Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/d6wBpFyTdfZAe9mZwsZP_yxq0E8.roa
File: d6wBpFyTdfZAe9mZwsZP_yxq0E8.roa (raw, json)
Hash identifier: UkPggHfeS0qiUAYAPEcSQWoMxJrvxMqGJzISLu+Ik+o=
Subject key identifier: 77:AC:01:A4:5C:93:75:F6:40:7B:D9:99:C2:C6:4F:FF:2C:6A:D0:4F
Certificate issuer: /CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C
Certificate serial: 08E9
Authority key identifier: 00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/d6wBpFyTdfZAe9mZwsZP_yxq0E8.roa
Signing time: Sun 07 Feb 2021 06:06:06 +0000
ROA not before: Sun 07 Feb 2021 06:06:06 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 38047
IP address blocks: 103.106.55.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2281 (0x8e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C
Validity
Not Before: Feb 7 06:06:06 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=77AC01A45C9375F6407BD999C2C64FFF2C6AD04F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:f1:71:8e:dc:e6:f0:25:d5:23:82:ea:40:cf:
16:74:f8:fe:e6:c2:81:86:5a:82:0b:b2:ff:0a:1f:
4d:63:e3:da:c9:07:83:8c:50:f0:f8:fb:f3:92:cf:
5a:b9:e1:3d:67:d6:84:55:48:bd:03:80:33:fb:88:
f1:1b:6c:94:14:7c:e3:d0:90:df:c1:9d:b6:77:08:
90:1f:a6:de:87:0d:f9:fb:87:d4:c6:17:ef:59:dc:
85:e4:2d:fd:b6:a1:28:83:08:83:1f:5d:54:fc:af:
29:f8:1d:39:ee:a2:58:5b:80:30:f6:bb:5f:b5:85:
0f:93:03:fd:2d:b6:f3:71:8e:78:0c:05:79:ed:dc:
01:90:64:57:56:7c:31:54:d7:f3:bf:a7:3b:6d:a0:
45:7b:c2:67:c3:c2:d0:6d:26:b6:08:2f:c6:20:3e:
ae:dc:6e:89:9a:47:a8:cc:28:fb:b1:fa:71:a1:58:
6c:64:0c:68:13:67:a5:ba:2c:16:e6:1c:1d:7c:6d:
29:f7:47:bd:7b:6d:7a:5b:28:a9:ed:b6:43:e6:d0:
2a:4f:d3:a3:51:f8:27:3c:0c:12:6b:14:16:26:4f:
65:c1:fc:f7:da:5b:35:cb:b3:c7:4d:6d:59:3f:80:
a7:2a:fd:27:08:e0:7c:76:46:fd:4f:41:60:63:fe:
8f:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:AC:01:A4:5C:93:75:F6:40:7B:D9:99:C2:C6:4F:FF:2C:6A:D0:4F
X509v3 Authority Key Identifier:
keyid:00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/AFcumcZO1lL6gdUB76Fs-dRK6Zw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/d6wBpFyTdfZAe9mZwsZP_yxq0E8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.106.55.0/24
Signature Algorithm: sha256WithRSAEncryption
33:c6:b5:46:e5:84:c8:e2:0b:a3:98:e5:d4:6d:93:1b:fc:5d:
d6:4e:aa:f4:4c:34:d4:dc:1d:3b:26:0c:d6:fd:31:bf:4d:fa:
66:e7:da:1c:e9:c1:08:41:43:6a:48:65:61:42:01:9c:b9:16:
a6:12:d3:29:42:a1:34:a2:11:50:8a:03:79:ae:6b:5f:93:b9:
76:e1:3d:6a:3d:5e:db:0d:d1:06:68:3d:47:7f:0a:d9:81:75:
ac:3f:d9:fc:dd:e4:56:8d:e8:d6:be:71:be:7f:18:3b:46:16:
a0:b4:f0:bf:92:aa:84:1b:d8:37:4d:c7:f4:a6:db:c2:e2:de:
82:81:48:08:21:8b:f4:68:ab:46:05:25:c7:d2:e8:de:10:9f:
b1:00:c0:be:24:5b:cb:25:bd:a3:cb:23:89:11:d0:96:cb:5c:
c3:3d:37:f9:6b:8b:4c:67:46:e7:8b:c3:83:75:45:9b:18:31:
f8:a0:b8:ae:51:d6:53:0a:a0:fd:5a:cb:c3:19:fc:df:5a:c3:
16:46:cb:9d:ed:56:95:fc:fd:3b:11:e9:db:04:55:d8:bd:95:
71:75:8c:38:8a:31:24:8b:fc:7c:e4:33:e3:09:7f:57:63:22:
8f:a8:35:11:16:f3:f3:b1:29:14:a5:2e:4e:98:2a:a5:dc:90:
8d:e3:6f:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:10:18 2025 by rpki-client