Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/RECTALE/UaeGmhSzWz-TALEpRi2y0UxzIfg.roa
File: UaeGmhSzWz-TALEpRi2y0UxzIfg.roa (raw, json)
Hash identifier: 6fmeCa1BY8mM/nPrLu0wjF6xctNScwS77JGb+Ti5s0g=
Subject key identifier: 51:A7:86:9A:14:B3:5B:3F:93:00:B1:29:46:2D:B2:D1:4C:73:21:F8
Certificate issuer: /CN=E2AF8CFD95270FCF5C2CA65D87777F6FB7ABFD32
Certificate serial: 011F
Authority key identifier: E2:AF:8C:FD:95:27:0F:CF:5C:2C:A6:5D:87:77:7F:6F:B7:AB:FD:32
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4q-M_ZUnD89cLKZdh3d_b7er_TI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RECTALE/UaeGmhSzWz-TALEpRi2y0UxzIfg.roa
Signing time: Thu 15 Sep 2022 02:41:52 +0000
ROA not before: Thu 15 Sep 2022 02:41:52 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 212279
IP address blocks: 2407:d1c0::/32 maxlen: 64
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 287 (0x11f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E2AF8CFD95270FCF5C2CA65D87777F6FB7ABFD32
Validity
Not Before: Sep 15 02:41:52 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=51A7869A14B35B3F9300B129462DB2D14C7321F8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:dd:96:ad:82:74:00:ce:61:53:21:7b:74:0b:
d4:8b:cd:fd:ac:d1:20:11:5f:83:b3:5a:44:f2:49:
dc:8a:51:eb:8f:f9:8f:24:cf:ce:35:4a:74:4f:d4:
0b:76:fb:c8:ea:ca:45:94:c1:26:50:5b:24:5d:b1:
c9:f9:89:a4:35:59:1b:d1:ae:1c:17:ea:67:a1:20:
12:d5:c7:cd:96:73:74:6a:09:70:c6:f5:85:d5:6a:
d4:65:e5:e1:ab:d8:c5:b8:37:6c:16:45:49:b8:21:
fa:12:55:dc:6c:2a:2e:89:a1:af:c0:ff:5f:00:7b:
fc:64:8c:ae:97:86:35:53:27:e2:db:2f:55:9f:29:
91:65:0c:b9:37:1b:49:87:8d:9b:f0:35:c4:d5:0c:
c9:7e:23:23:02:f3:f0:ed:6b:be:c1:28:75:a3:9f:
bb:cb:61:55:61:0f:60:5e:b9:59:59:86:bd:0c:a9:
4a:d8:ea:e1:cf:d2:45:ea:11:4a:a8:01:bd:e4:4d:
d1:16:2b:63:be:14:97:47:da:18:c8:a0:5a:1f:e6:
0b:36:cb:fb:5b:ba:22:bb:b8:c2:c0:fc:ad:57:2f:
6f:33:88:6a:ee:7b:5b:79:d6:41:8b:d2:5a:dd:37:
dd:d6:26:a4:69:93:a3:1b:4a:25:8a:c3:08:87:a4:
56:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:A7:86:9A:14:B3:5B:3F:93:00:B1:29:46:2D:B2:D1:4C:73:21:F8
X509v3 Authority Key Identifier:
keyid:E2:AF:8C:FD:95:27:0F:CF:5C:2C:A6:5D:87:77:7F:6F:B7:AB:FD:32
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RECTALE/4q-M_ZUnD89cLKZdh3d_b7er_TI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4q-M_ZUnD89cLKZdh3d_b7er_TI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RECTALE/UaeGmhSzWz-TALEpRi2y0UxzIfg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2407:d1c0::/32
Signature Algorithm: sha256WithRSAEncryption
52:7f:20:30:a4:b0:1b:bf:e8:fc:ac:cf:38:3b:17:e7:85:74:
7b:a3:c1:f5:c3:fa:a2:e1:22:3e:72:0d:74:80:91:07:89:45:
66:fb:76:d2:24:d7:46:03:31:7a:6b:d3:1d:b1:ac:1a:5f:a8:
59:91:02:25:32:04:79:4a:53:c1:04:1f:cf:ba:72:e4:2c:77:
e6:31:93:bb:8b:21:f2:2c:ff:ea:ec:07:75:6e:ad:9e:35:f6:
d8:f8:dd:05:3f:61:72:00:74:cf:89:20:b4:6f:1b:0f:08:cd:
2d:24:34:80:96:d9:d1:48:88:e3:b1:eb:36:c0:8f:de:2f:bd:
b1:08:3f:2b:08:4f:54:77:a4:b4:38:53:e4:70:3c:6d:3c:a2:
91:1b:44:91:d0:21:00:a8:e4:a3:96:6f:08:e7:94:f9:55:5e:
9e:fb:b3:7b:ba:2a:cd:43:a5:4f:74:af:97:d8:ca:fc:d2:56:
4f:5d:df:a2:13:d5:70:d6:a3:f0:15:7c:50:7b:4c:98:9a:ab:
2c:35:29:b8:41:2c:c5:5f:c7:53:65:69:71:fa:79:32:67:80:
d7:73:ca:94:aa:bb:f0:e7:ce:35:2f:ca:76:07:db:0d:56:8d:
82:3c:66:9c:ee:0b:25:85:90:f1:38:35:9d:93:d6:8c:ef:bb:
0c:b8:52:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:04 2023 by rpki-client on console-ams.rpki-client.org