Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/CIrGtmcnlng3T560K3S46eZJxow.roa
File: CIrGtmcnlng3T560K3S46eZJxow.roa (raw, json)
Hash identifier: NZeYgybZAar8Hibis44noNh4DxZP9lim/tMppd1F2D4=
Subject key identifier: 08:8A:C6:B6:67:27:96:78:37:4F:9E:B4:2B:74:B8:E9:E6:49:C6:8C
Certificate issuer: /CN=5C8F486B68E9EBA651B14BC008F5A9DD683ECE77
Certificate serial: 0B12
Authority key identifier: 5C:8F:48:6B:68:E9:EB:A6:51:B1:4B:C0:08:F5:A9:DD:68:3E:CE:77
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XI9Ia2jp66ZRsUvACPWp3Wg-znc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/CIrGtmcnlng3T560K3S46eZJxow.roa
Signing time: Sun 07 Feb 2021 11:54:26 +0000
ROA not before: Sun 07 Feb 2021 11:54:26 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131644
IP address blocks: 103.138.255.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2834 (0xb12)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5C8F486B68E9EBA651B14BC008F5A9DD683ECE77
Validity
Not Before: Feb 7 11:54:26 2021 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=088AC6B667279678374F9EB42B74B8E9E649C68C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:1b:08:84:8d:60:e1:49:ef:9f:ab:9c:01:e4:
ff:b3:a1:6e:6c:f1:0a:c5:7a:85:18:82:f8:26:83:
63:51:d8:37:bc:62:69:b9:e7:a2:66:a6:9f:0b:d6:
ff:f8:7e:3b:9d:bf:44:d8:17:bc:38:ed:47:40:e7:
33:46:dc:8b:97:be:85:d3:5c:3d:5a:66:2d:2c:1d:
2f:17:95:10:b7:7c:ff:04:0b:8b:be:40:99:9d:02:
4f:aa:69:8b:0a:0a:cb:8a:c3:4a:b9:be:b5:46:d2:
c4:2a:95:0b:41:49:14:dd:29:e8:f6:2b:ef:ed:6e:
d0:4a:ed:70:f3:d8:34:90:f1:ab:3b:f2:3c:b9:58:
fa:c1:50:07:0a:44:9e:62:75:64:20:44:93:81:05:
1b:00:34:37:ba:cc:eb:40:fd:82:17:8d:be:d0:bc:
1e:6b:ef:81:0a:23:8f:b4:4f:f4:86:d3:a4:77:de:
58:11:05:e1:8e:48:e5:4b:fa:b1:42:41:4b:c7:03:
5f:97:95:2c:54:d4:bb:c1:d7:2c:9f:61:5b:a5:29:
29:93:85:02:88:67:37:4e:6b:80:ae:5c:33:c9:15:
e1:fc:f9:9e:01:d9:fe:5c:69:71:54:34:ca:8b:ff:
71:8b:3a:ca:d3:bc:99:e5:8d:12:00:c1:a2:28:b6:
a7:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:8A:C6:B6:67:27:96:78:37:4F:9E:B4:2B:74:B8:E9:E6:49:C6:8C
X509v3 Authority Key Identifier:
keyid:5C:8F:48:6B:68:E9:EB:A6:51:B1:4B:C0:08:F5:A9:DD:68:3E:CE:77
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/XI9Ia2jp66ZRsUvACPWp3Wg-znc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XI9Ia2jp66ZRsUvACPWp3Wg-znc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/CIrGtmcnlng3T560K3S46eZJxow.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.138.255.0/24
Signature Algorithm: sha256WithRSAEncryption
87:51:4c:df:c4:70:60:8d:6f:b5:ad:9d:3e:7a:db:29:3a:39:
94:dd:9e:dc:e2:76:c2:76:91:55:77:38:fe:aa:ab:f3:7d:6c:
35:6d:60:76:a5:a6:65:52:8c:45:66:c8:d8:7d:2b:7b:5f:09:
cc:0f:a3:e6:a3:8f:b8:fc:b1:43:93:3b:10:39:25:7c:da:f6:
be:94:37:44:35:6e:ac:d6:45:03:8b:7c:47:01:69:e3:cd:3c:
0c:73:90:d5:32:dc:b1:c5:b5:db:ad:35:d9:03:30:4a:17:a3:
a3:03:aa:c6:ee:e3:6b:e5:b4:0d:24:8a:5a:f2:1f:8b:2e:7b:
23:02:97:81:eb:b6:00:7f:3b:4a:0e:e3:80:2d:6a:28:52:0d:
16:d3:e4:89:9d:65:f1:4c:36:e0:2b:38:12:11:29:e7:e4:90:
c5:cb:d0:e7:69:9a:bb:00:e2:2c:b8:25:f6:be:1d:43:76:ac:
28:57:f5:65:fd:74:49:72:f6:ad:2f:92:0d:76:17:62:9c:08:
7a:57:c2:07:ce:ce:e0:9b:45:56:76:a7:71:04:3e:a2:9a:ab:
8b:ff:80:f9:22:a2:93:74:f6:7d:99:45:8b:16:69:ed:c2:71:
78:7f:66:e7:60:b5:21:ab:a1:94:64:e6:0e:96:34:75:d1:89:
12:ad:6d:e4
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:55 2023 by rpki-client on console-fra.rpki-client.org