Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/RECTALE/Jtk5TtXMce67hA4iAgOtYHf56VY.roa
File: Jtk5TtXMce67hA4iAgOtYHf56VY.roa (raw, json)
Hash identifier: ytjnBxEOK1hj7PBPCfkZo82AJhi0YKN0msrH31QwnU0=
Subject key identifier: 26:D9:39:4E:D5:CC:71:EE:BB:84:0E:22:02:03:AD:60:77:F9:E9:56
Certificate issuer: /CN=E2AF8CFD95270FCF5C2CA65D87777F6FB7ABFD32
Certificate serial: 17
Authority key identifier: E2:AF:8C:FD:95:27:0F:CF:5C:2C:A6:5D:87:77:7F:6F:B7:AB:FD:32
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4q-M_ZUnD89cLKZdh3d_b7er_TI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RECTALE/Jtk5TtXMce67hA4iAgOtYHf56VY.roa
Signing time: Sat 11 Sep 2021 17:48:38 +0000
ROA not before: Sat 11 Sep 2021 17:48:38 +0000
ROA not after: Tue 30 Aug 2022 03:11:21 +0000
asID: 142586
IP address blocks: 103.172.125.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23 (0x17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E2AF8CFD95270FCF5C2CA65D87777F6FB7ABFD32
Validity
Not Before: Sep 11 17:48:38 2021 GMT
Not After : Aug 30 03:11:21 2022 GMT
Subject: CN=26D9394ED5CC71EEBB840E220203AD6077F9E956
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:5e:01:e3:5c:5e:11:42:a1:de:aa:f2:97:5c:
0f:be:ec:80:4f:56:95:53:07:b3:8c:71:18:62:47:
96:45:bd:e2:36:93:12:32:6c:0c:00:e3:ed:af:4a:
df:91:2a:8a:c2:17:56:7f:c5:fe:61:6e:cb:ce:d4:
ac:9d:20:ee:1e:7f:2e:c0:c4:f3:52:81:d4:30:e5:
87:81:d2:13:9b:f1:47:7f:74:76:26:40:43:c1:19:
ce:2a:d6:5a:ca:24:4c:1a:0a:07:cb:8c:a4:db:dd:
92:f1:19:91:7d:32:c7:45:b6:4a:01:27:d4:fe:a0:
84:b1:3c:ca:4e:e6:88:be:9d:92:12:3e:29:6a:d8:
e8:4b:87:73:14:32:43:13:45:0f:76:c2:65:76:c2:
0b:12:ad:46:e4:cc:26:bb:24:b1:7e:d6:fc:43:0f:
92:08:35:31:df:ab:0a:07:28:88:60:a8:d0:69:14:
39:a5:90:1c:f7:1b:a9:01:83:f6:3c:cc:c8:c6:a3:
88:21:71:71:aa:e1:2a:d6:b2:a6:e9:ab:6c:16:bd:
31:fd:80:8f:0e:82:73:b1:88:dc:f6:af:4c:d6:89:
a6:37:dc:db:c6:44:22:e7:8d:39:36:51:f4:21:14:
02:40:25:43:56:9e:91:42:4f:c7:b5:eb:e6:fc:aa:
b4:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:D9:39:4E:D5:CC:71:EE:BB:84:0E:22:02:03:AD:60:77:F9:E9:56
X509v3 Authority Key Identifier:
keyid:E2:AF:8C:FD:95:27:0F:CF:5C:2C:A6:5D:87:77:7F:6F:B7:AB:FD:32
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RECTALE/4q-M_ZUnD89cLKZdh3d_b7er_TI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4q-M_ZUnD89cLKZdh3d_b7er_TI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RECTALE/Jtk5TtXMce67hA4iAgOtYHf56VY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.172.125.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:72:ca:05:41:d7:02:5c:55:70:b1:ac:87:a7:7c:ed:88:6a:
4a:f0:ff:8b:49:6d:40:55:b7:27:d3:40:ff:a7:ed:54:61:87:
1a:66:f6:34:14:b6:d2:31:56:f3:4f:b7:33:e4:7e:43:b9:17:
25:3c:47:63:97:08:c4:e9:27:e5:73:f1:cd:0b:b3:72:2e:8d:
9c:bd:b0:1d:9d:2b:9f:de:0f:2e:c8:96:b7:6a:cf:b7:47:4c:
fc:f8:a2:7a:2c:8e:ff:32:30:5c:43:17:59:d4:05:ed:1a:98:
66:2a:36:ea:53:8f:bc:2e:c1:3a:09:9d:66:0c:36:18:66:bd:
fb:1e:89:8a:ca:ec:09:ac:94:a2:7a:5e:5f:2c:7c:6f:0a:5f:
53:1d:e7:76:22:bc:3e:8d:43:32:21:cb:ab:e2:95:82:23:e9:
29:aa:d6:37:e6:1f:fe:75:a7:9b:6b:be:e7:c0:8d:05:30:2f:
ff:88:03:5c:64:a5:b1:52:5b:39:8c:8c:91:08:95:51:d7:06:
d6:9e:d6:a5:d7:0e:e0:9c:74:fb:47:10:11:7b:7f:c1:cd:23:
5a:83:2a:bc:e5:e1:83:b2:53:e0:03:13:25:1c:5f:80:12:d8:
b6:7e:43:4e:0a:4c:57:02:42:0c:93:96:43:ff:ba:70:d0:e3:
6a:2f:24:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org