Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/RECTALE/tH4ugiXsuEMEGl23c_sl_Bwdgp0.roa
File: tH4ugiXsuEMEGl23c_sl_Bwdgp0.roa (raw, json)
Hash identifier: Nu9IAufZIzIGi8cr9wE0rf3AMDHja8Lc5JHSQuaDLhc=
Subject key identifier: B4:7E:2E:82:25:EC:B8:43:04:1A:5D:B7:73:FB:25:FC:1C:1D:82:9D
Certificate issuer: /CN=E2AF8CFD95270FCF5C2CA65D87777F6FB7ABFD32
Certificate serial: 010A
Authority key identifier: E2:AF:8C:FD:95:27:0F:CF:5C:2C:A6:5D:87:77:7F:6F:B7:AB:FD:32
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4q-M_ZUnD89cLKZdh3d_b7er_TI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RECTALE/tH4ugiXsuEMEGl23c_sl_Bwdgp0.roa
Signing time: Tue 16 Aug 2022 03:09:41 +0000
ROA not before: Tue 16 Aug 2022 03:09:41 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 24162
IP address blocks: 103.172.124.0/23 maxlen: 32
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 266 (0x10a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E2AF8CFD95270FCF5C2CA65D87777F6FB7ABFD32
Validity
Not Before: Aug 16 03:09:41 2022 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=B47E2E8225ECB843041A5DB773FB25FC1C1D829D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:cf:0d:d4:c4:ff:ff:bf:6d:e6:ae:51:ea:ca:
53:10:f1:ec:d2:ca:5a:a7:f2:9d:9e:3b:be:15:80:
65:88:f4:b3:de:b7:f6:43:10:41:51:c3:e1:3e:16:
17:96:43:bb:68:52:ec:4d:75:4f:29:2d:d1:41:30:
bb:5a:89:a4:9c:c2:86:fa:29:97:2a:4b:f5:92:a0:
8c:3b:87:82:23:27:0d:4d:d1:ea:fc:4b:77:6e:cf:
12:6c:6a:29:f1:58:ae:6b:df:5f:64:a9:c0:13:6e:
1a:10:72:90:7b:0c:f5:eb:7a:46:74:25:92:d4:d0:
b3:92:5d:46:41:17:4c:e1:6b:7b:cb:2a:46:b8:21:
cf:4d:47:c3:65:c9:19:d5:d1:dc:5c:8a:53:9e:ac:
d8:11:d9:f9:47:6d:7f:33:8f:55:83:f0:44:9a:39:
19:82:aa:4d:4f:db:1d:58:69:2e:82:15:37:50:8f:
f3:33:81:2e:5e:d1:d4:78:ec:4e:8c:9c:0e:d3:5b:
5c:1f:f6:17:0c:8d:6b:12:9e:13:d8:b4:8d:be:41:
5b:1c:b8:89:db:02:5f:1f:ba:16:c9:6b:64:e6:d8:
da:ce:d5:6f:b0:ae:85:10:5d:f9:65:d7:20:d7:04:
a3:0f:9d:68:93:f7:c1:a5:0d:e1:31:e8:76:c8:25:
6b:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:7E:2E:82:25:EC:B8:43:04:1A:5D:B7:73:FB:25:FC:1C:1D:82:9D
X509v3 Authority Key Identifier:
keyid:E2:AF:8C:FD:95:27:0F:CF:5C:2C:A6:5D:87:77:7F:6F:B7:AB:FD:32
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RECTALE/4q-M_ZUnD89cLKZdh3d_b7er_TI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4q-M_ZUnD89cLKZdh3d_b7er_TI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RECTALE/tH4ugiXsuEMEGl23c_sl_Bwdgp0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.172.124.0/23
Signature Algorithm: sha256WithRSAEncryption
6d:dc:97:14:38:7a:af:33:b0:8a:12:e4:e4:bb:dc:1b:b9:e6:
35:e4:4a:37:1a:bc:5f:d4:ed:01:e2:e7:1e:5b:c3:d2:f6:96:
fd:a4:65:7c:81:9a:95:12:61:39:d3:aa:9a:ea:8d:f7:a1:ba:
b8:1d:e0:8e:40:b8:90:54:99:8d:9b:d6:8b:f1:e9:8b:9b:52:
23:e7:a2:f1:00:3a:0b:90:40:25:9e:8b:2d:94:a1:fa:d1:45:
ef:59:0b:8a:58:9e:c3:d4:b8:4d:a3:40:fc:0b:9f:ac:3d:a1:
23:34:61:12:d9:bf:2c:4e:da:5d:b8:7b:82:00:ed:70:26:25:
05:7b:63:2d:58:c6:eb:dd:b7:d6:4c:10:c9:01:17:72:f2:f5:
8d:50:f9:b7:af:be:c3:ab:88:f1:bb:9f:ec:9b:d8:02:ad:b8:
e1:9f:42:33:3a:d8:0b:e0:71:93:4d:be:1a:0d:60:f7:af:35:
54:64:95:f1:77:95:b8:a6:57:7a:32:92:a9:9c:da:4d:dd:ac:
68:1b:27:cd:9d:24:12:87:78:e9:a1:66:e7:bb:97:f8:5f:4e:
66:ec:1e:dc:e9:21:2a:29:18:23:d6:ee:76:81:ca:64:e7:84:
13:41:20:ff:88:40:68:51:66:c5:7a:78:c2:6a:79:40:eb:fb:
8f:c5:8a:6d
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICAQowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTJB
RjhDRkQ5NTI3MEZDRjVDMkNBNjVEODc3NzdGNkZCN0FCRkQzMjAeFw0yMjA4MTYw
MzA5NDFaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEI0N0UyRTgyMjVFQ0I4
NDMwNDFBNURCNzczRkIyNUZDMUMxRDgyOUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCizw3UxP//v23mrlHqylMQ8ezSylqn8p2eO74VgGWI9LPet/ZD
EEFRw+E+FheWQ7toUuxNdU8pLdFBMLtaiaScwob6KZcqS/WSoIw7h4IjJw1N0er8
S3duzxJsainxWK5r319kqcATbhoQcpB7DPXrekZ0JZLU0LOSXUZBF0zha3vLKka4
Ic9NR8NlyRnV0dxcilOerNgR2flHbX8zj1WD8ESaORmCqk1P2x1YaS6CFTdQj/Mz
gS5e0dR47E6MnA7TW1wf9hcMjWsSnhPYtI2+QVscuInbAl8fuhbJa2Tm2NrO1W+w
roUQXfll1yDXBKMPnWiT98GlDeEx6HbIJWsdAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUtH4ugiXsuEMEGl23c/sl/Bwdgp0wHwYDVR0jBBgwFoAU4q+M/ZUnD89cLKZd
h3d/b7er/TIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUkVDVEFM
RS80cS1NX1pVbkQ4OWNMS1pkaDNkX2I3ZXJfVEkuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBLzRxLU1fWlVuRDg5Y0xLWmRoM2RfYjdlcl9USS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1JFQ1RBTEUvdEg0dWdpWHN1RU1FR2wy
M2Nfc2xfQndkZ3AwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
AWesfDANBgkqhkiG9w0BAQsFAAOCAQEAbdyXFDh6rzOwihLk5LvcG7nmNeRKNxq8
X9TtAeLnHlvD0vaW/aRlfIGalRJhOdOqmuqN96G6uB3gjkC4kFSZjZvWi/Hpi5tS
I+ei8QA6C5BAJZ6LLZSh+tFF71kLiliew9S4TaNA/AufrD2hIzRhEtm/LE7aXbh7
ggDtcCYlBXtjLVjG69231kwQyQEXcvL1jVD5t6++w6uI8buf7JvYAq244Z9CMzrY
C+Bxk02+Gg1g9681VGSV8XeVuKZXejKSqZzaTd2saBsnzZ0kEod46aFm57uX+F9O
Zuwe3OkhKikYI9budoHKZOeEE0Eg/4hAaFFmxXp4wmp5QOv7j8WKbQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:19 2024 by rpki-client on console-ams.rpki-client.org