Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/qjFETbOBw695tdWwVyk3LP8wRCM.roa
File: qjFETbOBw695tdWwVyk3LP8wRCM.roa (raw, json)
Hash identifier: NgZelfajjP9Rrtw/4bHcbkW1x8v/KdPc93ya0/A5oQs=
Subject key identifier: AA:31:44:4D:B3:81:C3:AF:79:B5:D5:B0:57:29:37:2C:FF:30:44:23
Certificate issuer: /CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C
Certificate serial: 0B9F
Authority key identifier: 00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/qjFETbOBw695tdWwVyk3LP8wRCM.roa
Signing time: Fri 01 Sep 2023 09:44:03 +0000
ROA not before: Fri 01 Sep 2023 09:44:03 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38047
IP address blocks: 103.106.54.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2975 (0xb9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C
Validity
Not Before: Sep 1 09:44:03 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=AA31444DB381C3AF79B5D5B05729372CFF304423
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:ba:b2:5e:34:49:05:2f:78:02:e7:d4:87:99:
a8:00:5e:59:07:2f:4d:58:41:b1:c9:9a:d9:27:e3:
30:cd:de:3a:bb:c8:f5:c9:78:3a:41:3a:d9:bf:fa:
23:94:74:83:98:10:b0:47:01:a3:17:ee:53:6d:4b:
41:c0:8b:0b:19:05:07:6c:c5:1a:a5:c6:fc:31:44:
96:19:82:2a:d5:2b:79:30:ef:2a:c8:d8:dd:22:52:
c1:7b:20:93:87:49:36:44:bd:aa:68:c0:5d:a9:ec:
ee:aa:14:dc:f0:4d:48:a1:07:97:1d:5d:fe:c5:af:
c3:37:22:91:bd:b6:f0:3a:ec:16:58:1e:8b:28:87:
b4:d1:56:3e:b0:19:81:e9:26:c0:1e:78:28:ec:da:
ea:4b:f4:f4:e3:f2:25:ce:30:a6:de:1a:19:6b:73:
e3:f0:c9:57:59:4d:5f:2b:09:dd:0f:d6:05:be:54:
17:bb:b1:3e:df:d2:c2:81:0a:24:9b:eb:9c:58:42:
78:46:a5:17:a4:b1:91:6b:d2:81:15:87:da:2d:55:
2c:93:19:bd:8a:5f:7b:8a:dc:05:5a:5c:ed:b9:1f:
0a:da:af:23:fd:a0:ad:6a:8a:44:8c:c8:33:cf:4c:
fd:de:63:33:38:95:4a:c0:19:a0:31:c8:1f:68:4e:
c9:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:31:44:4D:B3:81:C3:AF:79:B5:D5:B0:57:29:37:2C:FF:30:44:23
X509v3 Authority Key Identifier:
keyid:00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/AFcumcZO1lL6gdUB76Fs-dRK6Zw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/qjFETbOBw695tdWwVyk3LP8wRCM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.106.54.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:72:9e:d7:8a:f8:3b:c1:dd:55:d4:1e:7d:c3:7b:d9:1e:b1:
7e:9d:8c:47:cd:f0:97:69:34:98:13:b6:02:93:b7:d2:99:48:
58:b7:44:8e:66:f6:26:7a:a7:ec:87:61:16:69:ee:38:70:3f:
85:2e:de:4f:f8:dd:a7:d9:2c:e9:84:71:a7:7c:a1:cb:9f:1f:
2a:6e:25:82:99:65:53:f4:fd:c7:54:d0:71:f3:80:dd:c5:0b:
09:03:d9:be:79:cd:05:9f:bf:66:da:3c:f3:2d:03:fa:1e:f6:
5d:60:e3:71:ec:f9:a2:40:2f:bf:92:40:5d:75:cc:6a:2d:50:
e7:ce:14:a0:61:3c:fc:41:53:5b:bc:bb:a6:dd:52:78:39:a5:
c3:f1:d0:23:b7:bd:70:a3:91:b7:04:bb:d9:4e:fd:b5:9a:3f:
43:d3:66:be:34:a5:15:69:7c:00:b0:74:41:25:53:84:f9:12:
ef:69:a1:c4:8b:4e:93:b8:1c:7d:3b:3b:5a:0e:26:55:88:ca:
3b:92:46:a8:cd:17:8c:8e:e0:8b:8d:11:52:e9:bf:a6:80:8f:
5f:c2:4e:1e:53:b6:fe:d7:3c:fe:b4:c4:a3:42:cb:32:47:1b:
18:71:9e:d8:59:c1:09:be:c7:43:49:b4:22:55:f6:cc:6d:0a:
7e:75:a8:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:45:29 2025 by rpki-client