Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/DKFzMKRpYodbeW9oGjDan95ccwI.roa
File: DKFzMKRpYodbeW9oGjDan95ccwI.roa (raw, json)
Hash identifier: U11+c2F4a3+1WyJdyCf8eapIzZdU6ykuwmejQpbQ+yA=
Subject key identifier: 0C:A1:73:30:A4:69:62:87:5B:79:6F:68:1A:30:DA:9F:DE:5C:73:02
Certificate issuer: /CN=5C8F486B68E9EBA651B14BC008F5A9DD683ECE77
Certificate serial: 09C3
Authority key identifier: 5C:8F:48:6B:68:E9:EB:A6:51:B1:4B:C0:08:F5:A9:DD:68:3E:CE:77
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XI9Ia2jp66ZRsUvACPWp3Wg-znc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/DKFzMKRpYodbeW9oGjDan95ccwI.roa
Signing time: Tue 29 Sep 2020 10:09:31 +0000
ROA not before: Tue 29 Sep 2020 10:09:31 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131644
IP address blocks: 2404:d740:f::/48 maxlen: 48
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2499 (0x9c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5C8F486B68E9EBA651B14BC008F5A9DD683ECE77
Validity
Not Before: Sep 29 10:09:31 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=0CA17330A46962875B796F681A30DA9FDE5C7302
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:79:d7:3d:dc:66:36:34:c6:55:b8:18:f0:16:
4a:e3:9d:78:3d:de:c6:19:ac:57:10:af:ca:00:2a:
61:65:27:a4:0a:4e:e1:f1:00:04:97:5b:74:04:15:
43:59:c9:a0:86:23:2d:3c:48:e7:d4:32:66:6f:09:
4a:2c:66:e0:01:b5:9c:0e:a9:82:d3:6b:41:9a:5b:
cb:32:44:2d:c7:19:be:dc:53:33:55:5e:34:32:9b:
17:5e:4f:00:75:a0:6e:34:a3:c9:ae:9b:bb:c7:ff:
b4:9d:43:9c:d8:69:3c:d0:4a:fc:a0:c6:d9:77:81:
99:75:3b:e0:ed:e8:fd:2d:cf:c6:8e:89:7e:8d:13:
8a:0c:f8:74:ba:f7:ed:49:5e:f5:03:d1:32:7e:79:
05:0d:ee:8f:f1:5a:99:35:91:69:9d:bb:5a:0e:12:
9f:70:51:fc:61:cd:06:f1:9b:6c:12:4f:a4:cd:ca:
74:f4:32:ef:08:c3:06:1f:92:ff:9a:df:ef:61:b8:
dc:94:6c:d4:f6:1f:4b:0b:cf:69:eb:97:eb:48:cf:
64:d7:30:18:94:85:4c:c9:83:88:8a:b9:40:11:e1:
21:4c:0a:72:7a:77:78:2e:2d:bd:44:e4:f3:b7:34:
cc:d7:31:24:3c:32:fe:f2:bb:ea:dd:5e:fc:ba:cd:
c2:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:A1:73:30:A4:69:62:87:5B:79:6F:68:1A:30:DA:9F:DE:5C:73:02
X509v3 Authority Key Identifier:
keyid:5C:8F:48:6B:68:E9:EB:A6:51:B1:4B:C0:08:F5:A9:DD:68:3E:CE:77
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/XI9Ia2jp66ZRsUvACPWp3Wg-znc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XI9Ia2jp66ZRsUvACPWp3Wg-znc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/DKFzMKRpYodbeW9oGjDan95ccwI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:d740:f::/48
Signature Algorithm: sha256WithRSAEncryption
92:ef:48:37:3f:15:25:c7:1b:6c:9b:73:42:c8:dd:4b:dd:34:
ac:0e:62:d9:59:14:9c:b1:eb:1e:70:ae:05:a3:f9:b2:cb:8e:
50:04:b5:d6:85:31:e1:94:c8:b0:1a:e4:a1:fa:a0:a7:08:ec:
df:21:37:6c:76:21:3d:02:b5:47:93:92:30:9c:bf:de:68:08:
77:ab:63:5b:dd:ca:32:c7:eb:08:e6:99:ba:a3:1b:34:4e:c4:
5b:54:5e:87:5d:64:6f:50:d9:25:31:df:0c:79:e3:a1:de:81:
3c:53:ff:81:40:4c:d8:9e:62:94:68:67:23:7c:7c:46:07:07:
d5:0e:cb:f6:9e:2d:39:dd:ac:2a:04:10:59:72:ee:00:e7:2c:
ea:2b:7e:54:a9:cd:82:27:b2:c5:0d:68:f0:61:86:e9:64:6a:
92:9a:d6:23:a5:51:d4:46:03:4f:ed:93:25:55:8a:19:b7:26:
4e:31:8a:16:2d:a9:6a:5e:53:3a:d7:e8:95:f0:2d:38:4e:f3:
14:dc:cc:45:b2:26:c6:ea:cb:ef:27:fe:28:8e:92:12:d6:a4:
18:68:38:b5:8a:f0:a5:bb:cb:e6:5a:9d:a6:20:a7:c7:4a:95:
6d:a7:2e:fe:d9:23:3e:2b:c3:32:1b:b8:00:d1:79:eb:a0:a6:
9f:ac:bd:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:07 2024 by rpki-client on console-fra.rpki-client.org