Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/3ABXjDr58KGPTyCFye-V2jBp974.roa
File: 3ABXjDr58KGPTyCFye-V2jBp974.roa (raw, json)
Hash identifier: 9JMyk2y+7XXNo0/PJx9QA70ZqVugdxLdHhYRm4mPcdk=
Subject key identifier: DC:00:57:8C:3A:F9:F0:A1:8F:4F:20:85:C9:EF:95:DA:30:69:F7:BE
Certificate issuer: /CN=5C8F486B68E9EBA651B14BC008F5A9DD683ECE77
Certificate serial: 09B7
Authority key identifier: 5C:8F:48:6B:68:E9:EB:A6:51:B1:4B:C0:08:F5:A9:DD:68:3E:CE:77
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XI9Ia2jp66ZRsUvACPWp3Wg-znc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/3ABXjDr58KGPTyCFye-V2jBp974.roa
Signing time: Tue 29 Sep 2020 10:09:28 +0000
ROA not before: Tue 29 Sep 2020 10:09:28 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131644
IP address blocks: 2404:d740::/48 maxlen: 48
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2487 (0x9b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5C8F486B68E9EBA651B14BC008F5A9DD683ECE77
Validity
Not Before: Sep 29 10:09:28 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=DC00578C3AF9F0A18F4F2085C9EF95DA3069F7BE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:e1:02:74:cd:b6:4f:01:53:0f:1e:1d:31:7a:
92:9d:c9:fe:c4:1a:86:02:10:58:0d:ea:a9:5f:75:
e4:9b:8d:4e:81:f2:08:dd:55:74:87:39:17:60:22:
fb:88:87:ca:75:37:54:ac:88:a2:f0:90:0b:70:49:
1d:82:ab:dc:74:cc:bc:38:7a:22:48:6e:f5:3c:1d:
68:88:40:94:80:fd:77:46:c8:57:82:9e:69:f1:67:
41:ed:df:aa:b6:cb:ed:32:a1:93:71:f5:a8:6b:1d:
ae:cc:d5:df:a0:12:0a:5f:fe:97:2a:00:a3:0f:6a:
77:61:2d:c8:71:91:e9:ea:c2:b9:f2:14:52:32:52:
0d:e4:34:bf:8f:cc:96:94:b9:68:42:9e:a8:b3:1e:
5e:ed:92:8c:0a:67:59:9f:15:86:d7:38:1a:f5:05:
ae:1c:f5:f8:a7:65:2d:84:02:41:9e:6f:cf:81:85:
ce:e6:7c:48:c0:9e:94:66:d8:cd:64:bd:6b:3c:d0:
a2:fe:e1:91:62:cf:6f:fd:52:00:52:67:b4:57:ce:
0e:5e:ce:02:32:d7:8d:5b:cf:ce:cd:fe:66:c6:6e:
4c:92:68:fc:f0:0d:17:0d:70:c4:a1:01:8b:d2:85:
e7:2f:a4:fb:dc:0b:8e:51:11:fe:cb:5f:3a:44:de:
5d:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:00:57:8C:3A:F9:F0:A1:8F:4F:20:85:C9:EF:95:DA:30:69:F7:BE
X509v3 Authority Key Identifier:
keyid:5C:8F:48:6B:68:E9:EB:A6:51:B1:4B:C0:08:F5:A9:DD:68:3E:CE:77
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/XI9Ia2jp66ZRsUvACPWp3Wg-znc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XI9Ia2jp66ZRsUvACPWp3Wg-znc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/3ABXjDr58KGPTyCFye-V2jBp974.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:d740::/48
Signature Algorithm: sha256WithRSAEncryption
af:e1:3d:8e:7a:3a:f6:30:ff:e5:ef:a5:aa:13:6e:d3:36:65:
ea:a1:fe:18:f8:65:d9:2b:47:a7:f8:ec:92:7f:c6:e9:f6:76:
4b:a5:c5:ef:c4:18:a3:33:41:c8:fa:23:7d:89:eb:73:16:2f:
99:ca:c2:28:83:15:37:d1:a7:0d:ae:e8:d8:f6:e7:36:1f:d9:
f0:74:a1:f6:80:19:28:46:80:ca:ec:9a:3d:dd:b8:c3:5f:71:
e3:df:69:bb:a2:04:ef:3f:9a:69:6d:f5:1a:eb:fe:46:64:18:
f5:88:31:f0:a4:98:e0:c7:c5:04:f7:f8:e7:51:b9:8d:92:38:
20:2b:c1:28:43:35:4d:c8:11:73:86:f0:1f:96:ed:cf:55:01:
b5:b9:30:a8:b7:90:83:0d:00:bc:cd:b6:02:4c:96:bb:ed:4a:
34:6f:17:81:4d:6d:93:c8:26:b4:93:12:db:0e:7c:a4:99:eb:
6d:8c:d9:ee:37:61:b3:19:0b:dc:6c:a3:40:a3:63:da:a7:4e:
20:5c:ae:21:4f:af:9b:3f:00:f7:7b:ed:b7:27:fc:f1:75:d3:
c7:5d:5f:af:ec:47:de:91:9d:22:d6:8e:b8:b3:31:08:e7:e8:
5f:bf:1b:21:0a:8f:e8:78:e3:a5:50:52:52:7b:b0:8a:3b:b8:
0d:a2:8e:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:07 2024 by rpki-client on console-fra.rpki-client.org