 06:24:32 +0000
ROA not before: Sun 29 May 2022 06:24:32 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 7480
IP address blocks: 103.172.124.0/23 maxlen: 23
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 212 (0xd4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E2AF8CFD95270FCF5C2CA65D87777F6FB7ABFD32
Validity
Not Before: May 29 06:24:32 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=EB97AFBBEC9D19997954064D2CE60BDCE48AA8BA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:16:c2:f9:57:88:7c:97:4f:31:6d:6e:18:52:
ee:0e:84:14:58:38:61:d8:7c:4c:54:4f:45:f0:f9:
41:58:b0:9a:3c:f3:98:a7:15:78:23:d6:91:28:f3:
66:96:59:73:2a:ca:ea:87:76:8f:86:00:a9:34:e8:
0e:f5:68:65:9d:34:90:8c:eb:ae:60:3e:59:6a:7b:
98:89:94:ca:40:50:5d:5e:ac:60:fd:bf:aa:3a:5c:
b6:3c:c9:bb:84:20:ec:99:60:62:17:55:92:89:07:
3e:13:99:be:53:d3:ed:9a:8a:e9:97:ae:e6:0f:b3:
6b:96:ff:81:52:c9:25:f3:8b:33:35:fa:63:7e:b1:
34:a9:c7:11:38:9f:df:ae:75:47:fa:71:6f:91:ff:
9f:a3:f6:8d:24:10:1a:a5:ac:86:79:c9:18:6c:3b:
e0:21:94:6e:3b:a1:91:63:3a:ef:52:8e:21:d2:94:
0a:96:d0:3f:67:34:e2:40:1a:2e:0d:ec:10:7b:35:
4d:2a:e4:28:6b:f2:82:d7:c2:15:8a:fe:5b:cb:43:
f1:ed:49:f0:4e:82:0e:7e:c1:88:1d:d5:34:55:30:
7b:63:df:73:0b:75:89:2c:f3:31:82:21:f8:49:56:
56:ed:94:4a:5f:52:53:55:6e:bf:a8:86:fd:81:da:
8f:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:97:AF:BB:EC:9D:19:99:79:54:06:4D:2C:E6:0B:DC:E4:8A:A8:BA
X509v3 Authority Key Identifier:
keyid:E2:AF:8C:FD:95:27:0F:CF:5C:2C:A6:5D:87:77:7F:6F:B7:AB:FD:32
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RECTALE/4q-M_ZUnD89cLKZdh3d_b7er_TI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4q-M_ZUnD89cLKZdh3d_b7er_TI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RECTALE/65evu-ydGZl5VAZNLOYL3OSKqLo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.172.124.0/23
Signature Algorithm: sha256WithRSAEncryption
3e:bd:02:80:52:67:59:c5:05:92:d5:dd:60:1b:7b:ea:a3:0c:
aa:3b:e2:06:66:a7:b0:be:7e:71:fc:27:bf:e4:1b:fa:00:48:
05:b7:34:80:4d:e5:26:79:15:49:3b:33:f2:94:91:d1:45:e1:
9c:5b:f0:63:21:7e:09:23:48:cf:07:e0:41:c8:63:29:30:f3:
66:e7:06:f9:e1:bc:2c:1e:91:61:68:ed:ec:ca:1b:1c:40:18:
ca:d2:b0:b3:88:a3:26:ae:69:f8:34:e4:6e:92:45:ab:9c:b8:
81:53:bf:bd:68:5a:46:aa:fc:8e:67:6b:ab:18:38:c0:fd:47:
3f:d0:5a:c0:ed:e3:65:1a:21:80:ef:5b:f5:c5:81:a9:cf:73:
c5:46:d5:90:57:94:49:0e:58:da:f8:13:9d:76:41:ad:7a:46:
9a:22:ac:4d:38:e4:0a:80:15:6d:0f:db:11:e4:a3:0d:e1:da:
f7:f9:ba:b3:ca:41:bf:c9:e1:bd:51:b2:84:49:8d:5f:b2:12:
8a:9c:3a:14:0e:30:de:9c:3d:94:68:34:5c:a7:73:69:c1:88:
6a:b3:67:3e:b2:27:83:db:06:a0:88:dc:83:05:26:2f:0d:7f:
3c:25:28:b8:01:97:b7:57:43:75:96:8b:55:e6:ce:8f:f6:ae:
4d:8f:3c:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org