Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/RECTALE/BpRFWKj5DWu67oEhHGvkq24IeMk.roa
File: BpRFWKj5DWu67oEhHGvkq24IeMk.roa (raw, json)
Hash identifier: L7rtJGwqJND8xq1Y+0DDHh4GgGNtAd2U17Hw3IfSV4U=
Subject key identifier: 06:94:45:58:A8:F9:0D:6B:BA:EE:81:21:1C:6B:E4:AB:6E:08:78:C9
Certificate issuer: /CN=E2AF8CFD95270FCF5C2CA65D87777F6FB7ABFD32
Certificate serial: CD
Authority key identifier: E2:AF:8C:FD:95:27:0F:CF:5C:2C:A6:5D:87:77:7F:6F:B7:AB:FD:32
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4q-M_ZUnD89cLKZdh3d_b7er_TI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RECTALE/BpRFWKj5DWu67oEhHGvkq24IeMk.roa
Signing time: Fri 20 May 2022 10:45:32 +0000
ROA not before: Fri 20 May 2022 10:45:32 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 7480
IP address blocks: 103.172.125.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 205 (0xcd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E2AF8CFD95270FCF5C2CA65D87777F6FB7ABFD32
Validity
Not Before: May 20 10:45:32 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=06944558A8F90D6BBAEE81211C6BE4AB6E0878C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b0:d8:a1:81:28:52:d3:24:0d:8c:c7:cc:07:
b0:73:de:cd:83:12:23:89:da:45:5f:49:15:ae:a6:
8c:df:a8:b4:80:78:be:a0:ce:11:52:c6:24:cf:95:
59:2b:45:ab:0b:83:2e:66:f2:76:0f:bf:2e:9c:1a:
df:af:19:8b:77:f7:09:22:de:7b:6b:1a:3e:88:4d:
b1:fb:f1:36:19:97:ef:5d:9f:d2:52:03:87:02:28:
13:f3:3f:57:3c:96:dc:49:61:b7:6c:6a:07:00:cc:
c1:e4:31:3d:10:ae:bb:0d:dd:66:0b:81:7d:c9:1d:
81:a3:a9:60:d6:2f:26:c7:c4:1c:07:16:df:72:02:
de:31:7a:9e:3b:bd:ec:09:28:1f:c9:8c:20:43:a8:
23:13:52:dd:81:f4:de:07:d2:9d:0c:d2:51:b4:d4:
0b:f5:58:15:1e:e4:07:2a:ba:d4:13:d7:d8:36:97:
e3:1d:8a:16:95:ad:3b:c9:3c:0c:ec:1a:05:88:ab:
31:6c:ff:84:1f:bb:15:85:a0:49:2c:23:93:d2:93:
ab:3c:98:e4:64:95:67:3c:1a:7e:97:f7:3a:16:b0:
10:f8:42:2b:bd:a6:bb:a7:be:b3:e0:06:9e:ae:6c:
7b:75:1f:92:e6:79:90:8e:ab:94:09:41:f0:7f:d4:
f0:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:94:45:58:A8:F9:0D:6B:BA:EE:81:21:1C:6B:E4:AB:6E:08:78:C9
X509v3 Authority Key Identifier:
keyid:E2:AF:8C:FD:95:27:0F:CF:5C:2C:A6:5D:87:77:7F:6F:B7:AB:FD:32
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RECTALE/4q-M_ZUnD89cLKZdh3d_b7er_TI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4q-M_ZUnD89cLKZdh3d_b7er_TI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RECTALE/BpRFWKj5DWu67oEhHGvkq24IeMk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.172.125.0/24
Signature Algorithm: sha256WithRSAEncryption
69:99:e3:94:ac:e8:63:55:70:3f:93:8c:24:21:9b:7f:aa:b8:
48:1a:1c:5d:5a:67:2d:08:f3:9a:13:22:ee:d0:b4:de:93:be:
61:1a:06:dc:d9:d0:a3:15:8c:c9:fc:c4:a5:bf:55:0a:8c:a4:
f1:68:01:29:b8:f6:de:16:66:85:55:fd:59:bf:74:7e:6a:f1:
3a:6d:b5:26:ef:28:36:d6:41:43:56:44:f7:bd:8f:3d:8d:f7:
54:b8:91:f8:fc:10:63:99:a5:40:06:6e:7b:5d:3f:d9:85:64:
a7:00:93:19:3d:78:49:e9:0f:88:7e:34:8e:4e:86:b0:d0:53:
f0:38:d4:51:9a:56:91:d7:64:bd:f1:53:63:4a:4e:f8:e1:f7:
2e:54:bf:3a:a7:74:50:13:8f:fc:52:71:fb:43:d7:ec:72:09:
24:33:4b:db:ba:24:60:cb:17:f9:a3:ef:4e:a0:f5:76:b7:f2:
0c:9a:98:af:8f:3f:72:45:b7:c5:8f:78:e6:2a:63:83:fd:8e:
f8:35:58:b3:38:73:cf:d9:06:a7:e0:ed:d0:37:d7:eb:9a:8d:
3e:c0:3f:a3:65:8a:b3:b0:01:2b:99:e8:9e:29:28:a5:5b:7a:
80:d9:a0:87:06:2d:cd:2e:6d:ce:07:86:a0:38:c5:55:c1:a3:
0d:91:3e:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:04 2023 by rpki-client on console-ams.rpki-client.org