Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/Gy62Ko6ANCxVcQ5HgfDprA-NNUQ.roa
File: Gy62Ko6ANCxVcQ5HgfDprA-NNUQ.roa (raw, json)
Hash identifier: Hv0BwpDPjRqpzbG+kKLxZDwH/cR9ix7+RaxMO+zYRWw=
Subject key identifier: 1B:2E:B6:2A:8E:80:34:2C:55:71:0E:47:81:F0:E9:AC:0F:8D:35:44
Certificate issuer: /CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C
Certificate serial: 099E
Authority key identifier: 00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/Gy62Ko6ANCxVcQ5HgfDprA-NNUQ.roa
Signing time: Wed 29 Sep 2021 02:44:41 +0000
ROA not before: Wed 29 Sep 2021 02:44:41 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 38047
IP address blocks: 103.106.54.0/23 maxlen: 23
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2462 (0x99e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C
Validity
Not Before: Sep 29 02:44:41 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=1B2EB62A8E80342C55710E4781F0E9AC0F8D3544
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:36:42:0a:73:7c:0c:d3:3e:b8:90:27:b4:6c:
09:ff:57:6e:56:a4:77:3a:fd:2f:7f:9a:80:f0:25:
6d:78:c1:94:b8:2e:1c:45:ea:d0:b8:29:19:5c:a4:
d8:3e:78:09:a9:be:99:b6:aa:a3:da:88:1d:13:83:
80:2d:c2:26:fe:d3:99:ff:f7:50:53:98:89:7f:5a:
d5:a1:df:a2:eb:a7:a8:dc:08:e6:27:e8:7b:85:a0:
4e:e3:25:43:01:0a:ab:af:45:c3:1b:14:01:b4:58:
91:3b:aa:65:3f:a4:6b:b1:a4:81:8a:3d:ec:00:79:
ef:8d:c1:e6:57:0f:f9:25:60:96:3e:50:70:34:5a:
0c:a0:58:b0:7a:64:cb:75:db:7a:3f:3c:d8:9c:05:
17:c9:b8:9f:b0:aa:5e:cb:c9:89:93:bd:c7:cb:f9:
34:6b:00:75:9c:2e:75:32:5d:4d:63:d1:75:85:3a:
93:a9:6d:ee:3f:34:2e:fd:6c:82:64:dd:b7:50:0c:
bc:be:40:90:8f:3e:0f:af:48:66:4e:82:e5:df:72:
e6:cf:b3:df:8f:7a:ee:b9:88:30:c9:af:35:2c:6e:
57:ca:3b:b6:e6:c1:2f:cb:95:ed:2d:35:b8:80:45:
60:73:97:ea:29:4c:93:ac:19:ae:7b:d3:0e:e5:d1:
4f:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:2E:B6:2A:8E:80:34:2C:55:71:0E:47:81:F0:E9:AC:0F:8D:35:44
X509v3 Authority Key Identifier:
keyid:00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/AFcumcZO1lL6gdUB76Fs-dRK6Zw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/Gy62Ko6ANCxVcQ5HgfDprA-NNUQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.106.54.0/23
Signature Algorithm: sha256WithRSAEncryption
66:f2:69:98:cd:fe:d0:c5:2f:8d:eb:8c:58:17:94:f8:b2:df:
ea:69:28:3f:d9:43:a6:f0:f6:02:a2:af:c9:78:20:bf:90:2a:
24:78:06:68:c6:3d:91:f1:70:7c:4f:96:23:b0:18:c4:d3:dc:
a3:b1:e2:48:0a:29:ca:7e:fc:f6:a9:d4:59:72:11:f4:48:3e:
57:11:23:81:08:69:bc:01:eb:2e:57:c2:46:ce:7a:9a:dc:1c:
ba:9b:99:2a:23:90:42:dd:64:5f:26:e0:68:6e:d1:04:11:cb:
29:f8:61:32:e9:ff:8f:4f:c9:3c:ca:be:58:56:3b:53:d3:ef:
54:39:79:57:a4:12:67:f1:dc:66:81:b6:52:7b:66:86:0e:8e:
01:0d:eb:83:49:79:3d:75:55:eb:85:cd:9b:9d:80:56:ce:f9:
8b:2d:33:15:4a:d3:d5:21:bb:2b:8e:b4:ab:de:5e:7d:c9:69:
6e:8e:bb:40:4e:e8:d2:0b:54:f2:4b:cf:4a:36:cf:ef:e0:2a:
c6:7b:5c:1d:67:26:88:67:48:24:d1:f6:6f:43:12:f4:31:8b:
05:c7:1b:1f:e4:b6:9a:0c:7d:84:63:da:9d:d3:ff:95:13:df:
5d:ac:0e:df:73:6b:4e:1f:29:f8:58:53:a2:4f:42:91:43:ef:
1c:a8:94:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:50:47 2025 by rpki-client